Infosecurity News

  1. IT Engineer Charged For Attempting to Extort Former Employer

    A virtual machine specialist was arrested after a foiled data extortion plot targeting his former employer

  2. Ransomware Attacks Exposed 6.7 Million Records in US Schools

    Ransomware attacks on US schools and colleges have surged, with 491 incidents since 2018, affecting over 8000 institutions

  3. LummaC2 Infostealer Resurfaces With Obfuscated PowerShell Tactics

    LummaC2, a C-based MaaS tool first identified in 2022, has resurfaced to exfiltrate credentials and personal data

  4. Iran-Backed Peach Sandstorm Hackers Deploy New Tickler Backdoor

    The hacking subsidiary of the Iranian Islamic Revolutionary Guard Corps (RGC) has targeted satellite, communications, oil and gas and government sectors in the US and UAE

  5. Money Laundering Dominates UK Fraud Cases

    KPMG research finds money laundering accounted for the majority of fraud cases heard in the first half of 2024

  6. South Korean Spies Exploit WPS Office Zero-Day

    ESET uncovers a South Korean cyber-espionage campaign featuring a zero-day exploit for WPS Office

  7. Microsoft 365 Copilot Vulnerability Exposes User Data Risks

    The flaw in Microsoft 365 Copilot allowed data theft using ASCII smuggling and prompt injection

  8. MOVEit Hack Exposed Personal Data of Half Million TDECU Users

    The Texas Dow Employees Credit Union told the Maine Attorney General the MOVEit data breach compromised information of over 500,000 members

  9. FBI Flawed Data Handling Raises Security Concerns

    A US Justice Department watchdog has found “significant weaknesses” in the FBI’s physical and online media storage and disposal processes

  10. Suspected Cyber-Attack Causes Travel Chaos at Seattle Airport

    The Port of Seattle revealed system outages at the city’s airport may have been caused by a cyber-attack, affecting early Labor Day travel

  11. Uber Hit With €290m GDPR Fine

    The Dutch data protection regulator has imposed a €290m GDPR fine on Uber for storing driver data in the US without adequate safeguards

  12. A Third of Organizations Suffer SaaS Data Breaches

    AppOmni report claims number of companies suffering SaaS-related data breaches has jumped five percentage points over past year

  13. Newly Discovered Group Offers CAPTCHA-Solving Services to Cybercriminals

    Greasy Opal is a Czech Republic-based hacking group selling products that can be used for deploying cyber-attacks

  14. NSA Releases Guide to Combat Living Off the Land Attacks

    The National Security Agency has published a guide to help organizations defend against APT attacks that leverage living off the land techniques

  15. Chinese Velvet Ant Uses Cisco Zero-Day to Deploy Custom Malware

    The Chinese cyber espionage group was observed jailbreaking a Cisco switch appliance using a zero-day exploit

  16. Georgia Tech Sued Over Cybersecurity Violations

    The US government has filed a lawsuit against Georgia Tech for alleged cybersecurity violations as a Department of Defense contractor

  17. Qilin Caught Red-Handed Stealing Credentials in Google Chrome

    Browser credential harvesting is an unusual activity for a ransomware group

  18. YouTube Launches AI Tool to Recover Hacked Accounts

    YouTube’s new AI troubleshooting tool is designed to help users recover and secure their accounts after they’ve been hacked

  19. Liverpool Fans Lose Big in Premier League Ticket Scams

    Liverpool fans were the most frequent and highest-value targets for ticket scams last season, losing over £17,000 to fraudsters

  20. Cthulhu Stealer Malware Targets macOS With Deceptive Tactics

    Cthulhu Stealer targets macOS, posing a major threat by disguising as legitimate software via DMG files

Why not watch?

  1. How to Secure Industrial IP with Data Loss Protection Strategies

  2. Going Beyond Traditional Attack Surface Management with Cyber Threat Intelligence

  3. Unpacking the Top Vulnerabilities Exploited by Sophisticated Attackers

  4. Securing Your Move to Hybrid Cloud Infrastructure

What’s hot on Infosecurity Magazine?