Infosecurity News

  1. Nuclear Decommissioning Authority Opens Sellafield Cyber Center

    The UK’s Nuclear Decommissioning Authority has opened a new hub dedicated to cybersecurity knowledge sharing

  2. Operation Serengeti Disrupts $193m African Cybercrime Networks

    The Interpol-led Operation Serengeti has resulted in the arrest of 1000 suspects across Africa

  3. New DDoS Campaign Exploits IoT Devices and Server Misconfigurations

    DDoS campaign by Matrix targets IoT devices and servers, exploiting weak credentials and public scripts

  4. NHS Trust Declares Major Incident for “Cybersecurity Reasons”

    Wirral University Teaching Hospital has cancelled outpatient appointments as it responds to a cybersecurity incident

  5. Darknet Services Fuel Holiday Scams and E-Commerce Exploits

    Cybercriminals are ramping up scams via darknet marketplaces, selling phishing kits for $100-$1000

  6. Aggressive Chinese APT Group Targets Governments with New Backdoors

    A Trend Micro analysis of Earth Estries found that the Chinese threat actor is using new backdoors to avoid detection during espionage operations

  7. Starbucks and Grocery Stores Face Disruption after Ransomware Attack on Blue Yonder

    Supply chain management provider Blue Yonder confirmed it was hit by ransomware attack

  8. Over a Third of Firms Struggling With Shadow AI

    Some 35% of global organizations report challenges monitoring use of non-approved AI tools

  9. UK Scam Losses Surge 50% Annually to £11.4bn

    Cifas figures reveal scammers stole over £11bn from UK consumers in the past 12 months

  10. New York Secures $11.3m from Insurance Firms in Data Breach Settlement

    New York State has agreed a $11.3m settlement from two insurance firms following the breach of the personal data of over 120,000 drivers in the state

  11. IoT Device Traffic Up 18% as Malware Attacks Surge 400%

    Zscaler’s latest report finds 54.5% of IoT attacks target manufacturing, with the industry suffering more than three times the weekly attacks of other sectors

  12. npm Package Lottie-Player Compromised in Supply Chain Attack

    npm package @lottiefiles/lottie-player hacked with malicious code, draining crypto wallets via web3 pop-ups

  13. Google Deindexes Chinese Propaganda Network

    Google’s threat intelligence team uncovered four Chinese PR firms operating networks of inauthentic news sites

  14. UK Launches AI Security Lab to Combat Russian Cyber Threats

    UK Minister Pat McFadden will say in a speech at a NATO conference that adversaries are looking at using AI on the physical and cyber battlefield

  15. Meta Shutters Two Million Scam Accounts in Two-Year Crackdown

    Meta has closed down two million accounts it says were used in scams such as pig butchering

  16. ICO Urges More Data Sharing to Tackle Fraud Epidemic

    The UK’s Information Commissioner’s Office argues that regulatory concerns shouldn’t prevent firms sharing data to stop scams

  17. Microsoft Seizes 240 Websites to Disrupt Global Distribution of Phish Kits

    Microsoft has seized 240 websites associated with the “ONXX” phishing-as-a-service operation, and has sued the developer of this service

  18. Russian Cyber Spies Target Organizations with HatVibe and CherrySpy Malware

    Russian-aligned TAG-110 uses custom tools to spy on governments, human rights groups and educational institutions in Europe and Asia

  19. Three-Quarters of Black Friday Spam Emails Identified as Scams

    Bitdefender found that 77% of Black Friday-themed spam emails in 2024 have been identified as scams, with attackers becoming more creative in their campaigns

  20. Five Ransomware Groups Responsible for 40% of Cyber-Attacks in 2024

    Corvus Insurance highlighted the growing complexity and competition within the ransomware ecosystem, with the threat level remaining elevated

What’s hot on Infosecurity Magazine?