CyberSecurity Updates

Business Security Malicious use of AI is reshaping the fraud landscape, creating major new risks for businesses Phil Muncaster 10 Mar 2025  •  , 4 min. read Artificial intelligence (AI) is doing wonderful things for many businesses. It’s helping to automate repetitive tasks for efficiency and cost savings. It’s supercharging customer service and coding. And it’s helping to unearth insight to drive improved business decision-making. Way back in October 2023, Gartner estimated that 55% of…

Read More

Spotify boasts almost 700 million active users, including 265 million premium subscribers. As the world’s leading music streaming service, it’s hardly surprising that it also attracts all manner of bad actors who are eager to exploit its users. Spotify accounts represent valuable digital assets that can be monetized through multiple channels, including on the dark web and the shadowy corners of Telegram. While discounted compared to legitimate subscription costs, the going prices of hacked Spotify…

Read More

Critical Infrastructure While relatively rare, real-world incidents impacting operational technology highlight that organizations in critical infrastructure can’t afford to dismiss the OT threat Phil Muncaster 14 Mar 2025  •  , 4 min. read Amid all the high-profile data breaches and ransomware attacks on IT systems in recent years, the threat to business-critical operational technology (OT) is still often underestimated. Yet attacking tech systems that interface with the physical world is the quickest way to achieve…

Read More

Business Security Academic institutions have a unique set of characteristics that makes them attractive to bad actors. What’s the right antidote to cyber-risk? Phil Muncaster 14 Apr 2025  •  , 5 min. read We all want the best possible education for our children. But even the best-laid plans can come unstuck when confronted with an agile, persistent and devious adversary. Nation state-aligned actors and cybercriminals represent one of the biggest threats to schools, colleges and…

Read More

Here’s what’s been hot on the AI scene over the past 12 months, how it’s changing the face of warfare, and how you can fight AI-powered scams 17 Mar 2025 The second season of the Unlocked 403 cybersecurity podcast kicks off with a familiar face – ESET Security Evangelist Ondrej Kubovič, who also appeared on the podcast’s inaugural episode. Picking up where they left off this time last year, Becks and Ondrej discuss what’s been…

Read More

In August 2024, ESET researchers detected cyberespionage activity carried out by the China-aligned MirrorFace advanced persistent threat (APT) group against a Central European diplomatic institute in relation to Expo 2025, which will be held in Osaka, Japan. Known primarily for its cyberespionage activities against organizations in Japan, to the best of our knowledge, this is the first time MirrorFace intended to infiltrate a European entity. The campaign, which we uncovered in Q2 and Q3 of…

Read More

The group’s Operation AkaiRyū begins with targeted spearphishing emails that use the upcoming World Expo 2025 in Osaka, Japan, as a lure 18 Mar 2025 The China-aligned MirrorFace APT group has targeted a Central European diplomatic institute, marking the first time this China-aligned APT group has attempted to infiltrate an entity in Europe, ESET research has found. In keeping with its previous campaigns, Operation AkaiRyū (which is Japanese for RedDragon) begins with carefully crafted spearphishing…

Read More