The emergence of RansomHub in 2024 marks a significant evolution in ransomware threats, impacting over 600 organizations following recent disruptions faced by established groups ALPHV and LockBit, as reported by Group-IB. Group-IB’s latest analysis, exclusively presented to Hackread.com, sheds light on the alarming ascent of ransomware-as-a-service models, with RansomHub identified…
Artificial Intelligence & Machine Learning, Healthcare, Industry Specific Lawsuit Claims Insurer Misused AI in Denying Necessary Medical Care Marianne Kolbasuk McGee (HealthInfoSec) •February 14, 2025 Image: UnitedHealthCare A proposed class action lawsuit against UnitedHealth Group has gained judicial approval to progress. The case contends that UnitedHealthCare, the company’s insurance division,…
Title: Salt Typhoon Targets Cisco Devices in Global Cyber Campaign In a significant cybersecurity incident, the advanced persistent threat (APT) group known as Salt Typhoon has compromised over a thousand Cisco devices across a network of telecommunications companies, internet service providers (ISPs), and academic institutions. This widespread attack poses serious…
Researchers have identified an ongoing and sophisticated phishing campaign orchestrated by Russian operatives aimed at compromising Microsoft 365 accounts across various sectors. This threat leverages a technique known as device code phishing, which manipulates a specific authentication method under the OAuth standard—referred to as device code flow. Device code flow…
Emerging Trends in Fraud Prevention and Anti-Money Laundering Solutions As cybercriminals utilize advanced technologies, including artificial intelligence to orchestrate deepfake scams and synthetic identity fraud, financial institutions are ramping up investments in fraud detection, anti-money laundering (AML) solutions, and identity verification systems. This evolution in the threat landscape is compelling…
A significant data breach has reportedly affected Zacks Investment Research, a prominent investment research firm based in the United States. Recent findings reveal that account information from nearly 12 million users has been leaked online, following a cyberattack in June. This incident was disclosed in a report by BleepingComputer, which…
Artificial Intelligence & Machine Learning, Data Privacy, Data Security Related: Zero-Day Vulnerabilities Impact Financial Markets, SailPoint IPO Reflects Industry Trends Anna Delaney (annamadeline) • February 14, 2025 Clockwise, from top left: Anna Delaney, Tom Field, Michael Novinson, and Chris Riotta This week’s update from ISMG editors features an in-depth discussion…
In an era where artificial intelligence is making tremendous strides, concerns over cybersecurity are mounting, as recent incidents involving major players like OpenAI and DeepSeek AI underscore the vulnerabilities that accompany such advancements. Both organizations have faced serious breaches, eliciting alarm over the safety of user data and the potential…
Anti-Phishing, DMARC, Cybercrime, Fraud Management & Cybercrime Astaroth Kit Available for $2,000 on Telegram, Capable of Real-Time Authentication Interception Prajeet Nair (@prajeetspeaks) • February 13, 2025 Researchers have identified a phishing kit named Astaroth that employs session hijacking to circumvent two-factor authentication. (Image: Shutterstock) A recently emerged phishing kit, Astaroth,…
