The last week has been marked by intense cyber activity at the global and local levels. Ransomware, attacks aimed at public administrations in Spain, new phishing campaigns and the growing sophistication of cybercriminals once again place cybersecurity at the center of media and companies. In this summary, we clearly present the most important facts and trends, with a special focus on Spain and recommendations for anticipating risks.
Major Attacks and Global Trends
- Global ransomware wave: Large organizations from the United States, Israel and Italy have been targeted by bands such as NoName057 (16), Quilin or Arabian Ghosts. In the last few days alone, there have been more than 250 attacks in 39 countries, mostly against government agencies, security forces, banks and manufacturing.
- Massive data breaches: According to recent reports, the amount of data compromised this week exceeds 69 TB worldwide, highlighting the potential harm to the privacy and security of businesses and citizens.
- Rise of mobile malware and threats to AI: Attacks on smartphones continue to grow, especially through banking Trojans and malicious apps that impersonate artificial intelligence, affecting millions of users.
- Social Engineering and Advanced Phishing: The use of vishing and personalized phishing campaigns continues to rise, facilitated by access to leaked databases and new techniques to deceive even experienced users.
Spain in the spotlight: recent attacks
- Cyberattacks on public administrations: Massive DDoS stand out against the websites of city councils and councils across Spain. This week, the website of the Council of Vigo was once again attacked, although “successfully neutralized”, demonstrating the resilience of the systems, but also the persistence of pro-Russian groups such as NoName057 (16).
- Ransomware campaigns and data breaches: Several companies, including insurance companies and professional associations, have experienced significant breaches. Notable examples include Generali, Comisiones Obreras or ATA, with exposures of personal, financial and labor data from thousands of users and employees.
- Objective: reputation and business continuity: Attackers seek both access to private data and to interrupt essential services, damaging the image and operation of Spanish public and private institutions and companies.
Other industry news and updates
- Regulatory update: Since August 1, Europe has blocked the sale of electronic devices that do not meet new cybersecurity requirements, focusing on preventive protection and strict regulatory compliance.
- Innovation and New Threats: Attacks using generative AI continue to increase, both to create more credible frauds and to automate spear phishing attacks aimed at particularly vulnerable targets.
Tips for companies and professionals
- It implements multifactor authentication and advanced monitoring in all systems.
- Review and update cloud application permissions and social engineering training with realistic simulations.
- Strengthen your offline backups and segment your network to limit the spread of malware.
- Watch for suspicious communications and take extreme precautions against unsolicited emails and calls.
- Consult experts and demand transparency and up-to-date security protocols from your suppliers.
Don't leave cybersecurity until the last minute
The digital landscape is increasingly complex and dynamic. Organizations and professionals must anticipate, reinforce the culture of cybersecurity and not let their guard down. Prevention, training and regular vulnerability analysis make the difference between being a victim or a protagonist of an effective defense.
- Update your internal policies and empower your team.
- Conduct weekly audits and technical reviews.
- If you need help or want to validate your level of digital protection...
Contact Apolo Cybersecurity now and request your free consultation to ensure the resilience of your company.
%402x.svg){kind=icon}