Tag: cybercriminals
170 articles

Cyberattacks Exploit Summer Staffing Gaps
Cyberattacks surge by 40% during holiday periods, with summer being a prime target due to lighter staffing and slower business operations that create the perfect storm for cybercriminals to exploit. When teams are on vacation, attackers see an opportunity to probe for vulnerabilities and test response times.

Cybercriminals Exploit ClickFix to Deliver Malware
Don't assume macOS is safe from cyber threats - a recent report warns that it now requires the same level of monitoring and protection as Windows to prevent malware attacks. Cybercriminals are using the ClickFix technique to deliver malware, tricking victims into running malicious commands.

September 2025 Patch Tuesday: Must-Have Urgent Fixes
Microsoft’s September 2025 Patch Tuesday fixes more than 80 vulnerabilities—13 rated critical—and while no zero-days or active exploits are reported, this is a timely reminder to patch internet-facing systems and update your devices tonight to close the window for attackers.

email bomb campaigns: Exclusive Dangerous Zendesk Flaw
Imagine waking to hundreds of threatening emails that look like they came from companies you trust — attackers abused weak outbound authentication in Zendesk to launch hard-to-block email bomb campaigns, a wake-up call for vendors and customers to tighten SPF/DKIM/DMARC and stronger default protections now.

Whisper 2FA: Exclusive Risky Phishing Threat
Think 2FA is foolproof? Researchers warn Whisper 2FA — a phishing‑as‑a‑service tool tied to roughly one million credential‑theft attempts since July 2025 — shows attackers can cheaply scale real‑time relay attacks, so phishing‑resistant authentication and layered defenses are now essential.

Windows 10 Critical Must-Have Final Security Update
Microsoft just shipped a final, critical Windows 10 update—patching 172 vulnerabilities (including three actively exploited)—so if you’re still on Windows 10, now’s the time to plan an upgrade, enable compensating controls, or secure paid support before unsupported systems become easy targets.

Stealit infostealer: Exclusive Dangerous VPN Threat
Think twice before installing that VPN or cracked game—attackers are hiding the Stealit info‑stealer inside trusted-looking installers to harvest passwords, cookies and crypto keys. Stick to official downloads, keep software updated, and watch for unusual app behavior to stay safe.

Qilin ransomware Stunning School Breach: Urgent Risk
A ransomware group claims it stole financial and students’ medical records from Mecklenburg County Public Schools, leaving families anxious and demanding clear answers about what was exposed and how the district will protect them.

Palo Alto Networks administrative portals: Urgent Threat
A sudden fivefold surge in automated scans of Palo Alto Networks’ admin portals is a clear warning that attackers are probing for weaknesses — now’s the time to patch, tighten access, and verify your telemetry. While scans don’t prove compromise, treat this spike as a prompt to hunt for misconfigurations and strengthen admin controls.

AI security Must-Have: Best Defense Tactics
PwC finds organizations are now prioritizing AI security over cloud and network defenses, reallocating budgets to protect models, training data and inference pipelines from novel attacks. That shift means stronger governance, adversarial testing and monitoring are needed to make AI a strategic asset rather than a new liability.

cybersecurity staff Shortage: Must-Have Fixes for Risky Gap
Two-thirds of organizations lack dedicated cybersecurity staff, leaving networks and data more exposed as threats surge and hiring, burnout, and competition for talent bite. Fixing it means smarter hiring, hands-on training and public‑private action before the next big incident.

GoAnywhere managed file transfer Exclusive Must-Have Fixes
A critical Perfect‑10 RCE in Fortra’s GoAnywhere MFT is being actively exploited, leaving thousands of internet‑facing instances at risk — patch immediately, isolate exposed servers, and audit logs to stop data theft or ransomware. This crisis spotlights gaps in vendor disclosure and supply‑chain risk, so organizations and vendors must coordinate fast to prevent widespread breaches.

