Infosecurity News

  1. CISA Reverses Decision on Cybersecurity Advisory Changes

    CISA paused plans to overhaul its advisory system after backlash from the infosec community

  2. New Fortinet and Ivanti Zero Days Exploited in the Wild

    Fortinet and Ivanti published advisories on the same day revealing that attackers are exploiting new zero days, one of which is rated critical

  3. New 'Chihuahua’ Infostealer Targets Browser Data and Crypto Wallet Extensions

    While appearing unsophisticated on the surface, Chihuahua Stealer uses advanced methods

  4. European Police Bust €3m Investment Fraud Ring

    Law enforcers from multiple countries team up to dismantle a multimillion-euro fraud gang

  5. Microsoft Fixes Seven Zero-Days in May Patch Tuesday

    Microsoft has patched seven zero-day bugs, five of which were exploited in the wild

  6. Turkey-Aligned Hackers Targeted Iraq-Based Kurds with Zero-Day Exploit

    Marbled Dust has been exploiting a vulnerability in user accounts associated with the Kurdish military operating in Iraq for over a year, according to Microsoft

  7. DPRK-Backed TA406 Targets Ukraine With Malware Campaigns

    Cyber espionage campaign linked to North Korean actor TA406 targeted Ukrainian government entities

  8. CISA Shifts Alert Distribution Strategy to Email, Social Media

    CISA won't post standard cybersecurity updates on its website, shifting to email and social media

  9. European Vulnerability Database Launches Amid US CVE Chaos

    ENISA has officially launched the European Vulnerability Database as required by the NIS2 directive

  10. M&S Confirms Customer Data Stolen in Cyber-Attack

    M&S Chief Executive, Stuart Machin, said that the firm has written to customers to inform them that some personal information was accessed by threat actors

  11. UK Considers New Enterprise IoT Security Law

    The UK government wants to hear feedback on a possible new standard or legislation to improve enterprise IoT security

  12. Hacktivist Attacks on India Overstated Amid APT36 Espionage Threat

    Hacktivist claims on Indian infrastructure raised alarms, but investigations showed minimal damage

  13. Criminal Proxy Network Infects Thousands of IoT Devices

    The criminal proxy network infected thousands of IoT and end-of-life devices, creating dangerous botnet

  14. #Infosec2025: Experts to Shine Light on Vendor Supply Chain Resilience Against Third-Party Risks

    During Infosecurity Europe 2025 experts will explore how to strengthen organizational resilience against persistent third-party risks

  15. EU Launches Free Entry-Level Cyber Training Program

    She@Cyber training program is focused on improving the representation of women and other underrepresented groups in the cybersecurity industry

  16. FreeDrain Phishing Scam Drains Crypto Hobbyists' Wallets

    A global cryptocurrency phishing operation likely based in India or Sri Lanka has been stealing digital assets since at least 2022

  17. Japanese Account Hijackers Make $2bn+ of Illegal Trades

    Hackers have compromised Japanese trading accounts in an apparent attempt to manipulate the stock market

  18. German Police Shutter “eXch” Money Laundering Service

    Germany’s BKA has seized the infrastructure behind the crypto swapping service eXch

  19. Google Deploys On-Device AI to Thwart Scams on Chrome and Android

    The tech giant plans to leverage its Gemini Nano LLM on-device to enhance scam detection on Chrome

  20. UN Launches New Cyber-Attack Assessment Framework

    The UNIDR Intrusion Path is designed to provide a simplified view of cyber-threats and security across the network perimeter

Why not watch?

  1. How to Implement Attack Surface Management in the AI and Cloud Age

  2. Reimagining Digital Identity in the Age of AI: Challenges and Innovations

  3. Cybersecurity Employment: Making Sense of Conflicting Messaging

  4. Safeguarding Critical Supply Chain Data Through Effective Risk Assessment

What’s hot on Infosecurity Magazine?