Insurance is a industry tracked across 50 threat clusters and 81 intelligence report mentions on ThreatCluster. First observed November 3, 2025; most recent activity July 17, 2026.
Two critical vulnerabilities have been identified in ZLAN5143D (CVSS 9.8) and BeyondTrust (CVSS 9.9), allowing for total network takeover. No patches are currently available for these flaws, which are being actively…
A new backdoor known as Mistic has been identified in cyberattacks targeting various sectors since April 2026. It is associated with the initial access broker KongTuke, also known as Woodgnat, which sells access to…
Scattered Spider, a cybercrime entity linked to various high-profile attacks since 2022, has been reclassified as a decentralized collective rather than a unified group. Group-IB's analysis indicates that it consists of…
The Mistic malware, a newly identified Windows backdoor, has been active since April 2026, utilizing DLL sideloading to infiltrate enterprise environments. It exploits a legitimate executable, MpExtMs.exe, to load a…
The Silent Ransom Group (SRG), a cyber extortion group active since 2022, has been identified using DNS Fast Flux infrastructure to target U.S. law firms and other sensitive industries. Unlike traditional ransomware,…
Aflac Japan disclosed a data breach affecting 4.38 million customers after unauthorized access to its systems between June 15 and June 25, 2026. The breach was detected on June 25, prompting the suspension of certain…
WireX Systems and Brown & Brown have launched an Executive Cyber Risk Awareness Program to tackle emerging cybersecurity threats, particularly from quantum computing and AI-generated vulnerabilities. The program aims to…
Angelo Martino, a 41-year-old former ransomware negotiator from Florida, pleaded guilty to conspiracy charges related to assisting the BlackCat/ALPHV ransomware gang in extorting U.S. companies. Martino, along with…
The Beacon Mutual Insurance Company reported a data breach involving unauthorized access to its network from January 7 to January 14, 2026. The breach compromised sensitive personal data, including names, Social…
Sedgwick has confirmed a data breach at its subsidiary, Sedgwick Government Solutions, after the TridentLocker ransomware gang claimed responsibility for stealing 3.4 gigabytes of sensitive data. The incident was…