Infosecurity News

  1. Private 5G Networks Face Security Risks Amid AI Adoption

    Private 5G networks face security risks amid AI adoption and a lack of specialized expertise

  2. New Cyber-Espionage Campaign Targets UAE Aviation and Transport

    A cyber-espionage campaign targeting UAE aviation and transport has been identified by researchers, using customized lures to deploy Sosano malware

  3. VMware Warns Customers to Patch Actively Exploited Zero-Day Vulnerabilities

    Cloud software firm VMware has issued a critical security advisory, detailing three zero-day vulnerabilities being actively exploited in the wild

  4. North Korean Fake IT Workers Leverage GitHub to Build Jobseeker Personas

    Nisos has found six personas leveraging new and existing GitHub accounts to get developer jobs in Japan and the US

  5. CISO Liability Risks Spur Policy Changes at 93% of Organizations

    Fastly found that organizations have introduced changes such as increasing CISO participation in strategic decisions in response to growing personal liability risks

  6. CISA Urges Government to Patch Exploited Cisco, Microsoft Flaws

    CISA has added five more CVEs into its known exploited vulnerabilities catalog

  7. Half of Online Gambling Firms Lose 10% of Revenue to Fraud

    Sumsub research finds European iGaming market is losing billions to fraud each year

  8. Attackers Leverage Microsoft Teams and Quick Assist for Access

    Phishing attack exploits social engineering techniques alongside Microsoft Teams and remote access software to deploy BackConnect malware

  9. CISA Denies Reports of Shift in Cybersecurity Posture Amid Russian Threats

    The US Cybersecurity and Infrastructure Security Agency confirmed it will keep defending against Russian cyber threats to US critical infrastructure

  10. Phishing Campaign Uses Havoc Framework to Control Infected Systems

    A new phishing campaign has been identified using Havoc to control infected systems, leveraging SharePoint and Microsoft Graph API

  11. Vodafone Trials Quantum-Safe Tech to Protect Smartphone Browsing

    Telecoms provider Vodafone has developed the new proof of concept with IBM, as it seeks to implement post-quantum cryptography ahead of anticipated quantum-based attacks

  12. ICO Launches TikTok Investigation Over Use of Children’s Data

    The Information Commissioner’s Office is now investigating how TikTok uses 13–17-year-olds’ personal information

  13. BYOVD Attacks Exploit Zero-Day in Paragon Partition Manager

    Threat actors are exploiting a zero-day bug in Paragon Partition Manager's BioNTdrv.sys driver during ransomware attacks

  14. Third-Party Attacks Drive Major Financial Losses in 2024

    Data from Resilience found that third-party attacks made up 23% of material cyber insurance claims in 2024, with ransomware attacks targeting vendors a major driver

  15. Cybersecurity M&A Roundup: SolarWinds Acquired for $4.4bn

    In February 2025, Sophos completed the Secureworks deal and SolarWinds went private

  16. Old Vulnerabilities Among the Most Widely Exploited

    Four in ten flaws exploited by threat actors in 2024 were from 2020 or earlier, with some dating back to the 1990s, according to a GreyNoise report

  17. Prolific Data Extortion Actor Arrested in Thailand

    A joint operation between the Thai and Singapore police has resulted in the arrest of a man allegedly responsible for over 90 data extortion attacks worldwide

  18. DragonForce Ransomware Hits Saudi Firm, 6TB Data Stolen

    DragonForce ransomware attacks Saudi firms stealing 6TB data, escalating cyber threats in real estate

  19. Winos 4.0 Malware Targets Taiwan With Email Impersonation

    Winos 4.0 malware uses phishing emails to target organizations in Taiwan, Fortinet experts warn

  20. Software Vulnerabilities Take Almost Nine Months to Patch

    Veracode found a 47% increase in the average time taken to patch software vulnerabilities, driven by growing reliance on third-party code

What’s hot on Infosecurity Magazine?