The scourge of “malvertising” is nothing new, but the tactic is still so effective that it's contributing to the rise of investment scams and the spread of new strains of malware.

Malicious digital advertisements and “SEO poisoning” that gets those ads to prime spots in search results have been mainstays of the digital scamming ecosystem for years. But as online crime evolves and malicious trends like “pig butchering” investment scams and infostealing malware proliferate, researchers say that so-called “malvertising” is still a key technique for scammers—and still a growing problem.

Instances of malvertising in the US were up 42 percent month-over-month in fall 2023 and increased another 41 percent from July to September of this year, according to data from the security firm Malwarebytes. The company says that scammers typically cycle through the advertising accounts used for malvertising quickly, and 77 percent of the accounts are only used once. The bulk of the activity, though, traces back to South Asia and Southeast Asia, Malwarebytes says, with 90 percent of the ad fraud coming from Pakistan and Vietnam, according to the researchers' telemetry. But as with many components of the digital crime ecosystem, malvertising is often offered as a service where cybercriminals from around the world can purchase ads that distribute their malware or lead potential victims to a malicious website of their choosing.

Jérôme Segura, senior director of threat intelligence at Malwarebytes, emphasizes that a particularly effective place for potential victims to encounter malicious ads is in search results, where sponsored marketing content gains legitimacy just by showing up on the same page as legitimate search results. Such malicious ads can even end up getting prime placement in the layout of search results.

“Scammers are using the power of internet and advertising technology, which allows really immense targeting of the right victim. They can get the right ad with the right intent in front of them at the right time,” Segura says. “The fact that scammers are continuing to spend money on advertising shows that these scams are working and they’re getting a return on their ad spend.”

Malvertising has been and continues to be used in phishing attacks and credit card scams, as well as for distributing malware like cryptominers and ransomware. But researchers are increasingly seeing it being used to infect victims with infostealers as well. And researchers from the United Nations Office on Drugs and Crime report that malicious ads have been incorporated into pig butchering and other investment scams, and even romance scams.

“Malvertising is a cyberattack technique that injects malicious code within digital ads,” UNODC notes in a recent report on evolving cybercrime tactics. “Difficult to detect by both internet users and publishers, these infected ads are usually distributed to consumers through legitimate advertising networks. Because ads are displayed to all website visitors, virtually every page viewer is at risk of infection.”

Researchers regularly see malicious ads in search results representing themselves as coming from legitimate businesses and organizations. Whether it's a regional municipality, a utility like a power company, or a big business, people will use search engines simply to pull up the URL of an organization. And if the first results or the most convenient results to click on are ads, scammers have the opportunity to buy this real estate.

“The volume of these things is immense,” says Sean Gallagher, the senior threat researcher at Sophos. “Search engines like Google will say they check the content of ads to ensure they’re safe, but the thing is that attackers are using ad delivery networks and can redirect the URL after the ad is paid for.”

Google is clearly aware that malicious ad activity is growing and evolving. The company specifically addresses misleading and fraudulent ad activity in its policies, including a “misrepresentation policy,” and says that it takes numerous approaches to vetting ads and detecting malvertising. Attackers have continued to develop circumvention methods, though, to avoid having their ads flagged or removed. In 2023, Google blocked or removed about 5.5 billion ads and suspended more than 12.7 million advertiser accounts.

The company has also taken steps over the years to label ads clearly and delineate them in the search results layout. Still, any search engine that’s supported by ads ultimately has the two types of content side by side, especially on mobile, where users have limited screen space.

“We expressly prohibit ads that attempt to circumvent our enforcement by disguising the advertiser’s identity to deceive users and distribute malware," Google spokesperson Nate Funkhouser told WIRED in a statement. “When we identify an ad that violates this policy, we remove it and suspend the associated advertiser account as quickly as possible.”

Sophos' Gallagher points out that criminals can often get the most for their money when buying ads for more unique searches, where they can dominate the ad space and get to the top of the results more organically. But both Sophos and Malwarebytes researchers also regularly see malicious ads running against frequent searches like those for Google, Walmart, Disney+, Slack, Lowe’s, and Apple. Segura even says that Malwarebytes itself has to invest heavily in buying search engine ads just to keep malvertising at bay for the company's brand.

“We have to defend our brand so much,” he says. “People take advantage of that.”

Malicious Ads in Search Results Are Driving New Generations of Scams

Artificial Intelligence (AI) is no longer a far-off dream—it’s here, changing the way we live. From ordering coffee to diagnosing diseases, it’s everywhere. But while you’re creating the next big AI-powered app, hackers are already figuring out ways to break it.
Every AI app is an opportunity—and a potential risk. The stakes are huge: data leaks, downtime, and even safety threats if security

A Guide to Securing AI App Development: Join This Cybersecurity Webinar

Despite advancements in cybersecurity tools, human vulnerability remains the weakest link, with phishing among the most dangerous forms…

Despite advancements in cybersecurity tools, human vulnerability remains the weakest link, with phishing among the most dangerous forms of social engineering. The FBI’s **Internet Crime Complaint Center (IC3)** identifies phishing as the most commonly reported type of cybercrime, with around 300,000 incidents in 2023 alone resulting in financial losses exceeding $18.23 million. 

Even employees are aware of these risks, even if they lag when it comes to actually ensuring the integrity of their data and access credentials. A recent industry survey found that **71% of working adults** have admitted to risky behaviour, which can include reusing or sharing a password, clicking on links from unverified sources, or giving credentials to untrustworthy websites or apps. Virtually all of these people engage in risky behaviour with full knowledge of the dangers involved.

