Ransomware Response Improves Even As Preparation Lags
One bright spot in Sophos’ annual State of Ransomware report released this week is that organizations have gotten better at stopping ransomware attacks before attackers…
Month: June 2025
Scattered Spider strikes again? Aviation industry appears to be next target for criminal group
The aviation industry has seemingly become the latest target of Scattered Spider, a sophisticated cybercriminal group that has shifted its focus from retail and insurance…
Exploitation of Microsoft 365 Direct Send to Deliver Phishing Emails as Internal Users
A sophisticated phishing campaign targeting over 70 organizations, predominantly in the US, has been uncovered by Varonis’ Managed Data Detection and Response (MDDR) Forensics team.…
Microsoft security updates address CrowdStrike crash, kill ‘Blue Screen of Death’
When a faulty software update from cybersecurity firm CrowdStrike last year caused possibly the largest IT outage in history, Microsoft ended up taking much of…
Threat Actors Use Clickfix Tactics to Deploy Malicious AppleScripts for Stealing Login Credentials
In a recent discovery by the CYFIRMA research team, a sophisticated malware campaign dubbed Odyssey Stealer has been uncovered, targeting macOS users through a deceptive…
Citrix Bleed 2 under active attack, reports suggest
A freshly-discovered vulnerability in the perennially under-fire Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway appliances, that has been compared to 2023’s Citrix Bleed…
Taking over millions of developers exploiting an Open VSX Registry flaw
Taking over millions of developers exploiting an Open VSX Registry flaw Pierluigi Paganini June 27, 2025 A critical flaw in Open VSX Registry could let…
Slavery, torture, human trafficking discovered at 53 Cambodian online scamming compunds
An Amnesty International investigation uncovered 53 scamming compounds in Cambodia where people, including children and human trafficking victims, were forced to work and tortured or…
Threat Actors Leverage Windows Task Scheduler to Embed Malware and Maintain Persistence
A comprehensive follow-up analysis to the FortiGuard Incident Response Team’s (FGIR) investigation titled “Intrusion into Middle East Critical National Infrastructure” has revealed a protracted cyberattack…
Scattered Spider cyber gang turns fire on aviation sector
Scattered Spider, the teenaged hacking collective behind recent cyber attacks on UK retailers Marks and Spencer (M&S) and Co-op, appears to be actively breaching targets…
Scattered Spider hackers shift focus to aviation, transportation firms
Hackers associated with “Scattered Spider” tactics have expanded their targeting to the aviation and transportation industries after previously attacking insurance and retail sectors These threat…
Over 2 million affected by US supermarket breach
Belgian-Dutch supermarket operator Ahold Delhaize has revealed that the personal data of over two million individuals was compromised in a November 2024 ransomware attack on…