Email is still the front door for attackers. And the door is wide open. Scammers now use the same tools defenders do. A bad actor with access to a large language model can generate flawless English, craft convincing requests, and sound exactly like a colleague or supplier. The result: emails that slip past traditional filters with ease. “By the time blocking rules and security have been built up...

Two in three financial institutions faced cyberattacks in 2024, and that trend shows little sign of letting up. Because of their valuable data – hooked conveniently to direct financial information – FinServ organizations are perennial targets for hungry attackers. But this isn’t news to anybody. Financial institutions understand the threats, and for the most part, they are some of the most...

What is AiLock?AiLock is a ransomware-as-a-service (RaaS) operation that first came to light in March 2025. Security researchers at Zscaler noted that they had identified a cybercriminal group extorting ransoms from organisations through threats.I'm guessing the threat was the usual story of "We've stolen your data and encrypted the files on your systems - pay up or we'll dump the information on...

The Swiss government has issued a warning after a third-party service provider suffered a ransomware attack, which saw sensitive information stolen from its systems and leaked onto the dark web. Radix a non-profit health foundation, works with various federal administrations across Switzerland in areas such as promoting good nutrition, healthy exercise, and helping individuals deal with addiction,...

As ransomware operators continue to expand the impact of their malware, CISA is proposing new requirements to help protect sensitive data, while the SEC is coming down on organizations that downplayed a historical breach. Learn all about these stories and more in this week's Friday Five.CISA Proposes New Security Requirements to Protect GOVT, Personal Data by BILL TOULASCISA has proposed security...

As ransomware gangs and state-sponsored threat actors wage war against international law enforcement, private organizations, U.S. courts and agencies, and the manufacturing industry are urged to reinforce their cybersecurity measures. Learn all you need to know about these emerging threats in this week's Friday Five

As ransomware, misconfigurations, and other vulnerabilities continue to be stubborn threats to mitigate, CISA and the FBI promise election security, and the FAA is pushing for tighter regulations. Learn about these top stories and more in this week's Friday Five!

Stories on rare, albeit encouraging wins against ransomware gangs took the top headlines this past week. Additionally, read about a massive breach involving Americans' sensitive data, the UN's new cybercrime treaty, and more in this week's Friday Five.

As an emerging ransomware group made headlines with their record-setting $75 million payout, Congress moves toward qualifying those groups' actions as terrorism, new attacks target ISPs and Microsoft 365 users, and more. Read more about these headlines in this week's Friday Five.

As ransomware and genAI continue to pose major risks for organizations globally, it was a mere software update that caused major global Microsoft outages this past week. Find guidance on how to respond to these threats and more in this week's Friday Five.

Catch up on the ongoing fight against cybercrime platforms, ransomware and other malware, updated compliance rules for healthcare organizations, and more — all in this week's Friday Five.

A major data privacy bill and proposed regulation have taken steps forward to becoming reality this past week. Meanwhile, China looms large as a significant cybersecurity threat and agencies are taking action to prepare. Catch up on these stories and more in this week's Friday Five.

U.S. critical infrastructure remains under fire, but questions remain as to whether or not federal agencies are prepared for attacks. Stay up to date with these developments and more in this week's Friday Five.

As cyber attacks and data breaches are on the rise, federal agencies are warning of several new and persisting threats. Learn all you need to know in this week's Friday Five.

While two ransomware gangs were taken down this past week, an increase in zero-day exploitations and shifting tactics by Gootloader and Jupyter are keeping enterprises on their toes. Catch up on these stories and more in this week's Friday Five!

A social engineering attack needs only one thing to be successful: the trust of the targeted party. Here are 7 ways to protect against email spoofing.

Smishing and vishing attacks can dupe even the most vigilant users with persuasive, convincing text and voice messages. Here are 6 ways to prevent these types of attacks.

Between malicious QR codes, ransomware, and new legislation that would require increased vulnerability disclosures, organizations have a lot to pay attention to in this week's headlines. Catch up on it all in this week’s Friday Five!

Responding to a sender, clicking on a link, or downloading a file that may not be trustworthy can lead to data corruption, leaked confidential information, and infected devices or networks. View this infographic to see tips for protecting against phishing attacks.