Blog #Cybersecurity Trends

Cybersecurity researcher Jeremiah Fowler uncovered a 1.2TB misconfigured database from Builder.ai, exposing over 3 million records without authentication or passwords.

The US Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning to federal agencies to patch a critical vulnerability in BeyondTrust's remote access products by December 27. The vulnerability, CVE-2024-12356, is a command injection flaw (CVSS score of 9.8) that can be exploited without authentication and has been actively exploited in the wild.

The Play ransomware group has claimed responsibility for a data breach at Krispy Kreme, threatening to release sensitive internal company data within two days. Known for its double-extortion model, the group exfiltrates and encrypts data, pressuring victims to meet ransom demands or face public exposure of stolen information.

As cryptocurrency adoption grows, so do scams targeting investors and traders. Common threats include phishing, malware, Ponzi schemes, fake wallets, and pump-and-dump frauds. Scammers exploit trust and technical vulnerabilities, often using advanced tactics like deepfakes, fake apps, and AI-generated phishing campaigns.

Earth Koshchei, also known as APT29 or Midnight Blizzard, has been linked to a sophisticated rogue Remote Desktop Protocol (RDP) campaign aimed at espionage and data theft. Using tools like commercial VPNs, TOR, and residential proxies, the group obscures their activities to evade detection and attribution.

LKQ Corporation, a leading US auto parts provider with 45,000 employees across 1,600 locations globally, disclosed a cyberattack affecting a Canadian business unit. Unauthorized access to IT systems was detected on November 13, causing disruptions for a few weeks, though operations have largely recovered.

The ransomware group Cicada3301 has claimed responsibility for breaching Concession Peugeot, a French automotive dealership, stealing 35GB of sensitive data, including invoices, internal communications, and passport copies.

Yianni Charalambous, a renowned luxury car customizer in England, is working to make a Tesla Cybertruck road-legal in the UK, which would mark the first such approval in the country.

In 2025, certain professions face heightened cybersecurity risks due to the nature of their work. IT professionals are exposed through frequent interactions with compromised systems and malware, which attackers exploit to access larger networks.

A significant healthcare data breach occurred when cybersecurity researcher Jeremiah Fowler uncovered an unprotected database belonging to Care1, a Canadian provider of AI-powered software for optometrists.

Cybercriminals are increasingly using advanced HTML techniques to bypass email security filters, heightening the risk of phishing attacks on individuals and organizations.

The Black Basta ransomware group has refined its social engineering tactics, launching a global campaign that combines sophisticated techniques with advanced tools to breach organizations.