ReliaQuest stories

ShinyHunters shifts to subdomain-brand phishing and vishing on mobiles, bypassing domain checks to hijack SSO logins and SaaS sessions.

AI-fuelled hackers can now spread across corporate networks in as little as four minutes, outpacing human defenders by hours.

China-linked Warlock ransomware group exploits SmarterMail flaw for admin takeovers, chaining features to gain full Windows control.

Attackers are abusing Windows screensaver files in a spearphishing campaign to stealthily install remote access tools on business systems.

Attackers are abusing LinkedIn private messages to deliver Python-based malware via booby-trapped archives, ReliaQuest has warned.

ReliaQuest warns BaoLoader and trust-based lures are surging, as attackers ditch zero-days for social engineering and valid certificates.

Storm-0249 hijacks trusted security and Windows tools to stealthily broker high-value network access for ransomware operators.

Chinese state-backed hackers mimic Microsoft Teams downloads in a false flag campaign to infect Chinese speakers and blame Russian actors.

ReliaQuest reveals identity compromises and process flaws, not zero-day exploits, drive most cloud breaches, with 99% of cloud identities still over-privileged.

Ransomware attacks hit a record in Q3 2025 as new alliances broaden targets to sectors like healthcare and critical infrastructure worldwide.

ReliaQuest reports cyber attackers cut breakout time to 18 minutes, with surging threats from Oyster malware and rising abuse of USB and IP-KVM devices.

Phishing attacks using the Axios user agent surged 241% by August 2025, bypassing defences with Microsoft Direct Send to steal credentials at high rates.

Cybercriminal groups ShinyHunters and Scattered Spider have escalated phishing attacks on Salesforce and major firms like Google, signalling possible collaboration.

ReliaQuest launches GreyMatter Agentic Teammates, AI agents that boost security teams by automating routine tasks and enhancing predictive cyber defence.

Organisations face doubled key cyber exposure risks as digital attack surfaces widen, with exposed ports and credentials surging in early 2025, says ReliaQuest.

Cyber attackers now exploit AI to automate vulnerability scans and sell realistic deepfakes, boosting the scale and sophistication of cybercrime worldwide.

ReliaQuest unveils GreyMatter Workflows, automating security operations to cut response times by 64% and reduce manual tasks by over half.

ReliaQuest reveals surge in social engineering cyber threats, with ClickFix tactics and ransomware group shifts raising new security challenges in 2025.

ReliaQuest reveals Black Basta's fall and warns former affiliates persist with Teams phishing and Python-enabled ransomware tactics post-February 2025.

Russian Market remains pivotal in cyber credential theft, with over 136,000 alerts in 2024 for stolen credentials sold at just USD $2 each.