Skip to main content

Tag: cybercriminals

170 articles

Empty desks and chairs in a brightly-lit office with a blurred computer terminal in the background.

Cyberattacks Exploit Summer Staffing Gaps

Cyberattacks surge by 40% during holiday periods, with summer being a prime target due to lighter staffing and slower business operations that create the perfect storm for cybercriminals to exploit. When teams are on vacation, attackers see an opportunity to probe for vulnerabilities and test response times.

Analyst 207
Laptop on office desk with blurred CAPTCHA on screen, surrounded by papers and supplies.

Cybercriminals Exploit ClickFix to Deliver Malware

Don't assume macOS is safe from cyber threats - a recent report warns that it now requires the same level of monitoring and protection as Windows to prevent malware attacks. Cybercriminals are using the ClickFix technique to deliver malware, tricking victims into running malicious commands.

Analyst 207
September 2025 Patch Tuesday: Must-Have Urgent Fixes

September 2025 Patch Tuesday: Must-Have Urgent Fixes

Microsoft’s September 2025 Patch Tuesday fixes more than 80 vulnerabilities—13 rated critical—and while no zero-days or active exploits are reported, this is a timely reminder to patch internet-facing systems and update your devices tonight to close the window for attackers.

Analyst 207
email bomb campaigns: Exclusive Dangerous Zendesk Flaw

email bomb campaigns: Exclusive Dangerous Zendesk Flaw

Imagine waking to hundreds of threatening emails that look like they came from companies you trust — attackers abused weak outbound authentication in Zendesk to launch hard-to-block email bomb campaigns, a wake-up call for vendors and customers to tighten SPF/DKIM/DMARC and stronger default protections now.

Analyst 207
Whisper 2FA: Exclusive Risky Phishing Threat

Whisper 2FA: Exclusive Risky Phishing Threat

Think 2FA is foolproof? Researchers warn Whisper 2FA — a phishing‑as‑a‑service tool tied to roughly one million credential‑theft attempts since July 2025 — shows attackers can cheaply scale real‑time relay attacks, so phishing‑resistant authentication and layered defenses are now essential.

Analyst 207
Windows 10 Critical Must-Have Final Security Update

Windows 10 Critical Must-Have Final Security Update

Microsoft just shipped a final, critical Windows 10 update—patching 172 vulnerabilities (including three actively exploited)—so if you’re still on Windows 10, now’s the time to plan an upgrade, enable compensating controls, or secure paid support before unsupported systems become easy targets.

Analyst 207
Stealit infostealer: Exclusive Dangerous VPN Threat

Stealit infostealer: Exclusive Dangerous VPN Threat

Think twice before installing that VPN or cracked game—attackers are hiding the Stealit info‑stealer inside trusted-looking installers to harvest passwords, cookies and crypto keys. Stick to official downloads, keep software updated, and watch for unusual app behavior to stay safe.

Analyst 207
Qilin ransomware Stunning School Breach: Urgent Risk

Qilin ransomware Stunning School Breach: Urgent Risk

A ransomware group claims it stole financial and students’ medical records from Mecklenburg County Public Schools, leaving families anxious and demanding clear answers about what was exposed and how the district will protect them.

Analyst 207
Palo Alto Networks administrative portals: Urgent Threat

Palo Alto Networks administrative portals: Urgent Threat

A sudden fivefold surge in automated scans of Palo Alto Networks’ admin portals is a clear warning that attackers are probing for weaknesses — now’s the time to patch, tighten access, and verify your telemetry. While scans don’t prove compromise, treat this spike as a prompt to hunt for misconfigurations and strengthen admin controls.

Analyst 207
AI security Must-Have: Best Defense Tactics

AI security Must-Have: Best Defense Tactics

PwC finds organizations are now prioritizing AI security over cloud and network defenses, reallocating budgets to protect models, training data and inference pipelines from novel attacks. That shift means stronger governance, adversarial testing and monitoring are needed to make AI a strategic asset rather than a new liability.

Analyst 207
cybersecurity staff Shortage: Must-Have Fixes for Risky Gap

cybersecurity staff Shortage: Must-Have Fixes for Risky Gap

Two-thirds of organizations lack dedicated cybersecurity staff, leaving networks and data more exposed as threats surge and hiring, burnout, and competition for talent bite. Fixing it means smarter hiring, hands-on training and public‑private action before the next big incident.

Analyst 207
GoAnywhere managed file transfer Exclusive Must-Have Fixes

GoAnywhere managed file transfer Exclusive Must-Have Fixes

A critical Perfect‑10 RCE in Fortra’s GoAnywhere MFT is being actively exploited, leaving thousands of internet‑facing instances at risk — patch immediately, isolate exposed servers, and audit logs to stop data theft or ransomware. This crisis spotlights gaps in vendor disclosure and supply‑chain risk, so organizations and vendors must coordinate fast to prevent widespread breaches.

