2023, Cyber threats and Security Defenses

Akira ransomware gang used an unsecured webcam to bypass EDR

Security Affairs

MARCH 8, 2025

They found unsecured IoT devices, including webcams and a fingerprint scanner, using them to bypass security defenses and successfully deploy the ransomware. The Akira ransomware attack reveals the risks of overlooked IoT devices, evolving cyber threats, and EDR limitations.

Ransomware

Ransomware IoT Encryption Passwords

Report Finds 50% of Scattered Spider Phishing Domains Targeted Finance & Insurance

Digital Shadows

JANUARY 22, 2025

Were thrilled to unveil our latest threat landscape report for the finance and insurance sector, offering in-depth analysis of the evolving cyber threats facing this industry.

Insurance

Insurance Phishing Social Engineering Engineering

7 Best Email Security Software & Tools in 2023

eSecurity Planet

OCTOBER 6, 2023

As some of these solutions are pretty low-cost, they potentially offer high ROI considering the enormity of the email threat problem. Subscribe The post 7 Best Email Security Software & Tools in 2023 appeared first on eSecurity Planet. You can unsubscribe at any time.

Software

Software Phishing Mobile Threat Detection

6 Best Threat Intelligence Feeds to Use in 2023

eSecurity Planet

AUGUST 10, 2023

Here are our picks for the top threat intelligence feeds that security teams should consider adding to their defensive arsenal: AlienVault Open Threat Exchange: Best for community-driven threat feeds FBI InfraGard: Best for critical infrastructure security abuse.ch You can unsubscribe at any time.

Internet

Internet Internet Cybersecurity Malware

Recent Tesla Hacks Highlight Importance of Protecting Connected Devices

eSecurity Planet

FEBRUARY 2, 2024

While Teslas aren’t the typical business IoT device, their connection to the internet makes them a cyber threat as much as your business’s other IoT technology. Teslas Get the Spotlight in Recent Ethical Hacking Efforts Researchers have discovered multiple vulnerabilities within Teslas since March 2023.

Hacking

Hacking IoT Firmware Cybersecurity

AI and Cyber Security: Innovations & Challenges

eSecurity Planet

SEPTEMBER 16, 2024

As cyber threats become increasingly sophisticated, integrating artificial intelligence (AI) into cybersecurity is more than a passing trend — it’s a groundbreaking shift in protecting our digital assets. As cyber-attacks grow increasingly complex, leveraging AI becomes crucial for staying ahead of emerging threats.

Artificial Intelligence

Artificial Intelligence Threat Detection Phishing Cyber Attacks

News alert: AdviserCyber launches to help ‘RIAs’ meet SEC’s cybersecurity infrastructure rules

The Last Watchdog

NOVEMBER 1, 2023

1, 2023 — AdviserCyber , a cybersecurity service provider for Registered Investment Advisers (RIAs) with $500M to $3B Assets Under Management (AUM) who must comply with the Securities and Exchange Commission (SEC) cybersecurity requirements, announced its formal launch today. Phoenix, Ariz. —

Cybersecurity

Cybersecurity Penetration Testing Cyber threats Risk

The Pivotal Role Protective DNS Plays In Cyber Defense

Security Boulevard

JULY 9, 2024

Businesses need to know that pure prevention is in the past and, instead, automatically assume compromised security. Defense in depth and operational resiliency are the future for organizations that want to survive in the new world of cyber threats.

DNS

DNS Cyber threats Cyber Attacks Phishing

The TOITOIN Trojan: Analyzing a New Multi-Stage Attack Targeting LATAM Region

Security Boulevard

JULY 7, 2023

Gain valuable insights into the evolving threat landscape and learn how organizations can fortify their defenses against this emerging Latin American cyber threat. Figure 1 - Researchers discover suspicious ZIP archives hosted on Amazon EC2 during threat hunting activities in Zscaler cloud.

Malware

Malware Encryption Phishing Internet

What Is Firewall-as-a-Service? FWaaS Ultimate Guide

eSecurity Planet

AUGUST 29, 2023

If your organization faces internet outages or slowdowns, the network security provided by FWaaS could be compromised. During such instances, your network might be vulnerable to cyber threats due to the reliance on connectivity for protection. Management Structure: Managed externally by a provider using web interfaces or APIs.

Firewall

Firewall Architecture Data privacy Internet

Vulnerability Recap 6/10/24 – RCE Attacks in Major Platforms

eSecurity Planet

JUNE 10, 2024

Last week’s vulnerability news revealed a significant increase in serious flaws targeted by cyber threat actors across multiple large platforms. The problem: The Muhstik botnet exploited a severe RCE issue in Apache RocketMQ ( CVE-2023-33246 ) to attack Linux systems and IoT devices for DDoS and cryptomining.

