ReliaQuest stories

ReliaQuest warns BaoLoader and trust-based lures are surging, as attackers ditch zero-days for social engineering and valid certificates.

Storm-0249 hijacks trusted security and Windows tools to stealthily broker high-value network access for ransomware operators.

Chinese state-backed hackers mimic Microsoft Teams downloads in a false flag campaign to infect Chinese speakers and blame Russian actors.

ReliaQuest reveals identity compromises and process flaws, not zero-day exploits, drive most cloud breaches, with 99% of cloud identities still over-privileged.

Ransomware attacks hit a record in Q3 2025 as new alliances broaden targets to sectors like healthcare and critical infrastructure worldwide.

ReliaQuest reports cyber attackers cut breakout time to 18 minutes, with surging threats from Oyster malware and rising abuse of USB and IP-KVM devices.

ReliaQuest launches GreyMatter Transit, enabling real-time cybersecurity threat detection as data moves, cutting delays of traditional storage-based methods.

Phishing attacks using the Axios user agent surged 241% by August 2025, bypassing defences with Microsoft Direct Send to steal credentials at high rates.

Cybercriminal groups ShinyHunters and Scattered Spider have escalated phishing attacks on Salesforce and major firms like Google, signalling possible collaboration.

ReliaQuest launches GreyMatter Agentic Teammates, AI agents that boost security teams by automating routine tasks and enhancing predictive cyber defence.

Organisations face doubled key cyber exposure risks as digital attack surfaces widen, with exposed ports and credentials surging in early 2025, says ReliaQuest.

Cyber attackers now exploit AI to automate vulnerability scans and sell realistic deepfakes, boosting the scale and sophistication of cybercrime worldwide.

ReliaQuest unveils GreyMatter Workflows, automating security operations to cut response times by 64% and reduce manual tasks by over half.

ReliaQuest reveals surge in social engineering cyber threats, with ClickFix tactics and ransomware group shifts raising new security challenges in 2025.

ReliaQuest reveals Black Basta’s fall and warns former affiliates persist with Teams phishing and Python-enabled ransomware tactics post-February 2025.

The cybercriminal group Scattered Spider has launched sophisticated phishing attacks targeting UK retailers, exploiting social engineering and advanced MFA-bypass tools.

Russian Market remains pivotal in cyber credential theft, with over 136,000 alerts in 2024 for stolen credentials sold at just USD $2 each.

Cyberattackers used SEO poisoning to mimic a payroll portal, stealing employee wages via mobile devices in a widespread manufacturing sector fraud uncovered by ReliaQuest.

ReliaQuest unveils GreyMatter Discover, an AI-powered tool boosting security teams' ability to spot and tackle risks across complex digital environments.

ReliaQuest reveals a Chinese APT group targeted US defence tech firm in February 2025, stealing sensitive IP using advanced, stealthy cyber espionage tactics.