This discrepancy between awareness and action is therefore a significant challenge. It is essential to **train employees to recognize** and properly deal with phishing attempts. One of the most effective ways to address this is through phishing simulations, which provide a practical and measurable approach to enhancing how employees identify and act on phishing attacks. 

By simulating real-world scenarios, organizations can establish a culture in which each team member can be an active participant in improving cybersecurity.

****Phishing Simulation’s Role and How It Works****

Simulated phishing attacks replicate real-world threats to test employee responses. Unlike passive training methods such as online educational modules or presentations, **phishing simulation can immerse users** in practical scenarios. Going beyond simple emails, simulations now offer advanced algorithms to tailor phishing emails based on organizational context, user behaviour, and other scenarios, which increases the effectiveness of training.

Platforms that provide this service also offer detailed analytics on employee performance, identifying high-risk individuals or departments. These insights allow organizations to implement targeted training, addressing gaps in knowledge or behaviour. Moreover, when simulation tests take place throughout people’s ongoing work, it can reinforce genuine cybersecurity awareness, fostering a culture of vigilance across the team.

Attack scenarios are executed with varying degrees of complexity. For instance, emails are crafted to resemble legitimate communications, often using common phishing tactics like spoofed domains, urgent requests, or enticing offers. These emails prompt employees to interact, asking them to **click on unknown links** or to provide credentials to unauthorized parties. Failing to identify the simulated phishing email, such as when a user clicks a link or logs in to a spoofed site, then triggers educational feedback, serving up micro-lessons explaining the red flags and consequences of such actions.

Organizations can customize simulations to address industry-specific threats. For example, finance teams might encounter simulated spear-phishing attempts targeting financial data, while HR teams might face phishing emails related to payroll fraud. Sophisticated platforms can also integrate threat intelligence, ensuring simulations evolve alongside real-world attack trends.

****The Benefits of Simulation-Based Training****

One of the most significant advantages of phishing simulations is behavioural conditioning. Regular exposure to simulated phishing attempts trains employees to recognize and respond appropriately to phishing threats. 

This repeated practice not only reinforces awareness but also develops instincts for identifying malicious attempts. For instance, it is reported that industries with higher engagement in phishing simulations, such as financial services, achieved reporting rates of up to 29%, indicating **increased employee awareness** and proactive reporting behaviours.

Phishing simulations also play a crucial role in compliance and reporting. Industries bound by stringent regulations, such as GDPR or HIPAA, require organizations to maintain robust cybersecurity training programs. Simulations provide tangible evidence of these efforts, demonstrating compliance during audits. 

By incorporating simulations into their training regimes, companies can fulfil legal obligations while simultaneously building a more security-conscious workforce.

Another key benefit is cost efficiency. Cyberattacks can lead to significant financial losses. IBM’s 2024 **Cost of a Data Breach Repor**t reveals that the global average cost of a data breach is $4.88 million. Thus, preventing just one successful breach can potentially save organizations millions in losses, regulatory penalties, lawsuits, and other costs.

Lastly, an enhanced security posture helps reduce downtime caused by cyberattacks. A successful phishing attempt can lead to operational disruptions that might require extensive recovery efforts. By training employees to identify and report phishing attempts, organizations can minimize disruptions, ensuring business continuity and protecting their bottom line.

****Strategies for Achieving Maximum Impact****

Despite their advantages, phishing simulations face challenges. Employees may feel tricked or resentful, perceiving simulations as punitive rather than educational. To address this, organizations should focus on transparency and communication, framing simulations as a learning opportunity rather than a test to foster cooperation.

Additionally, simulations must strike a balance between realism and ethical boundaries. Overly deceptive tactics can harm trust within the organization. Clear policies and ethical guidelines ensure simulations remain constructive. Organizations also need to establish protocols, such as debriefing, to ensure a collaborative environment and to incorporate lessons learned into further simulation activities.

To maximize the effectiveness of phishing simulations, organizations should implement a structured approach. Start with a baseline assessment to gauge the current level of phishing awareness among employees. This initial evaluation provides a clear starting point and helps identify specific weaknesses that need attention.

Next, regular and varied simulations should be conducted at unpredictable intervals to maintain employee vigilance. By keeping simulations unpredictable, employees remain alert and less likely to become desensitized. Additionally, the simulations should cover a wide range of scenarios to address different phishing tactics, such as email scams, spear phishing, and social engineering, ensuring employees are prepared for all types of attacks.

It is also important to use data-driven adjustments. Analytics from simulations should be used to refine training programs, focusing on areas where employees struggle the most. 

Engaging leadership involvement in the simulations can further strengthen the training. When leadership participates, it sets a positive example and reinforces the importance of cybersecurity across the organization, reducing vulnerabilities like **CEO fraud** or whale phishing.

Finally, establish a continuous feedback loop. After each simulation, provide immediate feedback to employees through debriefing, highlighting key lessons and areas for improvement. This ensures that the learning process remains ongoing.

****The Takeaway****

Phishing simulation can be an impactful component of an organization’s cybersecurity strategy. It bridges the gap between theoretical training and real-world applications. Organizations can use this proactive stance to enhance awareness, empower the workforce, and build a resilient cybersecurity culture.

