Threat Intel Solutions

VideoThis month in security with Tony Anscombe — December 2024 edition==================================================================From attacks leveraging new new zero-day exploits to a major law enforcement crackdown, December 2024 was packed with impactful cybersecurity news [](/en/our-experts/editor/ ‘Editor’) [**Editor**](/en/our-experts/editor/ ‘Editor’)27 Dec 2024 From new zero-day exploits to a major law enforcement crackdown, December 2024 was packed with impactful cybersecurity news. ESET Chief Security Evangelist [Tony Anscombe](https://www.welivesecurity.com/en/our-experts/tony-anscombe/) dives into some of the month’s key stories, offering expert insights and commentary. Watch the video for a full breakdown and stay until the end to learn also about one of the main concerns looming in 2025.Here are some of the top cybersecurity stories of December 2024:* Bad actors took advantage of a [zero-day vulnerability in file transfer software](https://www.securityweek.com/cve-assigned-to-cleo-vulnerability-as-cl0p-ransomware-group-takes-credit-for-exploitation/) from Cleo Communications to steal data from a number of organizations. A closer look reveals several intriguing twists in the incident involving the Cleo Harmony, VLTrader, and LexiCom software.* The United States’ Federal Communications Commission (FCC) has [proposed new rules](https://docs.fcc.gov/public/attachments/DOC-408013A1.pdf) on how telecommunication companies should secure their networks.* Meanwhile in the United Kingdom, the Ofcom has [released its final codes of practice](https://www.bbc.com/news/articles/cwy83jdpgw5o) for how online platforms should handle illegal online content, giving them three months to conduct risk assessments or else face steep fines as the Online Safety Act becomes effective.* Authorities in no fewer than 19 African countries [arrested more than 1,000 people](https://www.darkreading.com/cyberattacks-data-breaches/african-law-enforcement-cybercrime-suspects) for allegedly taking part in ransomware attacks, business email compromise (BEC) and other cybercrimes.* Donut and coffee retail chain [Krispy Kreme suffered a cyberattack](https://www.securityweek.com/no-doughnuts-today-cyberattack-puts-krispy-kreme-in-a-sticky-situation/) that caused operational disruptions and also impacted the company’s online ordering system.Don’t forget to check out also the [November 2024 edition](https://www.welivesecurity.com/en/videos/month-security-tony-anscombe-november-2024-edition/) of the monthly security news roundup.Connect with us on [Facebook](https://www.facebook.com/eset), [X](https://x.com/ESET), [LinkedIn](https://www.linkedin.com/company/eset/) and [Instagram](https://www.instagram.com/eset/). *** ** * ** ***Let us keep youup to date—————————–Sign up for our newsletters Ukraine Crisis newsletter Regular weekly newsletter Subscribe #### Related Articles*** ** * ** ***[VideoUnwrapping Christmas scams -| Unlocked 403 cybersecurity podcast (ep. 9)VideoUnwrapping Christmas scams -| Unlocked 403 cybersecurity podcast (ep. 9)](/en/videos/christmas-scams-unlocked-403-cybersecurity-podcast-ep-9/ ‘Unwrapping Christmas scams | Unlocked 403 cybersecurity podcast (ep. 9)’) *** ** * ** ***[VideoESET Threat Report H2 2024: Key findingsVideoESET Threat Report H2 2024: Key findings](/en/videos/eset-threat-report-h2-2024-key-findings/ ‘ESET Threat Report H2 2024: Key findings’) *** ** * ** ***[Video, Business SecurityHow cyber-secure is your business? -| Unlocked 403 cybersecurity podcast (ep. 8)Video, Business SecurityHow cyber-secure is your business? -| Unlocked 403 cybersecurity podcast (ep. 8)](/en/videos/cyber-secure-business-unlocked-403-cybersecurity-podcast-ep-8/ ‘How cyber-secure is your business? | Unlocked 403 cybersecurity podcast (ep. 8)’) ### Similar Articles[VideoMonth in security with Tony Anscombe — November 2024 edition](/en/videos/month-security-tony-anscombe-november-2024-edition/ ‘Month in security with Tony Anscombe – November 2024 edition’)*** ** * ** ***[Digital SecurityBlack Hat Europe 2024: Why a CVSS score of 7.5 may be a ‘perfect’ 10 in your organization](/en/cybersecurity/black-hat-europe-2024-cvss-score-75-10-your-organization/ ‘Black Hat Europe 2024: Why a CVSS score of 7.5 may be a ‘perfect’ 10 in your organization’)*** ** * ** ***[Digital SecurityBlack Hat Europe 2024: Can AI systems be socially engineered?](/en/cybersecurity/black-hat-europe-2024-ai-systems-socially-engineered/ ‘Black Hat Europe 2024: Can AI systems be socially engineered?’)*** ** * ** ***### Share Article[](https://www.facebook.com/sharer/sharer.php?u=https://www.welivesecurity.com/en/videos/month-security-tony-anscombe-december-2024-edition/ ‘Facebook’) [](https://www.linkedin.com/shareArticle?mini=true&url=https://www.welivesecurity.com/en/videos/month-security-tony-anscombe-december-2024-edition/ ‘LinkedIn’) [](https://twitter.com/intent/tweet?url=https://www.welivesecurity.com/en/videos/month-security-tony-anscombe-december-2024-edition/ ‘Twitter’) [](mailto:?&subject=I wanted you to see this site&body=https://www.welivesecurity.com/en/videos/month-security-tony-anscombe-december-2024-edition/ ‘mail’) [](https://www.welivesecurity.com/en/videos/month-security-tony-anscombe-december-2024-edition/ ‘copy’)  ### Discussion

Related Tags:
NAICS: 44 – Retail Trade – Auto

Food

Home

NAICS: 921 – Executive

Legislative

Other General Government Support

NAICS: 518 – Computing Infrastructure Providers

Data Processing

Web Hosting

Related Services

NAICS: 92 – Public Administration

NAICS: 922 – Justice

Public Order

Safety Activities

NAICS: 51 – Information

Donut

Blog: ESET We Live Security

Software Discovery: Security Software Discovery

Associated Indicators: