Infosecurity News

  1. 99% of Organizations Report API-Related Security Issues

    99% of organizations report API-related security issues, highlighting risks from API growth

  2. DISA Global Solutions Confirms Data Breach Affecting 3.3M People

    DISA Global Solutions confirms data breach affecting 3.3M people, exposing sensitive personal info

  3. Signal May Exit Sweden If Government Imposes Encryption Backdoor

    Meredith Whittaker, Signal's CEO, has threatened to pull the company out of Sweden if a proposed government bill requiring encryption backdoors becomes law

  4. HaveIBeenPwned Adds 244 Million Passwords Stolen By Infostealers

    HaveIBeenPwned has added over 500 million new passwords and email addresses lifted via infostealers

  5. Ransomware Gang Publishes Stolen Genea IVF Patient Data

    IVF clinic Genea has confirmed that stolen patient data has been published online, with the Termite ransomware group appearing to be the perpetrators

  6. Geopolitical Tension Fuels APT and Hacktivism Surge

    Europe is hit hard as geopolitics drives increase in state-backed APT and hacktivist activity

  7. 61% of Hackers Use New Exploit Code Within 48 Hours of Attack

    61% of hackers use new exploit code within 48 hours, ransomware remains top threat in 2024

  8. Ghostwriter Cyber-Attack Targets Ukrainian, Belarusian Opposition

    Ghostwriter cyber-attack targets Ukrainian, Belarusian opposition using weaponized Excel documents

  9. Chinese-Backed Silver Fox Plants Backdoors in Healthcare Networks

    Forescout observed the recently identified Chinese hacking group using medical imaging software applications to deliver malware

  10. Only a Fifth of Ransomware Attacks Now Encrypt Data

    ReliaQuest claims 80% of ransomware attacks now focus solely on exfiltrating data as it is faster

  11. Chinese Botnet Bypasses MFA in Microsoft 365 Attacks

    SecurityScorecard revealed that the large-scale password spraying campaign can bypass MFA and security access policies by utilizing Non-interactive sign-ins

  12. Quarter of Brits Report Deepfake Phone Scams

    New Hiya data finds 26% of UK consumers encountered a deepfake scam call in Q4 2024

  13. Essential Addons for Elementor XSS Vulnerability Discovered

    Elementor plugin flaw puts 2m WordPress websites at risk, allowing XSS attacks via malicious scripts

  14. Michigan Man Indicted for Dark Web Credential Fraud

    Michigan man indicted for dark web credential fraud, purchased 2,500 logins from Genesis Market

  15. Google Cloud Shields Data With Quantum-Resistant Digital Signatures

    Google Cloud's Key Management Service now features quantum-safe digital signatures to strengthen data integrity and prepare for emerging quantum computing challenges

  16. IT/OT Convergence Fuels Manufacturing Cyber Incidents

    Telstra found that 75% of cyber incidents impacting manufacturing firms originated from the targeting of IT systems connected to OT environments

  17. Experts Slam Government After “Disastrous” Apple Encryption Move

    Experts argue Britons are now less secure after their government effectively forced Apple to abandon end-to-end encryption

  18. Bybit Offers $140m Bounty to Recover Funds After Mega Crypto-Heist

    Following the largest-ever crypto theft, Bybit is offering researchers up to 10% of recovered funds

  19. Salt Typhoon Exploited Cisco Devices With Custom Tool to Spy on US Telcos

    Chinese threat actor Salt Typhoon used JumbledPath, a custom-built utility, to gain access to a remote Cisco device, said the network provider

  20. DoD Contractor Pays $11.2M over False Cyber Certifications Claims

    Health Net Federal Services has agreed to pay over $11m over alleged false cybersecurity reporting

What’s hot on Infosecurity Magazine?