1.  **4 Ways For Employees To Distinguish Phishing Attacks**
2.  **99% of UAE’s .ae Domains Exposed to Phishing, Spoofing**
3.  **GitLoker-Linked GoIssue Phishing Tool Targets GitHub Users**
4.  **Phishing Attacks Bypass Microsoft 365 Email Safety Warnings**
5.  **Future of Phishing Email Training for Employees in Cybersecurity**

Why Simulating Phishing Attacks Is the Best Way to Train Employees

AI is transforming business in 2025, from hyper-personalization to ethical AI. Success lies in mastering it to enhance innovation, efficiency, and trust while staying competitive.

Let’s admit it, everyone is tired of hearing about Artificial Intelligence (AI). It’s the tech world’s favourite trendy term, and for good reason: AI has transformed everything from how we shop to how businesses make decisions. But here’s the catch; when AI is everywhere, the real challenge is making it work smarter for your organization.

In 2025, success won’t come from simply using AI but from mastering it to maximize efficiency and innovation. The companies that thrive will be the ones leveraging AI to its fullest potential, ensuring it serves their unique goals while staying ahead of competitors.

****Hyper-Personalization: Goodbye, One-Size-Fits-All****

In 2025, the days of generic marketing and cookie-cutter customer experiences will feel as outdated as flip phones. AI-powered hyper-personalization will allow businesses to deliver uniquely tailored interactions, making every customer feel like their needs are front and center.

Picture this: a coffee shop chain uses AI to analyze customer behaviour, weather patterns, and local trends to suggest not just what drink you might want, but also when you’re most likely to need it. The result? A customer experience so seamless it feels intuitive.

Businesses that embrace this level of personalization will see increased customer loyalty and engagement. On the flip side, those who cling to outdated strategies risk becoming invisible in a competitive market.

****Generative AI: Creativity Meets Efficiency****

Generative AI has come a long way from simple chatbots and image generators. In 2025, it will be a cornerstone of business operations, especially in marketing, design, and content creation.

Need an ad campaign? AI can draft multiple variations in minutes, tailored to specific demographics. Designing a product prototype? AI tools can generate concepts faster than traditional processes ever allowed.

However, the true value of generative AI lies in complementing—not replacing—human creativity. By handling repetitive tasks and providing fresh ideas, AI lets teams focus on innovation and strategy. Businesses that balance human ingenuity and AI efficiency will stand out in a crowded marketplace.

****AI-Augmented Workforces: Empowering Employees, Not Replacing Them****

The narrative that AI will eliminate jobs has given way to a more nuanced truth: AI is here to enhance human potential. By taking over repetitive and mundane tasks, AI frees up employees to focus on higher-value work.

Imagine a project manager using AI tools to predict project timelines, allocate resources, and flag potential risks—all in seconds. Or a customer service representative equipped with AI-powered insights to resolve complex queries faster and with greater accuracy.

In 2025, successful businesses will invest in training their workforce to work alongside AI, maximizing productivity while fostering innovation. The organizations that recognize this partnership as an asset will reap the rewards of a more engaged and efficient team.

****AI in Cybersecurity: Staying One Step Ahead****

As cybersecurity threats grow more sophisticated, businesses can no longer rely on reactive security. In 2025, AI will be the backbone of proactive cybersecurity strategies, identifying and mitigating risks before they escalate.

AI systems can analyze network activity in real time, flagging anomalies that could indicate a breach. Unlike traditional methods, these systems learn and adapt continuously, staying ahead of evolving threats.

But it’s not just about security; it’s about trust. Customers are increasingly aware of data privacy concerns, and businesses that adopt strong AI-driven security measures will not only protect their assets but also win the confidence of their clients.

****Edge AI: Speed, Privacy, and Efficiency****

Edge AI is a game-changer, processing data directly on devices instead of relying on centralized cloud servers. This means faster decisions, enhanced data privacy, and less dependence on constant connectivity.

Consider a self-driving car that uses edge AI to analyze its surroundings and make split-second decisions, or a smart factory where edge devices optimize production lines in real-time. For businesses, this technology translates to lower latency, improved efficiency, and better customer experiences.

In 2025, adopting edge AI will give companies a competitive edge by allowing them to respond faster and more effectively to real-world demands.

****Ethical AI: Trust Is the New Currency****

As AI becomes more deeply embedded in our lives, questions around ethics and transparency are impossible to ignore. Algorithmic bias, lack of explainability, and data misuse can erode trust in AI systems and the businesses that use them.

In 2025, companies that prioritize ethical AI practices will lead the way. This means conducting regular audits to identify biases, ensuring algorithms are transparent, and engaging openly with stakeholders about how AI is used.

Trust isn’t just a nice-to-have; it’s a business imperative. Companies that get this right will build stronger relationships with customers, employees, and regulators alike.

****Sustainability Through AI****

AI isn’t just revolutionizing business processes; it’s also helping companies reduce their environmental impact. AI can cut waste, conserve resources, and align with global sustainability goals by optimising operations.

For instance, logistics companies are using AI to streamline delivery routes, reducing fuel consumption. Retailers are employing AI to forecast demand more accurately, minimizing overproduction. Even agriculture is benefiting, with AI tools monitoring soil health and improving crop yields.

According to Relevant Software, as of November 2024, approximately 35% of companies worldwide have integrated artificial intelligence (AI) into their operations, with an additional 42% exploring its potential applications

For your information, Relevant Software is an ML/AI software development company, that leverages the power of AI and analytics to help businesses adopt solutions that drive efficiency while advancing sustainability.

