According to the Cybersecurity and Infrastructure Security Agency (CISA), the US government and critical infrastructure entities were sent 1754 ransomware vulnerability notifications under the Ransomware Vulnerability Warning Pilot (RVWP) program in 2023, resulting in 852 vulnerable devices being secured or taken offline. The highest number of alerts were sent to government facilities (641), which encompasses a range of federal, state, and local government organizations, including schools and higher education facilities.

Security researchers at Sekoia have sinkholed a command and control server for a variant of the PlugX malware and observed in six months more than 2.5 million connections from unique IP addresses. Since last September, the sinkhole server received over 90,000 requests every day from infected hosts in more than 170 countries. Since September 2023, when the security researchers captured the unique IP address associated with the particular C2, it has logged over 2,495,297 unique IPs from 170 countries interacting with the sinkhole.

In a recent data breach, the BlackCat/ALPHV ransomware gang allegedly stole 6TB of sensitive patient data from UnitedHealth. In early March, BlackCat performed an exit scam after allegedly getting $22 million in ransom from UnitedHealth. At that time, one of the gang's affiliates, known as "Notchy," claimed that they had UnitedHealth data because they conducted the attack and that BlackCat cheated them of the ransom payment. The transaction was visible on the Bitcoin blockchain and confirmed by researchers to have reached a wallet used by BlackCat hackers.

Russia, Ukraine, China, and the US topped the list of countries with the most cybercriminal activity in an academic study on cybercrime, but Nigeria, Romania, and Brazil being among the top-ranked is considered surprising. A high World Cybercrime Index (WCI) score is typical for countries with high technology levels and state-sponsored threat actors that overlap with cybercriminal groups. Nigeria led the scams category, and Romania led data and identity theft.

In a paper, researchers from the Multimedia and Information Security Lab at Drexel University's College of Engineering explained that while existing synthetic image detection technology has failed to detect Artificial Intelligence (AI)-generated video thus far, they have had success with a Machine Learning (ML) algorithm. This algorithm can be trained to extract and recognize digital "fingerprints" of various video generators, such as Stable Video Diffusion, Video-Crafter, and Cog-Video.

Manimaran Govindarasu of Iowa State University emphasized that bringing renewable energy to the power grid raises Internet of Things (IoT) issues because everything is connected. Wind farm controllers and solar inverters are Internet-connected. With each Internet connection, energy resources are vulnerable to cyberattacks that could disrupt power transmission or cause blackouts. A project led by Iowa State University engineers has received a $2.5 million US Department of Energy (DOE) grant to help defend the power industry.