Cyberattacks

Warnings After New Valencia Ransomware Group Strikes Businesses and Leaks Data

Sep 24, 2024 By Graham Cluley In Tripwire

A new ransomware operation has started to leak information it claims has been stolen from organisations it has compromised around the world. In recent days Valencia Ransomware has posted on its dark web leak site's so-called "Wall of shame" links to gigabytes of downloadable information that has seemingly been exfiltrated from a Californian municipality, a pharmaceutical firm, and a paper manufacturer.

Read Post

Tripwire

Read more about Warnings After New Valencia Ransomware Group Strikes Businesses and Leaks Data

The Machine War Has Begun: Cybercriminals Leveraging AI in DDoS Attacks

Sep 24, 2024 By Jamison Utter In A10 Networks

In the digital landscape, the integration of Artificial Intelligence (AI) into cybercriminal activities has marked the beginning of a new era of threats. The “machine war” has indeed commenced, with AI enhancing the scale and sophistication of cyberattacks. Distributed denial of service (DDoS) attacks, in particular, have become more formidable with AI’s capabilities, presenting significant challenges for cybersecurity defenses.

Read Post

A10 Networks

Read more about The Machine War Has Begun: Cybercriminals Leveraging AI in DDoS Attacks

Educate Your Users About Malicious SEO Poisoning Attacks

Sep 23, 2024 By Roger Grimes In KnowBe4

Since the beginning of computers, social engineering has been the number one way that computers and networks have been compromised. Social engineering is involved in 70% to 90% of all successful data breaches. Nothing else is even close (unpatched software and firmware are involved in 33% of successful attacks, everything else is 1% or less).

Read Post

KnowBe4

Read more about Educate Your Users About Malicious SEO Poisoning Attacks

4 Ways Ethical Hacking Services Helped Businesses Prevent Cyber Attacks

Sep 22, 2024 By SecuritySenses In SecuritySenses

As technology continues to advance at a rapid pace, so do the tactics of cybercriminals. For businesses of all sizes, the threat of a cyber attack is growing more and more concerning. Through the use of ethical hacking techniques, companies can identify vulnerabilities in their systems. They can also address them before malicious hackers exploit them. In this post, we will explore the ways ethical hacking services have become a valuable asset in the fight against cyber attacks.

Read Post

SecuritySenses

Read more about 4 Ways Ethical Hacking Services Helped Businesses Prevent Cyber Attacks

Online Scams Are Shortening Their Cycles and Making More Money

Sep 20, 2024 By Stu Sjouwerman In KnowBe4

New analysis of blockchain activity shows scammers are needing less time to obtain crypto payments and are seeing higher payoffs per scam. I continue to repeatedly cover breakdowns of cybercrime activity from the folks at Chainalysis because it represents an unbiased view that some security vendors may inherently have (because their data is based on what their solutions do and don’t discover).

Read Post

KnowBe4

Read more about Online Scams Are Shortening Their Cycles and Making More Money

Top tips: Four ways organizations can reduce their attack surface

Sep 19, 2024 By General In ManageEngine

Top tips is a weekly column where we highlight what’s trending in the tech world today and list ways to explore these trends. This week, we’re looking at four ways you can minimize your attack surface. Organizational IT infrastructure is now more spread out, multi-layered, and complex than ever.

Read Post

ManageEngine

Read more about Top tips: Four ways organizations can reduce their attack surface

Top Government Cyber Attacks

Sep 19, 2024 By Arctic Wolf In Arctic Wolf

Government entities were in the top five industries targeted by both ransomware and business email compromise (BEC) attacks in 2023, according to Arctic Wolf. Additionally, the FBI reported that government entities were the third most-targeted sector by ransomware in 2023, and Arctic Wolf’s own research saw the average ransom for government organizations top $1 million USD that same year. It’s clear that cyber threats are plentiful for these entities.

Read Post

Arctic Wolf

Read more about Top Government Cyber Attacks

CyCognito Report Exposes Rising Software Supply Chain Threats

Sep 18, 2024 By CyCognito In CyCognito

Findings reveal escalating risks in the software supply chain, highlighting vulnerabilities in web servers, cryptographic protocols, and web interfaces that handle PII.

Read Post

CyCognito

Read more about CyCognito Report Exposes Rising Software Supply Chain Threats

The Growing Dangers of LLMjacking: Evolving Tactics and Evading Sanctions

Sep 18, 2024 By Sysdig Threat Research Team In Sysdig

Following the Sysdig Threat Research Team’s (TRT) discovery of LLMjacking — the illicit use of an LLM through compromised credentials — the number of attackers and their methods have proliferated.

Read Post

Sysdig

Read more about The Growing Dangers of LLMjacking: Evolving Tactics and Evading Sanctions

SANS Releases Guide to Address Rise in Attacks on Manufacturing and Industrial Control Systems

Sep 18, 2024 By Stu Sjouwerman In KnowBe4

Increased ransomware attacks on industrial control systems (ICS), mixed with general ICS insecurity found across the manufacturing sector, has given rise to a guide specifically addressing this risk. Manufacturing has been a target of ransomware for quite some time — I’ve even covered a recent attack focused on credential harvesting.

Read Post