****Conclusion: Thriving in an AI-Saturated World****

In 2025, AI won’t just be a competitive advantage, it will be a necessity. From hyper-personalized customer experiences to ethical governance and sustainability, businesses that embrace AI thoughtfully and strategically will lead their industries.

The true value of AI lies in how thoughtfully and strategically it is implemented. Those who view AI as an opportunity to enhance human creativity, streamline decision-making, and drive efficiencies will gain a significant edge. Conversely, businesses that fail to adapt or view AI as a passing trend risk falling behind.

The future of business is undeniably AI-driven. The question is: will you harness its power or risk being left behind?

1.  Augmenting Training Datasets Using Generative AI
2.  How Artificial Intelligence (AI) is Impacting Modern Healthcare
3.  Cyber Resiliency in the AI Era: Building the Unbreakable Shield
4.  Darktrace AI Halts Thread Hijacking Attack Targeting Major Company
5.  AI-Driven Scam Ads: Deepfake Tech Used to Peddle Bogus Products

Top AI Trends of 2025 Businesses Should Be Ready For

Whether it's detecting fraudulent activity, preventing phishing, or protecting sensitive data, AI is transforming cybersecurity in ridesharing.

Source: Askar Karimullin via Alamy Stock Photo

COMMENTARY

Picture yourself standing on a busy street corner, smartphone in hand. With just a few taps, you summon a car that will arrive in minutes. This seemingly simple action has now become a daily routine for millions of Americans across the country. But as ridesharing apps offer unparalleled convenience, they also face growing concerns about security and data protection. As a result, these platforms are increasingly turning to artificial intelligence (AI) to fortify their defenses and ensure the safety of both riders and drivers.

Beneath the surface of this seamless user experience lies a complex ecosystem of AI algorithms working tirelessly to keep every journey safe and secure. Whether it's detecting fraudulent activity, preventing phishing attempts, or protecting sensitive data, AI is fundamentally transforming the cybersecurity landscape in ridesharing.

**AI-Driven Identity Verification**

Security starts at the very first step of the ridesharing journey — identity verification. Both riders and drivers must be authenticated to ensure a secure experience. However, verifying millions of users poses a substantial challenge. That's where AI steps in as a powerful tool for combating identity fraud.

Driver Authentication: AI-powered facial recognition systems use computer vision to compare selfies taken by drivers with their government-issued IDs. This process ensures that the person behind the wheel matches the registered account. To enhance security, these platforms implement periodic re-verification through biometric checks, preventing fraudulent actors from using stolen accounts to access the platform.

Rider Authentication: Currently, riders are authenticated through basic checks such as validating email addresses, phone numbers, and payment methods. However, the potential for AI in rider verification extends far beyond these initial steps. In the future, AI systems could incorporate more sophisticated predictive modeling to detect anomalies in user activity — for example, unusual patterns in booking history or device usage could flag compromised accounts, enabling platforms to intervene before any security breach occurs.

**Detecting Fraud and Phishing Attacks**

One of the most pervasive threats in digital platforms today is phishing. With the rise of sophisticated phishing schemes aimed at ridesharing users — whether to steal credentials or payment information — ridesharing apps have embraced AI-driven systems to detect and block malicious attempts in real time.

Fraud and Phishing Detection: Fraudsters often exploit vulnerabilities like stolen payment information or fake driver profiles to manipulate the system for unauthorized gains. Meanwhile, phishing campaigns attempt to trick users — both drivers and riders — into revealing sensitive details. AI tackles these threats by:

*   Identifying Suspicious Behavior: AI models flag irregularities, such as unusual login locations, sudden changes in ride patterns, or attempts to manipulate driver or payment profiles.
    
*   Blocking Phishing Attempts: Sophisticated algorithms analyze signals like abnormal contact rates, high cancellation frequencies, and sequential anomalies to detect and prevent phishing schemes.
    
*   Responding Swiftly to Threats: When anomalies are detected, AI systems react in real time by locking compromised accounts, intercepting fraudulent actions, and mitigating risks before they escalate.
    
*   Payment Security: AI also plays a critical role in securing payment transactions. Using machine learning, ridesharing platforms can detect anomalies in payment processing, such as transaction tampering or repeated failed payments, that could indicate fraudulent activity. Payment gateways are closely monitored for suspicious transactions, and any deviations from typical user behavior are flagged for further review.
    

**Real-Time Threat Monitoring**

While preemptive security measures like identity verification and encryption are essential, ridesharing platforms must also continuously monitor for real-time threats during rides. Here, AI-driven systems act as vigilant guardians, ensuring safety throughout the journey.

*   Monitoring for Suspicious Behavior: AI systems monitor ongoing trips, flagging erratic behavior such as deviations from planned routes or excessive speed. By using GPS data, machine learning models can identify unsafe driving patterns and alert both the rider and driver to potential issues. This real-time monitoring not only ensures physical safety but also acts as a safeguard against hijacking or driver impersonation.
    
*   Emergency Response Systems: Ridesharing platforms have integrated AI-enhanced emergency features into their apps, allowing users to access help instantly. One-tap emergency buttons are backed by AI-driven systems that can instantly share real-time ride data, including location and driver information, with authorities or emergency contacts. In addition, AI models can analyze data from encrypted dashcams and provide insights into incidents that require rapid intervention, ensuring that support arrives as quickly as possible.
    

