Threat actors stories

A newly discovered botnet, consisting of over 130,000 compromised devices, is targeting Microsoft 365 accounts with password spraying attacks, linked to China-based actors.

The FBI and CISA have alerted organisations to increased cyber threats from China's Ghost ransomware group, affecting over 70 countries through outdated software.

A new study by Proofpoint reveals that 78% of Microsoft 365 users faced account takeover attempts, driven by a surge in sophisticated brute force tactics.

Fortra's latest cybersecurity survey reveals a worldwide surge in concerns over phishing and evolving technologies, with security professionals prioritising awareness and closing gaps.

A recent report by Proofpoint reveals that 78% of Microsoft 365 users faced account takeovers, with attackers adeptly using HTTP client tools like Axios.

Logpoint has partnered with Icelandic firm Netheimur to bolster cybersecurity in Iceland, introducing its SIEM system for enhanced threat detection across sectors.

Kaspersky has upgraded its Threat Lookup service with AI-driven summaries, enabling cybersecurity teams to efficiently gather data on threats and actors.

Singapore has reported a significant drop in web threats, marking a 24.7% reduction since 2021, as the country enhances its cybersecurity measures.

A report from Claroty reveals that over 111,000 vulnerabilities in operational technology devices across critical sectors are being targeted by adversaries.

With Data Privacy Day on the horizon, experts stress the urgent need for organisations to bolster data protection amid rising cyber threats and evolving technologies.

Google Cloud Security's latest Threat Horizons Report reveals a rise in sophisticated threats targeting cloud environments, highlighting new evasion tactics and data exfiltration risks.

Tenable has unveiled vital cybersecurity trends for 2025, warning organisations to adapt to the expanding threat landscape and rising data breach costs.

Researchers at Sophos X-Ops have uncovered two active threat campaigns targeting firms via Microsoft Office 365, utilising remote management tools to steal data and deploy ransomware.

Trustwave's 2025 cybersecurity threat report reveals a staggering 80% rise in ransomware attacks targeting the energy and utilities sector, highlighting urgent security concerns.

GuidePoint Security has unveiled the use of a Python backdoor in recent ransomware attacks, enabling threat actors to maintain access and deploy malicious encryptors.

As experts forecast 2025's cybersecurity trends, organisations are urged to enhance their defences against evolving AI-driven threats and embrace unified security solutions.

CISA has mandated federal agencies to implement SCuBA Secure Configuration Baselines for Microsoft 365 by mid-2025 to combat rising cyber threats.

Kaspersky warns that supply chain attacks and IT outages could escalate in 2025, highlighting vulnerabilities in key technologies and infrastructure.

A new cyberespionage campaign, named 'Operation Digital Eye', has emerged, targeting IT service providers in Southern Europe to infiltrate digital supply chains.

Experts from Semperis forecast that AI will dominate cybersecurity discussions in 2025, despite many attacks remaining basic and clunky.