👋 Hello! Welcome to Cybersecurity Decrypted, your weekly cybersecurity news recap. In this week’s issue:
- 🔒 New encryption features from Google
- 💬 A major new SMS phishing campaign revealed
- 💰 Millions of stolen crypto seized by the DOJ
Sign up to get Decrypted in your inbox every week:
📰 Top Stories
- Google has announced a new end-to-end email encryption feature for all Gmail enterprise users. Once the feature is released, business users will be able to send out fully encrypted emails to any user on any email service or platform, directly from the Gmail inbox. 🔗
- Companies are scrapping AI initiatives due to concerns around cost, data privacy, and security risks, according to new analysis from S&P Global Market Intelligence. 🔗
- An SMS-based Phishing-as-a-Service threat group has successfully hit 100s of targets with phishing text messages since 2023. The group claims to be sending 100,000 phishing text messages on iOS and Android every day. 🔗
- Ransomware group BlackLock has been targeted by security researchers who were able to find a vulnerability in their data leak site, exposing configuration files and credentials. What goes around, comes around! 🔗
- The DOJ has seized $8.2 million USD in stolen cryptocurrency funds connected to “pig butchering” romance scams. This involves scammers building romantic connections with victims before pressuring them for cash. 🔗
📡 Threat Watch
- Ransomware delivery gangs like “RansomHub” are increasingly using tools designed to disable endpoint detection and response (EDR) solutions as part of their services, according to ESET threat research. 🔗
- Half of all organizations experienced 2 – 4 email security incidents last year, with 64% of IT professionals expecting to see more phishing this year, says a new report from TitanHQ. 🔗
- “Morphing Meerkat,” a new threat actor group offering phishing campaigns “as-a-Service” are using DNS MX records to serve fake login pages that impersonate around 114 well-known brands, say threat researchers at Infoblox. 🔗
- Check Point has responded after a hacker claimed to be selling data stolen from the company. Check Point said the stolen data is not from a recent breach and that the importance of the data has been exaggerated. 🔗
🚨 Industry News
- ReliaQuest, a security operations provider, has announced a new $500 million USD funding round. The total raised by the company is now $830 million USD, which brings ReliaQuest’s total valuation to $3.4 billion. 🔗
- Data security startup Cyberhaven has raised $100 million in series A funding, which brings its total valuation to $1 billion USD. 🔗
- Material Security, an innovative email security platform, has announced a major expansion to provide a complete cloud workspace protection platform. 🔗
- Two new AI-focused security companies have announced funding rounds this week. Straiker has emerged from stealth with a platform to help secure AI apps, raising $21 million USD. GetReal Security has raised $17.5 million for an AI deepfake detection solution.
- GitHub has announced new updates to its Advanced Security platforms after 39 million leaked secrets were found in GitHub repositories in 2024, including API keys and credentials. 🔗
- The Women in Cybersecurity conference is taking place this week in Dallas, Texas, an event dedicated to recruiting and advancing women in cybersecurity. 🔗
- Wiz took the crown for April Fools’ Day effort. Check out their CISO Musical…🕺💃
🌎 Global News
- The French Competition Authority has fined Apple $162 million USD for anticompetitive practices around a tool that protects users from app tracking. 🔗
- The European Union has announced a €1.3 billion investment in improving digital technology in Europe, including cybersecurity, AI, and digital training. 🔗
- The UK Government has set out details of its upcoming “Cyber Security and Resilience Bill”, which will include new cyber reporting requirements. 🔗
🔎️ Expert Insights: Latest From Us
Here are a few articles from Expert Insights matching the stories in the news this week.
- Secure your email communication – Read our guide to the top email encryption solutions for business.
- Protect your users against phishing – Here’s our breakdown of the top phishing protection solutions.
- Don’t miss – Our latest podcast on how security teams can prevent breaches and strengthen threat defenses.
That’s all for this week! 👋
Did you find this email interesting? Please let us know by replying directly to this message. We love to hear any thoughts and feedback.
Expert Insights’ Cybersecurity Resources
- Top RMM Solutions For MSPs
- Top Mobile Device Management (MDM) Solutions
- Top Email Security Gateways
- Top Email Security Solutions For Office 365
- Top Identity And Access Management Solutions
- Top Phishing Protection Solutions
- Top Phishing Simulation And Testing Solutions
- Top Cyber Threat Intelligence Solutions