**AI, the Guardian of Ridesharing Security**

Looking ahead, AI will play a pivotal role in enhancing the security and privacy of ridesharing platforms. As the amount of personally identifiable information (PII) grows, AI systems will continue to evolve, strengthening encryption, anomaly detection, and proactive threat monitoring. Machine learning models will not only monitor for emerging cyber threats, such as phishing and fraud, but also predict and flag high-risk behaviors like frequent ride cancellations or erratic driving. By deprioritizing these risky matches, AI ensures a safer experience for both riders and drivers.

With the integration of real-time cyber threat intelligence, AI will adapt to new attack methods, staying one step ahead of cybercriminals. Predictive analytics will help identify potential risks before they escalate, allowing ridesharing platforms to take action early. AI's ability to monitor and mitigate threats in real time, coupled with its capacity for proactive threat prediction, will provide a resilient, adaptive security framework.

As ridesharing services continue to transform urban mobility, the role of AI in ensuring security and privacy will only grow. AI will enable platforms to address increasingly sophisticated cybersecurity challenges, providing a robust foundation for privacy, safety, and trust in a rapidly evolving digital world. Through its continuous innovation, AI will not only make rides more convenient but will also create a safer, more secure environment for users worldwide.

**About the Author**

Machine Learning Engineer, Lyft

Rachita Naik is a Machine Learning Engineer at Lyft in New York with a Master's in Computer Science from Columbia University. Passionate about leveraging machine learning to solve real-world problems, she has developed a diverse skill set through academic projects and professional experience. At Lyft, she works on algorithms to optimally match riders with drivers, enhancing marketplace efficiency and profit. Rachita thrives in fast-paced environments and is always eager to learn new technologies to improve her work.

How AI Is Enhancing Security in Ridesharing

Python has emerged as a powerful ally in combating rising cybersecurity threats and tracking cybercrime through tools leveraging…

Python has emerged as a powerful ally in combating rising cybersecurity threats and tracking cybercrime through tools leveraging **threat intelligence**. With its versatility and powerful libraries, experts today can create solutions that run large algorithms and enhance searchability and scalability.

****Unmatched Versatility in Threat Detection****

Cyber threats are evolving rapidly, and tools must stay ahead to counter them effectively. Python stands out with its versatility and a wide range of libraries tailored for cybersecurity. For instance, Scapy allows developers to analyze network packets, identifying suspicious behaviours before they can cause harm. Additionally, Python can be used to create predictive models to detect and mitigate threats using frameworks like TensorFlow.

****Real-life use cases highlight Python’s potential****

Python is incredibly useful in real-world cybersecurity. For network monitoring, tools like **Pyshark** leverage Python to decode and analyze network traffic for anomalies. Automated penetration testing benefits from Python scripts that streamline server and application vulnerability scans. In malware analysis, the Python-based **YARA** library plays a crucial role in identifying patterns of malicious code, making it an invaluable tool for threat detection.

Beyond technical strength, Python’s simplicity makes it easy for cybersecurity teams of different levels of expertise to work together. **Python software development services** are used by developers and analysts alike to easily integrate threat detection into existing systems.   

****Why Python Outshines Other Languages in Cybersecurity**  **

Python isn’t the only programming language out there—so what sets it apart? Its rich ecosystem, ability to quickly prototype, and cross-platform compatibility make it stand out from languages like Java or C++. Python enables rapid development of tools that can respond to threats in real-time, a critical factor in combating modern cyber risks.

Stay tuned as we explore how Python accelerates incident response and powers proactive defence systems, helping organizations stay ahead of security threats worldwide.

****Python’s Role in Accelerating Incident Response**  **

Quick action is necessary for incident response to limit the damage. The automation of repetitive tasks and real-time analysis make Python an ideal tool for this. Its simple syntax enables teams to write scripts that respond to threats quickly and resolve the issues faster.  

****Key ways Python aids incident response****

Python plays a vital role in incident response by streamlining critical tasks. Libraries like Loguru help parse server logs to identify irregularities, while Python scripts enable real-time alerts when threats are detected.

Tools like **Beautiful Soup** automate data extraction from compromised systems, and custom scripts can isolate infected systems to prevent the spread of malicious activity. These capabilities make Python an invaluable asset in managing and mitigating cyber threats effectively.

Python software development service helps organizations improve their incident response, reducing downtime and protecting their critical assets. Thanks to Python’s robust capabilities, teams can accelerate risk mitigation and manage what was once a potential crisis as an ordinary event.    

****Proactive Defense Through Python Development**  **

Python isn’t just reactive—it’s also a proactive tool for combating threats right from the start. With its extensive libraries and frameworks, cybersecurity teams can build predictive analytics tools to identify potential vulnerabilities and detect unusual patterns, keeping organizations one step ahead of attackers.

For instance, Python integrates seamlessly with AI tools for real-time anomaly detection. Developers can create algorithms to monitor network behavior and trigger instant alerts when deviations occur. Additionally, Python’s flexibility allows it to integrate easily with existing security infrastructures without stretching budgets.

By leveraging Python, businesses can reduce the risk of breaches, maintain stakeholder trust, and strengthen their overall security posture. Its proactive capabilities transform cybersecurity from a reactive necessity into a strategic advantage, enhancing digital protection at every level.

****Key Advantages of Python in Cyber Defense**  **

Python is a powerhouse in cybersecurity, offering developers and organizations unmatched efficiency in tackling complex security challenges. With extensive libraries like Cryptography and Hashlib for secure encryption and hashing, Python ensures data protection is seamless.

