Infosecurity News

  1. Law Enforcement Busts Initial Access Malware Used to Launch Ransomware

    A new Europol-led operation has dismantled infrastructure for key initial access malware used to launch ransomware attacks

  2. Global Dark Web Sting Sees 270 Arrested

    Operation Raptor also resulted in the seizure of $184m and a record amount of illegal drugs, firearms and drug trafficking proceeds

  3. DragonForce Engages in "Turf War" for Ransomware Dominance

    Sophos has observed DragonForce attacking rival ransomware operators including RansomHub as it seeks to expand its reach in the cybercrime marketplace

  4. AI-Generated TikTok Videos Used to Distribute Infostealer Malware

    Malware campaign exploiting TikTok’s popularity has been observed using social engineering to spread Vidar and StealC

  5. Kettering Health Cyber-Attack Disrupts Services

    Kettering Health is facing significant disruptions from a cyber-attack that impacted patient care

  6. Coinbase Breach Affected Almost 70,000 Customers

    The US cryptocurrency exchange claimed that the breach occurred in December 2024

  7. Critical Vulnerabilities Found in Versa Networks SD-WAN/SASE Platform

    The unpatched vulnerabilities, with a CVSS score of 8.6 to 10.0, can lead to remote code execution via authentication bypass

  8. Sensitive Personal Data Stolen in West Lothian Ransomware Attack

    West Lothian Council confirmed that ransomware attackers have stolen personal and sensitive information held on its education network

  9. Global Law Enforcers and Microsoft Seize 2300+ Lumma Stealer Domains

    Law enforcers worldwide have teamed up with Microsoft to disrupt the infrastructure behind Lumma Stealer

  10. Western Logistics and Tech Firms Targeted by Russia’s APT28

    NSA, NCSC and allies warn Western tech and logistics firms of Russian APT28 cyber-espionage threat

  11. #Infosec2025: NCC Group Expert Warns UK Firms to Prepare for Cyber Security and Resilience Bill

    UK businesses should start to plan for required changes to their cybersecurity programs ahead of the Cyber Security and Resilience Bill

  12. Cybercriminals Mimic Kling AI to Distribute Infostealer Malware

    A new malware campaign disguised as Kling AI used fake Facebook ads and counterfeit websites to distribute an infostealer

  13. Flaw in Google Cloud Functions Sparks Broader Security Concerns

    Patched privilege escalation flaw in Google Cloud Platform linked to wider cloud security concerns

  14. US Teen to Plead Guilty in PowerSchool Extortion Campaign

    The 19-year-old and his accomplices obtained key data for the extortion scheme in a 2022 breach of a US telco

  15. Two-Fifths of Americans Want to Ban Biometric Use

    ITRC report finds that 39% of American consumers believe biometric use should be banned

  16. M&S Braces for £300 Million Cyber-Attack Costs

    An M&S trading update estimates the ongoing cyber-incident will cost £300m, largely from lost sales due to the suspension of online orders

  17. NCSC Helps Firms Securely Dispose of Old IT Assets

    A new NCSC guide offers useful information on how to safely and securely dispose of end-of-life assets

  18. Uncensored AI Tool Raises Cybersecurity Alarms

    The Venice.ai chatbot gained traction in hacking forums for its uncensored access to advanced models

  19. Debt Collector Data Breach Affects 200,000 Harbin Clinic Patients

    A data breach at Nationwide Recovery Services compromised data of 200,000 Harbin Clinic patients

  20. Russian APT Groups Intensify Attacks in Europe with Zero-Day Exploits and Wipers

    Researchers at ESET observed strengthened cyber-offensive activity from Russian groups, especially against Ukrainian and European entities

Why not watch?

  1. Closing the Browser Security Gap: Defending Against Modern Web-Based Threats

  2. How to Tackle Rising Cloud Identity Attacks

  3. From Code to Chaos: How AI Is Weaponizing the Cyber Battlefield

  4. Reimagining the SOC: From Reactive to Resilient

What’s hot on Infosecurity Magazine?