Phishing attempts on government offices surged 360% between May 2023 and 2024, according to email security company Abnormal Security. The surge has largely been attributed to a rise in popularity of business email compromise (BEC) attacks, which increased by 70% in the same period. Successful BEC attacks, which use social-engineering tactics to evade conventional security measures, can result in substantial financial losses.
China-linked cyberespionage group PlushDaemon used South Korean VPN service to inject malware
A China-linked cyberespionage group known as PlushDaemon has reportedly exploited the VPN service of South Korean provider IPany to spread malware and spy on users.