Furthermore, its cross-platform support allows it to work effortlessly across Windows, Linux, and macOS without compromising security. Python’s user-friendly syntax accelerates tool development and reduces deployment time, while its vast and active community continuously updates resources to address evolving threats. This combination of features makes Python a key factor for cybersecurity solutions.

1.  **Top Software Development Outsourcing Trends**
2.  **Why is learning Python important in Data Science?**
3.  **A Step-by-Step Guide to How Threat Hunting Works**
4.  **Power of Cloud App Development, DevOps for Businesses**
5.  **The Essential Tools and Plugins for WordPress Development**

How Python Software Development Enhances Cyber Defense

Qualified applicants must be able to test ransomware encryption and find bugs that might enable defenders to jailbreak the malware.

Source: TippaPatt via Shutterstock

Businesses are not the only organizations looking for skilled cybersecurity professionals; cybercriminals are also advertising for individuals capable of creating dark AI models and penetration-testing products — that is, ransomware — to reduce the chance of defenders finding ways to circumvent the scheme.

In advertisements on Telegram chats and forums — such as the Russian Anonymous Marketplace, or RAMP — ransomware affiliate groups and initial access providers are seeking cybersecurity professionals to help find and close holes in their malware and other attack tools, security firm Cato Networks stated in its "Q3 SASE Threat Report." In the past, the firm's threat researchers have noted advertisements seeking developers capable of creating a malicious version of ChatGPT.

The search for more technical talent highlights the recent success of law enforcement and private companies in taking down botnets and helping defenders recover their data, says Etay Maor, chief security strategist at Cato Networks.

"They definitely want to make sure that all the effort they're putting into their software is not going to be turned over when somebody finds a vulnerability," he says. "They're really stepping up their game in terms of approaching software development, making it closer to what an enterprise would do than what is typically seen today from other development groups."

The search for better software security is the latest sign of technical evolution among cybercriminal groups. In Southeast Asia, cybercriminal syndicates have grown from illegal gambling and drug cartels into enterprises that rake in more than $27 billion a year, fueling improvements in money laundering, technical development, and forced labor.

**Penetration Testing Just the Latest**

As cybercriminal groups grow, specialization is a necessity. In fact, as cybercriminal gangs grow, their business structures increasingly resemble a corporation, with full-time staff, software development groups, and finance teams. By creating more structure around roles, cybercriminals can boost economies of scale and increase profits.

Currently, the top ransomware groups are LockBit, RansomHub, PLAY, Hunters International, and Akira — all likely using more structured roles and cybercriminal services to operate efficiently, according to a 2024 review of the top ransomware groups by threat intelligence firm Recorded Future, now part of Mastercard International.

"These emerging groups and platforms bring new and interesting ways to attack so organizations need to be on their toes and adjust their cybersecurity accordingly," the company stated in a blog post. "As they evolve, understanding their modus operandi and targets will be key to mitigating the impact."

New cybercriminals groups are always appearing, and that also means new opportunities for skilled cybercriminals. The first half of 2024 saw 21 new ransomware groups appear in underground forums, although many of those new groups are likely rebranded versions of previous groups that had splintered. Overall, 68 groups posted more than 2,600 claimed breaches to leak sites in the first six months of the year, a 23% increase over the same period in 2023, according to cybersecurity firm Rapid7.

Most malware and tools created by the groups use C or C++ — the programming language used in 58 samples — but the use of more modern, memory-safe languages is growing, with Rust used in 10 samples and Go used in six samples, according to a report released by Rapid7, which noted "the complexity of the ransomware business model, with groups coming and going, extortion tactics intensifying, builders and code 'leaking' — and all the while, the overall scope of the threat only expanding."

**More Aggressive Defense**

Finally, some groups required specialization in roles based on geographical need — one of the earliest forms of contract work for cybercriminals is for those who can physically move cash, a way to break the paper trail. "Of course, there's recruitment for roles across the entire attack life cycle," Maor says. "When you're talking about financial fraud, mule recruitment ... has always been a key part of the business, and of course, development of the software, of malware, and end of services."

Cybercriminals' concerns over software security boil down to self-preservation. In the first half of 2024, law enforcement agencies in the US, Australia, and the UK — among other nations — arrested prominent members of several groups, including the ALPHV/BlackCat ransomware group and seized control of BreachForums. The FBI was able to offer a decryption tool for victims of the BlackCat group — another reason why ransomware groups want to shore up their security.

Current geopolitical disruptions, which can lead to highly skilled people unemployed, are making it more likely that cybercriminals groups will be able to convince legitimate cybersecurity professionals to take a risk and do illegal work, Cato Networks' Maor says.

"There's people ... losing jobs in Eastern Europe because of the current war situation, so unfortunately you see that in the underground forums, where you have smart people there, who — at the end of the day — need to put food on the table," he says. "If that means they have to resort to jobs that are not necessarily super legal, if that's what they need to do to pay the bills, then they'll pop up on these forums and be like, 'Hey, I worked for this company. I have this knowledge ... and I can offer access.'"

**About the Author**

Veteran technology journalist of more than 20 years. Former research engineer. Written for more than two dozen publications, including CNET News.com, Dark Reading, MIT's Technology Review, Popular Science, and Wired News. Five awards for journalism, including Best Deadline Journalism (Online) in 2003 for coverage of the Blaster worm. Crunches numbers on various trends using Python and R. Recent reports include analyses of the shortage in cybersecurity workers and annual vulnerability trends.