Analyst 207
Kido International Stunning Breach: Worst Privacy Crisis

Kido International Stunning Breach: Worst Privacy Crisis

A recent cyberattack on Kido International exposed photos and home addresses of preschoolers, leaving parents reeling and asking how we can better protect the kids in our care. This alarming breach shows why stronger security, clearer rules, and more support for small childcare providers are urgently needed.

Analyst 207
Boyd Gaming Risky Data Breach – Exclusive Fallout

Boyd Gaming Risky Data Breach – Exclusive Fallout

Boyd Gaming says it takes privacy seriously — yet a recent cyberattack may have exposed employee and other personal data, highlighting how hospitality firms with large workforces remain irresistible targets. Quick, transparent responses and stronger cybersecurity measures are now more crucial than ever to protect people and trust.

Analyst 207
healthcare data Stunning Breach: Worst Risk to 850K

healthcare data Stunning Breach: Worst Risk to 850K

Imagine the place you trust with your most private health details becoming an unlocked door — more than 850,000 Americans now face that reality after three medical centers had records, billing data, and sensitive clinical notes stolen. This wake-up call shows healthcare systems must strengthen defenses while patients stay alert and protect their information.

Analyst 207
Worn leather armchair sits beside a cracked, glowing computer screen with scattered papers and a broken lock on a dark,…

ransomware gangs Risky Retirement: Exclusive Warning

Fifteen ransomware gangs publicly claimed retirement on BreachForums — dramatic, but experts say it may be more theater than farewell. Don’t relax: rebrands, affiliate migrations and exit scams are common, so keep backups, MFA, segmentation and solid incident‑response readiness.

Analyst 207
Salesforce platforms: Must-Have Critical Security Guide

Salesforce platforms: Must-Have Critical Security Guide

The FBI just flagged active campaigns targeting Salesforce platforms—if you rely on Salesforce for customer data, now’s the time to harden access, rotate tokens, and audit integrations. Take a few simple steps today to prevent data theft, detect suspicious exports, and reduce your risk before attackers strike.

Analyst 207
regional health agencies Alarming Breach: Must-See Risks

regional health agencies Alarming Breach: Must-See Risks

Three cyber-attacks on French regional health agencies exposed thousands of patients’ contact details, revealing a worrying gap in public-health defenses and raising the risk of phishing and fraud. Expect notifications from the agencies and take simple precautions now—change passwords, watch for suspicious messages, and monitor accounts.

Analyst 207
SessionReaper: Must-Have Patch for Critical Risk

SessionReaper: Must-Have Patch for Critical Risk

Adobe just released an emergency patch for the critical SessionReaper flaw in Magento that can let attackers hijack customer sessions or run code—if you run Magento, update immediately. After patching, review logs, lock down admin interfaces, and audit extensions to ensure you weren’t compromised.

Analyst 207
Salty2FA: Exclusive Dangerous Phishing Threat

Salty2FA: Exclusive Dangerous Phishing Threat

A new phishing kit called Salty2FA is turning multi-factor authentication into an exploitable step, automating interception of codes, cookies, and push prompts to bypass SMS and app-based 2FA. Organizations should treat 2FA as an architecture—move to phishing-resistant methods like FIDO2, tighten session controls, and ramp up detection before attackers rent this tool and hit your users.

Analyst 207
Tycoon phishing kit: Stunning Dangerous Cloaking Tactics

Tycoon phishing kit: Stunning Dangerous Cloaking Tactics

A prolific phishing kit called Tycoon is now hiding malicious links behind layered redirects, URL obfuscation, and browser-only cloaking to slip past email scanners and trick users. Stay vigilant—combine stronger link inspection, browser-based emulation, DMARC/DKIM/SPF hardening, and user training to blunt this evolving threat.

Analyst 207
Ransomware incidents: Must-Have Resilience or Costly Chaos

Ransomware incidents: Must-Have Resilience or Costly Chaos

Pennsylvania’s Attorney General says “we refused to pay,” choosing to withstand a ransomware attack that has delayed court filings and strained case processing across the state. The decision highlights the painful trade-off between short-term recovery and long-term deterrence—and underscores why public agencies must invest in stronger backups, better defenses, and robust continuity plans.

Analyst 207
AI-powered ransomware: Stunning New Risk Exposed

AI-powered ransomware: Stunning New Risk Exposed

ESET just uncovered PromptLock — the first AI-powered ransomware that runs OpenAI’s gpt-oss:20b locally via Ollama to generate bespoke Lua payloads on the fly. It’s a wake-up call: dynamically generated malware can evade signature-based defenses, so teams must lock down local model hosting, boost runtime monitoring, and update incident playbooks.

Analyst 207
Apache ActiveMQ Urgent Risk: Exclusive Stealth Patch Threat

Apache ActiveMQ Urgent Risk: Exclusive Stealth Patch Threat

Imagine an attacker who not only breaks in through a critical Apache ActiveMQ flaw but then patches it to hide their tracks—leaving defenders chasing symptoms, not the root cause. Treat any “fixed” indicator with skepticism: validate patches with independent controls, boost behavioral monitoring, and assume an adversary may have tampered with the system.

Analyst 207