ReliaQuest stories

China-linked Warlock ransomware group exploits SmarterMail flaw for admin takeovers, chaining features to gain full Windows control.

Attackers are abusing Windows screensaver files in a spearphishing campaign to stealthily install remote access tools on business systems.

Ransomware gangs shrank in number but hit more victims in late 2025, with leak-site postings soaring despite fewer active groups.

Attackers are abusing LinkedIn private messages to deliver Python-based malware via booby-trapped archives, ReliaQuest has warned.

ReliaQuest warns BaoLoader and trust-based lures are surging, as attackers ditch zero-days for social engineering and valid certificates.

Storm-0249 hijacks trusted security and Windows tools to stealthily broker high-value network access for ransomware operators.

Chinese state-backed hackers mimic Microsoft Teams downloads in a false flag campaign to infect Chinese speakers and blame Russian actors.

ReliaQuest reveals identity compromises and process flaws, not zero-day exploits, drive most cloud breaches, with 99% of cloud identities still over-privileged.

Ransomware attacks hit a record in Q3 2025 as new alliances broaden targets to sectors like healthcare and critical infrastructure worldwide.

ReliaQuest reports cyber attackers cut breakout time to 18 minutes, with surging threats from Oyster malware and rising abuse of USB and IP-KVM devices.

ReliaQuest launches GreyMatter Transit, enabling real-time cybersecurity threat detection as data moves, cutting delays of traditional storage-based methods.

Phishing attacks using the Axios user agent surged 241% by August 2025, bypassing defences with Microsoft Direct Send to steal credentials at high rates.

Cybercriminal groups ShinyHunters and Scattered Spider have escalated phishing attacks on Salesforce and major firms like Google, signalling possible collaboration.

ReliaQuest launches GreyMatter Agentic Teammates, AI agents that boost security teams by automating routine tasks and enhancing predictive cyber defence.

Organisations face doubled key cyber exposure risks as digital attack surfaces widen, with exposed ports and credentials surging in early 2025, says ReliaQuest.

Cyber attackers now exploit AI to automate vulnerability scans and sell realistic deepfakes, boosting the scale and sophistication of cybercrime worldwide.

ReliaQuest unveils GreyMatter Workflows, automating security operations to cut response times by 64% and reduce manual tasks by over half.

ReliaQuest reveals surge in social engineering cyber threats, with ClickFix tactics and ransomware group shifts raising new security challenges in 2025.

ReliaQuest reveals Black Basta’s fall and warns former affiliates persist with Teams phishing and Python-enabled ransomware tactics post-February 2025.

The cybercriminal group Scattered Spider has launched sophisticated phishing attacks targeting UK retailers, exploiting social engineering and advanced MFA-bypass tools.