Ransomware Gangs Seek Pen Testers to Boost Quality

A Moscow-based company sanctioned by the U.S. earlier this year has been linked to yet another influence operation designed to turn public opinion against Ukraine and erode Western support since at least December 2023.
The covert campaign undertaken by Social Design Agency (SDA), leverages videos enhanced using artificial intelligence (AI) and bogus websites impersonating reputable news sources

AI-Powered Fake News Campaign Targets Western Support for Ukraine and U.S. Elections

Following decades of failed attempts and dashed dreams, the US Army is once again trying out powered exoskeletons to help soldiers haul munitions and equipment in the field.

After decades of research and development, the United States Army is taking yet another run at developing a powered exoskeleton to help soldiers carry heavy loads on the battlefield—but don’t expect a futuristic suit of combat armor straight out of _Starship Troopers_ or _Iron Man_ anytime soon.

Soldiers assigned to the Army’s 1-78 Field Artillery Battalion training unit at Fort Sill, Oklahoma, recently completed a three-day “proof of concept” evaluation of several off-the-shelf “exoskeleton suits” in late September and early October, officials confirmed to WIRED. The evaluation was overseen by the service’s Combat Capabilities Development Command (DEVCOM), the organization responsible for developing new technology for soldiers.

Official photos from the evaluation published to social media showed Advanced Individual Training students hauling artillery shells to and from a M109 Paladin self-propelled howitzer and M777-towed howitzer with telltale black exoskeleton harnesses contrasted against their camouflage uniforms, part of a field exercise undertaken “to assess the potential of human augmentation, improve soldier performance, and determine if these exoskeletons meet the demands of our warfighters,” as the service put it.

While a DEVCOM spokesperson declined to identify which commercially produced systems were evaluated by soldiers, the Army announced its intent in August to award a contract to exoskeleton maker SUITX to “give users experience of advanced soldier augmentation technologies,” according to a government notice. “This exoskeleton will serve as a critical tool for evaluating the potential benefits of robotic assistance in increasing soldier endurance, strength, and overall operational effectiveness.”

Increased strength and endurance are an alluring duo for an American fighting force used to hauling close to 140 pounds into combat, and the prospect of a sophisticated combat suit that delivers both to soldiers even more so. But DEVCOM officials strongly emphasized that, despite this recent testing, the US military has yet to even determine how to actually apply a powered exoskeleton in a military context, let alone outfit soldiers in an “Iron Man suit” the likes of which the Army has bragged about in years past. Indeed, service officials tell WIRED that an official requirement document—a formal outline of a potential program’s technical and logical preconditions—for the adoption and fielding of exoskeletons does not currently exist, despite the fact that officials previously stated back in 2020 that Army Futures Command, DEVCOM’s superior organization, was closing in on one.

“As of today, the Army has not determined what the primary purpose of a ‘military exoskeleton’ is,” says David Accetta, a DEVCOM spokesperson.

That the Army is taking another crack at a powered exoskeleton should come as no surprise. The US military has been pursuing such technology for potential tactical applications for decades, since around the same time that science fiction author Robert Heinlein introduced the world to his vision of a “mobile infantry” flitting across future battlefields clad in advanced robotic armor in his beloved 1959 military science fiction classic _Starship Troopers_. Where Heinlein imagined future soldiers operating a mechanized battlesuit reminiscent of “a big steel gorilla, armed with gorilla-sized weapons,” the ostensible advantage of powered armor wasn’t just its added strength and durability, but the fact that “you don’t have to control the suit; you just wear it, like your clothes, like skin.” No fancy control interface, no complicated training: Soldiers would ostensibly step into a notional apparatus and be ready to “fight tonight,” as US military planners are fond of saying.

With an eye to future conflicts on an atomic battlefield, the Cold War-era US Defense Department clearly drew at least some inspiration from _Starship Troopers._ One year after Heinlein’s novel published, the Army went on the hunt for a “power-operated mechanical suit or skeleton that would transform the ordinary GI into a Superman,” according to a 1960 issue of the service’s _Army Research & Development_ magazine, with future “servo-soldiers” hauling munitions and other heavy equipment “beyond the strength of a dozen men.” The servo-soldier “will wear a special suit which will have its own engine, enabling him to run faster, stop quicker, and lift bigger loads than ordinary mortals,” as _Armor_ magazine put it in 1961 when the Pentagon officially solicited the defense industry for potential exoskeleton solutions. “What is more, he will be immune to germ warfare, poison gas, and the heat and radiation from nuclear blasts.”

In the following decades, the Pentagon took several stabs at making the servo-soldier a reality. In the 1960s, Cornell University engineer Neil Mizen’s “Man Amplifier,” funded by an Office of Naval Research grant, offered service members a patchwork of robotic components intended “to help sailors manhandle torpedoes, bombs, and machinery in the cramped quarters aboard ships and submarines,” as _Popular Science_ described it in a November 1965 issue. In the later part of the decade, General Electric debuted its “Hardiman” exoskeleton, developed under a dual Army-Navy effort, a colossal, bulky apparatus that more closely resembled the P-5000 Powered Work Loader from the 1986 movie _Aliens_ than a sleek battlesuit like Iron Man’s armor. In the 1980s, Los Alamos National Laboratory Advanced Weapons Technology Group engineer Jeffery Moore offered the Pentagon its most futuristic vision of a powered exoskeleton yet with his proposed “Pitman” combat suit, a vision of robot armor so advanced it remained a mere concept without ever producing a prototype. Every decade, the Pentagon appears to stand up and quickly wind down an exoskeleton project without ever producing a feasible prototype.

