2024 saw the evolution of cyber threats, with attacks on widely-used technologies like VPNs, advanced phishing campaigns, and exploitations of cloud services for malware distribution. Tactics, including DLL sideloading and new malware such as SUBTLE-PAWS and EDRKillShifter are disabling security mechanisms. Threat actors, including Chinese state-sponsored hackers and new APT groups are targeting sectors like defence, government, healthcare, and finance. Increased threats to critical infrastructures have been highlighted. Recommended mitigations include timely software patching, multi-factor authentication, advanced detection tools, and regular employee training.
Cyber Security Alert! How Ransomware Gangs Exploit Microsoft Teams
Cybersecurity experts warn that ransomware gangs are using a mix of techniques, including email bombing, IT support impersonation and exploiting Microsoft Teams’ default configurations, to