Kido International Stunning Breach: Worst Privacy Crisis
A recent cyberattack on Kido International exposed photos and home addresses of preschoolers, leaving parents reeling and asking how we can better protect the kids in our care. This alarming breach shows why stronger security, clearer rules, and more support for small childcare providers are urgently needed.

Boyd Gaming Risky Data Breach – Exclusive Fallout
Boyd Gaming says it takes privacy seriously — yet a recent cyberattack may have exposed employee and other personal data, highlighting how hospitality firms with large workforces remain irresistible targets. Quick, transparent responses and stronger cybersecurity measures are now more crucial than ever to protect people and trust.

healthcare data Stunning Breach: Worst Risk to 850K
Imagine the place you trust with your most private health details becoming an unlocked door — more than 850,000 Americans now face that reality after three medical centers had records, billing data, and sensitive clinical notes stolen. This wake-up call shows healthcare systems must strengthen defenses while patients stay alert and protect their information.

ransomware gangs Risky Retirement: Exclusive Warning
Fifteen ransomware gangs publicly claimed retirement on BreachForums — dramatic, but experts say it may be more theater than farewell. Don’t relax: rebrands, affiliate migrations and exit scams are common, so keep backups, MFA, segmentation and solid incident‑response readiness.

Salesforce platforms: Must-Have Critical Security Guide
The FBI just flagged active campaigns targeting Salesforce platforms—if you rely on Salesforce for customer data, now’s the time to harden access, rotate tokens, and audit integrations. Take a few simple steps today to prevent data theft, detect suspicious exports, and reduce your risk before attackers strike.

regional health agencies Alarming Breach: Must-See Risks
Three cyber-attacks on French regional health agencies exposed thousands of patients’ contact details, revealing a worrying gap in public-health defenses and raising the risk of phishing and fraud. Expect notifications from the agencies and take simple precautions now—change passwords, watch for suspicious messages, and monitor accounts.

SessionReaper: Must-Have Patch for Critical Risk
Adobe just released an emergency patch for the critical SessionReaper flaw in Magento that can let attackers hijack customer sessions or run code—if you run Magento, update immediately. After patching, review logs, lock down admin interfaces, and audit extensions to ensure you weren’t compromised.

Salty2FA: Exclusive Dangerous Phishing Threat
A new phishing kit called Salty2FA is turning multi-factor authentication into an exploitable step, automating interception of codes, cookies, and push prompts to bypass SMS and app-based 2FA. Organizations should treat 2FA as an architecture—move to phishing-resistant methods like FIDO2, tighten session controls, and ramp up detection before attackers rent this tool and hit your users.

Tycoon phishing kit: Stunning Dangerous Cloaking Tactics
A prolific phishing kit called Tycoon is now hiding malicious links behind layered redirects, URL obfuscation, and browser-only cloaking to slip past email scanners and trick users. Stay vigilant—combine stronger link inspection, browser-based emulation, DMARC/DKIM/SPF hardening, and user training to blunt this evolving threat.

Ransomware incidents: Must-Have Resilience or Costly Chaos
Pennsylvania’s Attorney General says “we refused to pay,” choosing to withstand a ransomware attack that has delayed court filings and strained case processing across the state. The decision highlights the painful trade-off between short-term recovery and long-term deterrence—and underscores why public agencies must invest in stronger backups, better defenses, and robust continuity plans.

AI-powered ransomware: Stunning New Risk Exposed
ESET just uncovered PromptLock — the first AI-powered ransomware that runs OpenAI’s gpt-oss:20b locally via Ollama to generate bespoke Lua payloads on the fly. It’s a wake-up call: dynamically generated malware can evade signature-based defenses, so teams must lock down local model hosting, boost runtime monitoring, and update incident playbooks.

Apache ActiveMQ Urgent Risk: Exclusive Stealth Patch Threat
Imagine an attacker who not only breaks in through a critical Apache ActiveMQ flaw but then patches it to hide their tracks—leaving defenders chasing symptoms, not the root cause. Treat any “fixed” indicator with skepticism: validate patches with independent controls, boost behavioral monitoring, and assume an adversary may have tampered with the system.