Infosecurity News

  1. T-Mobile Breached in Major Chinese Cyber-Attack on Telecoms

    T-Mobile was hit by Salt Typhoon, a Chinese cyber-espionage group targeting US and global telecom firms

  2. Helldown Ransomware Expands to Target VMware and Linux Systems

    Helldown ransomware has expanded its reach to target Linux and VMware systems, exploiting Zyxel firewall vulnerabilities and exfiltrating data

  3. Palo Alto Networks Patches Critical Firewall Vulnerability

    Palo Alto advised users to patch urgently as the vulnerability is critical and actively exploited in the wild

  4. Ransomware Gangs on Recruitment Drive for Pen Testers

    Ransomware groups are recruiting pen testers from the dark web to expand their operations, as revealed by Cato Network's Q3 2024 SASE Threat Report

  5. Suspected Phobos Ransomware Admin Extradited to US

    A Russian national suspected of involvement in Phobos ransomware has appeared in court in the US

  6. Companies Take Over Seven Months to Recover From Cyber Incidents

    Fastly claims global organizations are taking 25% longer than expected to recover from security incidents

  7. Swiss Cyber Agency Warns of QR Code Malware in Mail Scam

    Switzerland’s National Cyber Security Centre has warned of a new QR code scam in fake MeteoSwiss letters spreading Android malware

  8. ‘ClickFix’ Cyber-Attacks for Malware Deployment on the Rise

    Proofpoint researchers have observed the growing use of the ClickFix social engineering tactic, which lures people into running malicious content on their computer

  9. Fake Donald Trump Assassination Story Used in Phishing Scam

    A phishing email claims to be from the New York Times with a story about an assassination attempt against President-elect Donald Trump

  10. Surge in DocuSign Phishing Attacks Target US State Contractors

    Phishing attacks using DocuSign impersonations targeting state agencies have surged 98% since Nov 8

  11. North Korean IT Worker Network Tied to BeaverTail Phishing Campaign

    BeaverTail malware has been used to target tech job seekers through fake recruiters, Palo Alto Networks’ Unit 42 has found

  12. FTC Records 50% Drop in Nuisance Calls Since 2021

    The US Federal Trade Commission is celebrating a halving of unwanted telemarketing and scam calls since 2021

  13. UK Shoppers Lost £11.5m Last Christmas, NCSC Warns

    The UK’s National Cyber Security Centre is urging shoppers to stay safe this Christmas after revealing they lost £11.5m to fraudsters in 2023

  14. Palo Alto Networks Confirms New Zero-Day Being Exploited by Threat Actors

    The security provider has elevated its warning about a vulnerability affecting firewall management interfaces after observing active exploitation

  15. Bitfinex Hacker Jailed for Five Years Over Billion Dollar Crypto Heist

    Ilya Lichtenstein hacked into the cryptocurrency exchange in 2016 and stole around 120,000 bitcoins

  16. watchTowr Finds New Zero-Day Vulnerability in Fortinet Products

    The new vulnerability was named “FortiJump Higher” due to its similarity with the “FortiJump” vulnerability discovered in October

  17. Ransomware Groups Use Cloud Services For Data Exfiltration

    SentinelOne described some of ransomware groups’ favorite techniques for targeting cloud services

  18. O2’s AI Granny Outsmarts Scam Callers with Knitting Tales

  19. Sitting Ducks DNS Attacks Put Global Domains at Risk

    Over 1 million domains are vulnerable to “Sitting Ducks” attack, which exploits DNS misconfigurations

  20. Microsoft Power Pages Misconfiguration Leads to Data Exposure

    Misconfigurations in Microsoft Power Pages granting excessive access permissions expose sensitive data, risking PII to unauthorized users

Why not watch?

  1. How to Manage Your Risks and Protect Your Financial Data

  2. Mastering Australian Privacy Act and Essential Eight While Improving Cybersecurity Posture

  3. Navigating Exposures in Energy ICS Environments

  4. Alert Fatigue: What Are You and Your Security Teams Missing?

What’s hot on Infosecurity Magazine?