This report highlights major cybersecurity events in December 2024 across North America, noting a rise in phishing campaigns that abuse Blob URIs and increasing use of the InterPlanetary File System to host malicious content. Group‑IB CERT also detected at least nine ransomware incidents targeting clinics and hospitals in the United States and Canada, involving groups such as RansomHub, Rhysida, and Lynx. Globally, Group‑IB released detailed research on the Cicada3301 Ransomware‑as‑a‑Service group after gaining access to its affiliate panel, offering deeper insight into its internal operations and threat activity.

Join for free to read