According to Cybersecurity Dive, “Americans lost $16.6 billion to cyber fraud and internet crimes last year (2024), up 33% from the previous year. Phishing, spoofing and extortion topped the list of complaints, but investment and business email compromise (BEC) scams cost victims the most money.” Yes, phishing continues to be a significant problem in
Cybersecurity
CISA Alert: Liteon Electric Vehicle Chargers
By Linn Foster Freedman on
Posted in Cybersecurity
If you own an electric vehicle, keep an eye on cybersecurity issues that may affect your car and its accessories. You wouldn’t think that an electric vehicle charger could include a vulnerability that allows threat actors to access information, but the Cybersecurity & Infrastructure Security Agency (CISA) issued an Alert on July 15, 2025, warning…
What to Know About SafePay Ransomware Group
By Linn Foster Freedman on
Posted in Cybersecurity
The SafePay ransomware group has been active since fall 2024 and has increased its activity this spring and summer. According to NCC Group, SafePay hit the most victims of any threat actor in May 2025—it is linked to 248 victims to date, according to Ransomware.live and RansomFeed.
The group uses common tactics, including social…
Joint Release Warns of Iranian-Backed Cyber-Attacks
By Linn Foster Freedman on
Posted in Cybersecurity
On June 30, 2025, a Joint Advisory was issued by the National Security Agency, the Cybersecurity and Infrastructure Security Agency, the Federal Bureau of Investigation and the Department of Defense Cyber Crime Center issued a Joint Cybersecurity Information Sheet (CIS) titled “Iranian Cyber Actors May Target Vulnerable U.S. Networks and Entities of Interest,” warning…
FBI Warns Airline and Transportation Sectors About Scattered Spider
By Linn Foster Freedman on
Posted in Cybersecurity
…These actors rely on social engineering techniques, often impersonating employees or contractors to deceive IT help desks into granting
New Hires More Likely to Fall for Phishing + Social Engineering Attacks
By Linn Foster Freedman on
Posted in Cybersecurity
When assessing cybersecurity risk in your organization, it is important to understand your users and their behavior. A new study by Keepnet sheds light on new hire behavior concerning phishing susceptibility. According to its recent survey, the 2025 New Hires Phishing Susceptibility Report, a whopping “71% of new hires click on phishing emails within…
CISO’s: Take a Look at CSC’s CISO Outlook 2025 Report
By Linn Foster Freedman on
Posted in Cybersecurity
Cybersecurity firm CSC recently issued its CISO Outlook 2025 Report, which predicts cybersecurity challenges CISOs will face in the next year. The report, from a survey of 300 CISOs and cybersecurity professionals globally, finds that CISOs “predict the cybersecurity challenges they face will intensify and the growth of artificial intelligence (AI) is increasing the…
Google Releases June Security Bulletin for Android Devices to Fix Vulnerabilities
By Linn Foster Freedman on
Posted in Cybersecurity
Google recently issued its June Android Security Bulletin that is designed to patch 34 vulnerabilities, all of which Google designates as high-severity defects. The most serious flaw the patch is designed to fix in the Android system would allow threat actors “to achieve local escalation of privilege with no additional privileges required.” The bulletin contains…
U.S. Retailers Bracing for Scattered Spider Attacks
By Linn Foster Freedman on
Posted in Cybersecurity
Google sent out a warning that the cybercriminal group Scattered Spider is targeting U.S.-based retailers. Scattered Spider is believed to have been responsible for the recent attack on Marks & Spencer in the U.K. A security researcher at Google has posited that Scattered Spider concentrates attacks on one industry at a time and predicts that…
College Student Behind Cyber Extortions
By Linn Foster Freedman on
Posted in Cybersecurity
The U.S. Attorney’s Office for the District of Massachusetts has charged a student at Assumption University with hacking into two U.S.-based companies’ systems and demanding a ransom.
Matthew D. Lane, 19, has agreed to plead guilty to one count of cyber extortion conspiracy, one count of cyber extortion, one count of unauthorized access to protected…