Infosecurity News

  1. Industry Experts Urge CISA to Update Secure by Design Guidance

    A letter authored by industry experts says that CISA should include specific details on how to implement security-by-design through threat modeling

  2. Scam Job Offers Target Uni Students

    Threat actors exploit high cost of living

  3. NCA: Nation States Using Cybercrime Groups as Proxies

    Crime agency chief warns of surging online threat

  4. Norwegian Giant Tomra Suffers “Extensive” Attack

    Employees forced to work from home after IT outage

  5. New Vulnerabilities Found in Adobe ColdFusion

    Rapid7 has observed that some vulnerabilities in Adobe ColdFusion were still being exploited several days after the patches were published

  6. CISA Unveils Guide to Aid Firms Transition to Cloud Security

    It mentions the CSET, SCuBAGear, Untitled Goose Tool, Decider and Memory Forensic on Cloud

  7. drIBAN Fraud Operations Target Corporate Banking Customers

    The web injects allow cyber-criminals to manipulate legitimate web pages' content in real time

  8. JumpCloud Confirms Data Breach By Nation-State Actor

    The attack vector was identified as data injection into the firm's commands framework

  9. Suspected Scareware Fraudster Arrested After Decade on the Run

    Ukrainian said to have caused victim losses of $70m

  10. WooCommerce Bug Exploited in Targeted WordPress Attacks

    Wordfence claims over 157,000 sites have been hit so far

  11. IT Security Pro Jailed for Attempted Extortion

    Hertfordshire man pleaded guilty in May

  12. BreachForums Admin Pleads Guilty to Hacking Charges

    The guilty plea also covered a separate count of possession of child pornography

  13. Ukraine's CERT-UA Exposes Gamaredon's Rapid Data Theft Methods

    The group utilize malware like GAMMASTEEL to rapidly exfiltrate files within 30-50 minutes

  14. Sorillus RAT and Phishing Attacks Exploit Google Firebase Hosting

    eSentire found the threat after detecting suspicious code in a manufacturing customer's network

  15. EU Urged to Prepare for Quantum Cyber-Attacks

    A discussion paper from the European Policy Centre sets out recommendations for an EU quantum cybersecurity agenda

  16. Russian Charged with Tech Smuggling and Money Laundering

    Man accused of aiding the Kremlin with dual-use tech

  17. Health Tech Vendor to Pay $31m After Kickback Allegations

    NextGen Healthcare was accused of violating False Claims Act

  18. Acting White House Cyber Director Withdraws Nomination

    Reports suggest personal debt behind Kemba Walden’s decision

  19. AI Tool WormGPT Enables Convincing Fake Emails For BEC Attacks

    Security expert Daniel Kelley worked with the SlashNext team on the research

  20. New Threat Actor Launches Cyber-attacks on Ukraine and Poland

    Cisco Talos said the malicious campaigns started in April 2022 and are currently ongoing

Why not watch?

  1. Alert Fatigue: What Are You and Your Security Teams Missing?

  2. How to Manage Your Risks and Protect Your Financial Data

  3. Navigating Exposures in Energy ICS Environments

  4. Dispelling the Myths of Defense-Grade Cybersecurity

What’s hot on Infosecurity Magazine?