Infosecurity News
CISA Confirms Exploitation of SonicWall Vulnerabilities
The US Cybersecurity and Infrastructure Security Agency has added two flaws affecting SonicWall products to its catalog of Known Exploited Vulnerabilities
White House Warns China of Cyber Retaliation Over Infrastructure Hacks
NSC’s Alexei Bulazel said that failing to robustly respond to constant Chinese intrusions into critical infrastructure is in itself “escalatory”
Third of Online Users Hit by Account Hacks Due to Weak Passwords
FIDO Alliance found an uptick in awareness and takeup of passkeys as an alternative method to passwords
Harrods Latest UK Retailer to Fall Victim to Cyber-Attack in Recent Days
UK retailers including Harrods, M&S, and the Co-op are under a surge of cyber-attacks that may be linked by a common supplier or shared technological vulnerability
Claude Chatbot Used for Automated Political Messaging
Anthropic has found its Claude chatbot is being used for automated political messaging, enabling AI-driven influence campaigns
UK and Canadian Regulators Demand Robust Data Protection Amid 23andMe Bankruptcy
Concerned about the fate of sensitive genetic information, the ICO and OPC have demanded that 23andMe prioritize customer data protection throughout its bankruptcy process
Large-Scale Phishing Campaigns Target Russia and Ukraine
A large-scale phishing campaign using DarkWatchman and Sheriff malware has been observed targeting companies in Russia and Ukraine
Mystery Box Scams Deployed to Steal Credit Card Data
Bitdefender highlighted the growing use of subscription scams, in which victims are lured by adverts into recurring payments for fake products
Meta Unveils New Advances in AI Security and Privacy Protection
Alongside its new Meta AI app, Facebook’s parent company launched several new products to help secure open-source AI applications
ICO: No Further Action on British Library Ransomware Breach
The ICO has decided not to fine the British Library for a 2023 ransomware breach
FBI Publishes 42,000 LabHost Phishing Domains
The FBI has released details of 42,000 phishing domains associated with the LabHost operation, in order to help the security community
#Infosec2025: How Advances in Quantum Computing Could Reshape Cybersecurity
The impact of the advancement in quantum computing on cybersecurity will be a key focus at this year’s Infosecurity Europe event
RansomHub Refines Extortion Strategy as RaaS Market Fractures
RansomHub refines extortion strategy amid RaaS market fractures, expanding affiliate recruitment
Microsoft Expands Cloud, AI Footprint Across Europe
Microsoft has announced plans to expand cloud and AI infrastructure in the EU, increasing data center capacity by 40% by 2027
UK Retailer Co-op Confirms Hack, Reports "Small Impact" to Its Systems
The Co-op stores, quick commerce operations and funeral homes are trading as usual
DHS Head Accuses CISA of Acting Like “the Ministry of Truth”
Kristi Noem said the Trump administration is introducing reforms to ensure CISA is focusing on the core security functions it was created for
US House Approves Bill to Assess Security Threats Posed by Foreign-Made Routers
The legislation mandates a probe into foreign-made routers to identify risks for US national security
JPMorgan CISO Urges SaaS Security Reset
JPMorgan’s CISO has argued that SaaS apps represent a growing risk to businesses, “quietly enabling cyber attackers”
France Slams Russia’s APT28 for Four-Year Cyber-Espionage Campaign
The French government has criticized Russia’s APT28 group for attacking 12 entities in a long-running espionage campaign
New WordPress Malware Masquerades as Plugin
New WordPress malware disguised as a plugin gives attackers persistent access and injects malicious code enabling administrative control
