2023, Security Defenses and Social Engineering

Report Finds 50% of Scattered Spider Phishing Domains Targeted Finance & Insurance

Digital Shadows

JANUARY 22, 2025

In this blog, well preview the reports highlights and give insights into social engineering campaigns leveraging impersonating domains and our predictions for the threats shaping 2025. With a 152% rise in exploited network-edge vulnerabilities, securing unpatched systems has never been more critical.

Insurance

Insurance Phishing Social Engineering Engineering

October 2023 Patch Tuesday Includes Three Zero-Days Flaws

eSecurity Planet

OCTOBER 11, 2023

Microsoft’s Patch Tuesday for October 2023 covers a total of 103 CVEs, including three zero-day vulnerabilities affecting WordPad, Skype and the HTTP/2 “ Rapid Reset ” DDoS vulnerability. CVE-2023-41763 , an elevation of privilege vulnerability in Skype for Business with a CVSS score of 5.3

DDOS

DDOS Engineering Authentication Social Engineering

7 Best Penetration Testing Service Providers in 2023

eSecurity Planet

OCTOBER 13, 2023

BreachLock offers a wide range of services covering cloud , network , application , API , mobile, social engineering and third-party partner tests, and can help with SOC 2, PCI DSS, HIPAA, and ISO 27001 regulatory requirements too. Like BreachLock, ScienceSoft also offers a mix of manual and automated testing.

Penetration Testing

Penetration Testing Social Engineering Software Cyber Attacks

7 Best Email Security Software & Tools in 2023

eSecurity Planet

OCTOBER 6, 2023

Despite all the advances in cybersecurity, email remains the starting point for the vast majority of cyberattacks, as phishing, malware and social engineering remain effective attack techniques. That makes email security software a worthwhile investment for organizations of all sizes. You can unsubscribe at any time.

Software

Software Phishing Mobile Threat Detection

Cybersecurity Management Lessons from Healthcare Woes

eSecurity Planet

MAY 30, 2024

Table of Contents Toggle Recent Healthcare Attacks & Breaches 5 Key Cybersecurity Management Lessons to Learn Bottom Line: Learn Healthcare’s Lessons Before Suffering Pain Recent Healthcare Attacks & Breaches Large breaches affected over 88 million individuals in the USA in 2023, a 60% increase from 2022. Ascension lost $2.66

Healthcare

Healthcare Cybersecurity Ransomware Backups

HackerGPT 2.0 Unveils New AI Cyber Defense Strategies

eSecurity Planet

MARCH 15, 2024

HackerGPT, first launched in 2023, is a ChatGPT-powered tool that merges AI technology with cybersecurity-focused expertise. It uses advanced natural language processing to provide insights into both offensive and defensive cyber activities. It also teaches users about social engineering, phishing , and brute force attacks.

Mobile

Mobile Hacking Education Cybersecurity

Top 7 Cloud Storage Security Issues & Risks (+ Mitigations)

eSecurity Planet

JANUARY 30, 2024

Verizon’s 2023 Data Breach Investigations Report (DBIR) also reveals that inside actors were responsible for 83% of 2022 data breaches. Insider risks can be attributed to a lack of awareness, employee unhappiness, or social engineering attacks. Make the default data storage settings private. million records exposed.

Risk

Risk DDOS Data breaches Encryption

Vulnerability Recap 9/2/24 – Big Companies Upgrade vs Risks

eSecurity Planet

SEPTEMBER 2, 2024

Users must examine their camera firmware and seek alternative or extra security steps to reduce risk. The problem: CVE-2023-22527 , a severe RCE vulnerability in Atlassian Confluence Data Center and Server, enables unauthenticated remote code execution. Victims of social engineering risked compromised systems and probable data theft.

Risk

Risk Firewall Firmware Engineering

How Secure Is Cloud Storage? Features, Risks, & Protection

eSecurity Planet

JANUARY 18, 2024

Cloud storage provides businesses with key benefits, such as flexibility, agility, business continuity, and faster deployment, all of which contribute to overall organizational responsiveness and better security. They cited lower risk, enhanced security, and cost savings as they go through migration.

Risk

Risk Backups Encryption DDOS

5 Critical Threat Actors You Need to Know About

Digital Shadows

OCTOBER 29, 2024

Among these experienced affiliates is the “Scattered Spider” group, known for its custom tools and advanced social engineering skills, which helped RansomHub become the most active ransomware group in Q3 2024 (see Figure 1). In November 2022, IntelBroker reportedly used Endurance to target the US Federal Government.

Ransomware

Ransomware Encryption Technology Malware

Types of Encryption, Methods & Use Cases

eSecurity Planet

DECEMBER 7, 2023

Users can establish a symmetric key to share private messages through a secure channel, like a password manager. Unfortunately, while symmetric encryption is a faster method, it is also less secure because sharing the key exposes it to theft. It was updated by Chad Kime on December 7, 2023.

Encryption

Encryption Passwords Authentication Password Management

Best Secure Remote Access Software of 2025

eSecurity Planet

OCTOBER 9, 2024

In June 2023, the Cybersecurity and Infrastructure Security Agency (CISA) published, alongside other security agencies, a guide on how to secure remote access software and listed other potential vulnerabilities created by these tools. This level of access can be problematic.

Software

Software Mobile Authentication Risk

5 Critical Threat Actors You Need to Know About

Digital Shadows

OCTOBER 29, 2024

Among these experienced affiliates is the “Scattered Spider” group, known for its custom tools and advanced social engineering skills, which helped RansomHub become the most active ransomware group in Q3 2024 (see Figure 1). In November 2022, IntelBroker reportedly used Endurance to target the US Federal Government.

Ransomware

Ransomware Encryption Technology Malware

Top Cloud Security Issues: Threats, Risks, Challenges & Solutions

eSecurity Planet

MAY 28, 2024

Conduct user awareness training: Incorporate a focused training program into onboarding and workflow process so employees can learn about social engineering strategies, phishing risks, and cloud security best practices. Check out our extensive review on the best DevSecOps tools , covering their use cases, key features, and more.

Risk

Risk Cloud Migration DDOS Encryption

5 Major Cybersecurity Trends to Know for 2024

eSecurity Planet

DECEMBER 19, 2023

As 2023 draws to an end and cybersecurity budgeting is nearly complete, it helps to consider the year’s events and try to predict next year’s trends. 2023 cybersecurity issues will continue: Weak IT fundamentals, poor cybersecurity awareness, and ransomware will still cause problems and make headlines.

Cybersecurity

Cybersecurity CISO Government Technology

Cyber Security Informer

Report Finds 50% of Scattered Spider Phishing Domains Targeted Finance & Insurance

October 2023 Patch Tuesday Includes Three Zero-Days Flaws

Trending Sources

7 Best Penetration Testing Service Providers in 2023

7 Best Email Security Software & Tools in 2023

Cybersecurity Management Lessons from Healthcare Woes

HackerGPT 2.0 Unveils New AI Cyber Defense Strategies

Top 7 Cloud Storage Security Issues & Risks (+ Mitigations)

Vulnerability Recap 9/2/24 – Big Companies Upgrade vs Risks

How Secure Is Cloud Storage? Features, Risks, & Protection

5 Critical Threat Actors You Need to Know About

Types of Encryption, Methods & Use Cases

Best Secure Remote Access Software of 2025

5 Critical Threat Actors You Need to Know About

Top Cloud Security Issues: Threats, Risks, Challenges & Solutions

5 Major Cybersecurity Trends to Know for 2024

Stay Connected