Malware

Malware Authentication Software Telecommunications

Cloud Security Strategy: Building a Robust Policy in 2024

eSecurity Planet

AUGUST 7, 2024

Organizations can defend their assets and maintain consumer trust by addressing cyber risks, obtaining a competitive edge, assuring full-stack visibility, adopting proactive security, and allowing business agility. These situations demonstrate how gaps in cloud security can cause severe disruptions.

Architecture

Architecture DDOS Encryption Data breaches

Vulnerability Recap 5/27/24 – Google, Microsoft & GitLab Fixes

eSecurity Planet

MAY 27, 2024

GitLab also patched six medium-severity vulnerabilities, including CSRF via Kubernetes Agent Server, ( CVE-2023-7045 ) and DoS ( CVE-2024-2874 ). To avoid exposure to cyber threats, all companies should implement the mitigation actions described in the catalog or stop using impacted products if fixes aren’t available.

Backups

Backups Authentication DDOS Engineering

IaaS vs PaaS vs SaaS Security: Which Is Most Secure?

eSecurity Planet

DECEMBER 18, 2023

Regular audits help to instill a continuous improvement cycle, enhancing the IaaS environment’s resilience in the face of new cyber threats and security issues. Also read: 13 Cloud Security Best Practices & Tips for 2023 What Is PaaS Security?

Encryption

Encryption Data breaches Data privacy Risk

Vulnerability Recap 4/22/24 – Cisco, Ivanti, Oracle & More

eSecurity Planet

APRIL 22, 2024

Orca Security disclosed the flaw , called LeakyCLI, but both cloud providers declined to take action and assumed CLI can only be accessed in secure environments. A similar flaw disclosed last year to Microsoft, CVE-2023-36052 , earned a CVSS score of 8.6.

Authentication

Authentication Firewall Encryption Cybersecurity

Top Cloud Security Issues: Threats, Risks, Challenges & Solutions

eSecurity Planet

MAY 28, 2024

Cloud security issues refer to the threats, risks, and challenges in the cloud environment. Threats are active attacks that target system weaknesses. Risks include potential damage from cyber threats and vulnerabilities. Challenges are gaps and barriers to attaining good security.

Risk

Risk Cloud Migration DDOS Encryption

5 Major Cybersecurity Trends to Know for 2024

eSecurity Planet

DECEMBER 19, 2023

As 2023 draws to an end and cybersecurity budgeting is nearly complete, it helps to consider the year’s events and try to predict next year’s trends. 2023 cybersecurity issues will continue: Weak IT fundamentals, poor cybersecurity awareness, and ransomware will still cause problems and make headlines.

Cybersecurity

Cybersecurity CISO Government Technology

How threat actors can use generative artificial intelligence?

Security Affairs

DECEMBER 1, 2024

From generating deepfakes to enhancing phishing campaigns, GAI is evolving into a tool for large-scale cyber offenses GAI has captured the attention of researchers and investors for its transformative potential across industries. Unfortunately, its misuse by malicious actors is altering the cyber threat landscape.

Artificial Intelligence

Artificial Intelligence Phishing Media Cyber threats

How security professionals will rise to the challenge of cyber defense in 2022

CyberSecurity Insiders

DECEMBER 8, 2021

Have hope that through the hard work and brilliant minds behind these security defenses that 2022 will not be a repeat of such high level attacks. Learn more about what security leaders have to say about the upcoming year below: Neil Jones, cybersecurity evangelist, Egnyte. Jeff Sizemore, chief governance officer, Egnyte. “We

Data breaches

Data breaches Ransomware Government Cybersecurity

Cyber Security Informer

Akira ransomware gang used an unsecured webcam to bypass EDR

Report Finds 50% of Scattered Spider Phishing Domains Targeted Finance & Insurance

Trending Sources

7 Best Email Security Software & Tools in 2023

6 Best Threat Intelligence Feeds to Use in 2023

Recent Tesla Hacks Highlight Importance of Protecting Connected Devices

AI and Cyber Security: Innovations & Challenges

News alert: AdviserCyber launches to help ‘RIAs’ meet SEC’s cybersecurity infrastructure rules

The Pivotal Role Protective DNS Plays In Cyber Defense

The TOITOIN Trojan: Analyzing a New Multi-Stage Attack Targeting LATAM Region

What Is Firewall-as-a-Service? FWaaS Ultimate Guide

Vulnerability Recap 6/10/24 – RCE Attacks in Major Platforms

Cloud Security Strategy: Building a Robust Policy in 2024

Vulnerability Recap 5/27/24 – Google, Microsoft & GitLab Fixes

IaaS vs PaaS vs SaaS Security: Which Is Most Secure?

Vulnerability Recap 4/22/24 – Cisco, Ivanti, Oracle & More

Top Cloud Security Issues: Threats, Risks, Challenges & Solutions

5 Major Cybersecurity Trends to Know for 2024

How threat actors can use generative artificial intelligence?

How security professionals will rise to the challenge of cyber defense in 2022

Stay Connected