Infosecurity News

  1. Essential Addons for Elementor XSS Vulnerability Discovered

    Elementor plugin flaw puts 2m WordPress websites at risk, allowing XSS attacks via malicious scripts

  2. Michigan Man Indicted for Dark Web Credential Fraud

    Michigan man indicted for dark web credential fraud, purchased 2,500 logins from Genesis Market

  3. Google Cloud Shields Data With Quantum-Resistant Digital Signatures

    Google Cloud's Key Management Service now features quantum-safe digital signatures to strengthen data integrity and prepare for emerging quantum computing challenges

  4. IT/OT Convergence Fuels Manufacturing Cyber Incidents

    Telstra found that 75% of cyber incidents impacting manufacturing firms originated from the targeting of IT systems connected to OT environments

  5. Experts Slam Government After “Disastrous” Apple Encryption Move

    Experts argue Britons are now less secure after their government effectively forced Apple to abandon end-to-end encryption

  6. Bybit Offers $140m Bounty to Recover Funds After Mega Crypto-Heist

    Following the largest-ever crypto theft, Bybit is offering researchers up to 10% of recovered funds

  7. Salt Typhoon Exploited Cisco Devices With Custom Tool to Spy on US Telcos

    Chinese threat actor Salt Typhoon used JumbledPath, a custom-built utility, to gain access to a remote Cisco device, said the network provider

  8. DoD Contractor Pays $11.2M over False Cyber Certifications Claims

    Health Net Federal Services has agreed to pay over $11m over alleged false cybersecurity reporting

  9. BlackBasta Ransomware Chatlogs Leaked Online

    BlackBasta’s internal chatlogs are “highly useful from a threat intelligence perspective,” said Prodaft, the firm that revealed the leak

  10. Microsoft’s Quantum Chip Breakthrough Accelerates Threat to Encryption Protocols

    Microsoft has developed the first ever quantum chip, shortening the timeframe for when quantum computers will break exiting encryption

  11. Malicious Ads Target Freelance Developers via GitHub

    Fake job ads target freelance developers, spreading malware via GitHub

  12. West Coast Cybersecurity Salaries Outshine Rest of Country

    A survey by IANS and Artico found significant regional variation in cybersecurity salary levels across North America

  13. Mobile Phishing Attacks Surge with 16% of Incidents in US

    Mobile phishing attacks surged in 2024, with 16% of all incidents occurring in the US, according to a new Zimperium report

  14. Over 330 Million Credentials Compromised by Infostealers

    Kela researchers 330 million compromised credentials to infostealer activity on over four million machines in 2024

  15. Hackers Chain Exploits of Three Palo Alto Networks Firewall Flaws

    Palo Alto Networks has observed exploit attempts chaining three vulnerabilities in its PAN-OS firewall appliances

  16. CISA and FBI Warn of Global Threat from Ghost Ransomware

    CISA and the FBI have released a joint advisory detailing the activity of China’s Ghost ransomware

  17. WordPress Plugin Vulnerability Exposes 90,000 Sites to Attack

    A flaw in the Jupiter X Core plugin has been identified, allowing upload of malicious SVG files and remote code execution on vulnerable servers

  18. Finastra Notifies Customers of Data Breach

    Finastra notifies customers of data breach that took place more than three months ago, impacting sensitive financial information

  19. Australian IVF Clinic Suffers Data Breach Following Cyber Incident

    Australia-based Genea said it is investigating the cyber incident to determine whether any personal data was accessed by an unauthorized third party

  20. Spies Eye AUKUS Nuclear Submarine Secrets, Australia’s Intelligence Chief Warns

    The head of the Australian Security Intelligence Organisation gave his Annual Threat Assessment for the year ahead

What’s hot on Infosecurity Magazine?