While the Defense Advanced Research Projects Agency (Darpa) oversaw incremental advances in US military exoskeleton research in the early 2000s, the most recent concerted attempt at a suit of powered armor came in the last decade in the form of US Special Operations Command’s Tactical Assault Light Operator Suit (TALOS). Inspired by the death of a Navy SEAL during a hostage rescue effort in Afghanistan, TALOS sought to cloak elite US special operations forces in additional layers of ballistic armor, sensors, and an exoskeleton to boost their survivability and situational awareness to near-superhuman levels. But while the TALOS program did yield several novel technologies (a lower body exoskeleton among them), the effort was canceled in 2019 after just five years of research and development, felled by “complex subsystem interdependencies” between its various elements that failed to coalesce into a unified and intuitive suit that operators could “just wear,” as Heinlein envisioned decades earlier. (SOCOM would pivot to its “hyper enabled operator” concept, which focuses on “cognitive overmatch” rather than physical augmentation to give American commandos an edge on the battlefield.)

Wary of the technological complexity required to develop mechanized armor for infantry troops, the Pentagon has spent the better part of the last two decades, with the exception of SOCOM’s TALOS effort, scaling back its exoskeleton ambitions to better match the original duties of the servo-soldier: hauling munitions and other heavy equipment. The Army’s Robotics and Autonomous Systems strategy released in March 2017, for example, stated that the service would pursue exoskeleton research primarily “to lighten the soldier load in the future” as a near-term priority as the Pentagon began its pivot from counter-insurgency operations in the Middle East to “great power competition” with technologically-advanced “near-peer” adversaries like Russia and China. The following October, in a letter to senior officials laying out the Army’s core modernization priorities for the coming decades, General Mark Milley, then the Army chief of staff and later chairman of the Joint Chiefs of Staff, declared that the service would eventually field “load-bearing exoskeletons” as part of a renewed emphasis on “soldier lethality” (the next year, Milley directed DEVCOM to undertake “a detailed engineering analysis of existing and emerging exoskeleton products” for their potential military applications).

This newfound push appears to have yielded several fresh experiments with exoskeleton technology in recent years. In 2018, Lockheed Martin was awarded a $6.9 million contract to “enhance” its ONYX exosuit for future Army demonstrations (Accetta, the DEVCOM spokesman, tells WIRED that initiative was ended due to a “number of technical issues” and lack of funding). Similarly, the service has been testing the Dephy ExoBoot for at least the last several years. In August 2022, the Army unveiled an (unpowered) exoskeleton dubbed the Soldier Assistive Bionic Exosuit for Resupply (SABER) to reduce lower back pain and physical stress among service members in the field; according to a 2023 study, 90 percent of soldiers who used the exosuit during field artillery training exercises reported an increased ability to perform their assigned tasks. And the Army isn’t the only branch exploring exoskeletons: Later in 2022, the Air Force announced that the service was testing its own pneumatically powered exosuit developed by ROAM Robotics to help aerial porters load up cargo aircraft like the C-17 Globemaster III.

The Fort Sill exoskeleton trial isn’t just the latest installment in a seven-decade push to meld man and machine; it’s also representative of the service’s cautious, restrained approach to the technology. Although US military planners may have long aspired to build an army of those so-called servo soldiers to dominate the future battlefield, current exoskeleton research efforts appear laser focused on more modest and potentially attainable applications like logistics and resupply rather than combat engagements. Slowly but surely, the Pentagon is carefully examining whether a robotic assist will help service members carry more for longer downrange.

But the Pentagon doesn’t appear to have totally given up on its dream of a powered exoskeleton as the basis for an armored battlesuit just yet. The 2017 Army RAS strategy, despite its emphasis on lightening soldier loads, also posited the long-term goal of building a “warrior suit” with “integrated displays that aggregates a common operating picture, provides intelligence updates, and integrates indirect and direct fire weapons systems”—capabilities not unlike those imagined with a notional _Starship Troopers_ mobile infantry or Iron Man suit-clad operator and explored with the TALOS initiative. As of a few years ago, at least one Army official was still talking about such a suit as a long-term effort that could potentially become a reality sometime in the 2040s.

Today, however, that idea appears to be in hibernation, if not fully dead. When asked about the “warrior suit” effort, DEVCOM officials threw cold water on the entire concept as “the professional vision of one person” and “not to be considered (even at the time) as an official Army position,” despite its explicit mention in the 2017 RAS document.

“The ‘warrior suit’ never existed as such, it was never considered a ‘warrior suit’—at least not by the Army—but a proof of concept, meaning, ‘Would something like this help manage load while on the move?’’ Accetta says. “The number of technical, integration, design, power, ergonomic, and so on concerns were not trivial.”

“The project is not abandoned, it’s simply inactive,” he adds. “And if it ever were to become active, we doubt highly it would be called a ‘warrior suit.’”

The US Army's Vision of Soldiers in Exoskeletons Lives On

Microsoft has addressed four security flaws impacting its artificial intelligence (AI), cloud, enterprise resource planning, and Partner Center offerings, including one that it said has been exploited in the wild.
The vulnerability that has been tagged with an "Exploitation Detected" assessment is CVE-2024-49035 (CVSS score: 8.7), a privilege escalation flaw in partner.microsoft[.]com.
"An

Tag

#intel