Infosecurity News

  1. LokiBot Malware Targets Windows Users in Office Document Attacks

    Fortinet suggests attackers are leveraging vulnerabilities like CVE-2021-40444 and CVE-2022-30190

  2. Chinese APT Favorite Backdoor Found in Pakistani Government App

    Trend Micro found a backdoor previously exploited by various Chinese threat actors in a popular application used by Pakistan’s government agencies

  3. NCSC Shares Alternatives to Using a SOC

    Security agency’s advice could help save time and money

  4. Ransomware Costs Financial Services $32bn in Five Years

    The figure accounts for losses due to downtime alone

  5. UK Financial Regulator Urges Banks to Tackle AI-Based Fraud

    Prime Minister wants UK to be a global center of AI regulation

  6. New CVSS Version Unveiled Amid Rising Cyber Threats

    FIRST has released details of version 4.0 of the standard, which aims to address criticisms of CVSS 3.1

  7. Mandiant Unveils Russian GRU's Cyber Playbook Against Ukraine

    Mandiant has observed that the same playbook has been used by various Russian threat actors since the breakout of war in Ukraine, making them likely to be part of a GRU-led deliberate strategy

  8. White House Publishes Plan to Implement US National Cybersecurity Strategy

    The plan details over 65 federal initiatives, each of which is assigned to a responsible agency

  9. US on Track For Record Number of Data Breaches

    Latest quarterly figures show compromises at an all-time high

  10. Fewer Than 100 Scammers Responsible For Global Email Extortion

    Barracuda research lifts the lid on widespread threat activity

  11. Chinese Threat Group Compromises US Government

    Threat actors forged authentication tokens to access email

  12. Diplomats in Ukraine Targeted by “Staggering” BMW Phishing Campaign

    Unit 42 researchers believe a Russian threat group repurposed a legitimate flyer for a BMW car sent to embassies in Kyiv, Ukraine

  13. Ethical Hackers Reveal How They Use Generative AI

    Bugcrowd’s report finds that many ethical hackers are utilizing generative AI in their work, but 72% argue it will never replace human creativity

  14. Financial Industry Faces Soaring Ransomware Threat

    Banks and financial service providers have emerged as attractive targets for the most prominent ransomware groups

  15. Crypto Crime Down 62% but Ransomware Activity Surges

    Chainalysis claims big-game hunting is back

  16. Scam Page Volumes Surge 304% Annually

    Social media and messaging apps are main conduit

  17. Microsoft Fixes Six Zero-Days This Patch Tuesday

    One of the bugs has been actively exploited in NATO attacks

  18. Clop: Behind MOVEit Lies a Loud, Adaptable and Persistent Threat Group

    David Wallace, a senior threat intelligence analyst at Sophos, took a deep dive into Clop’s background and intrusion techniques

  19. 11 Million Patients Impacted in Healthcare Data Breach

    HCA Healthcare said personal data of approximately 11 million patients was published on an online forum

  20. EU Adopts New US Data Privacy Agreement

    The Commission’s announcement allows for the free flow of personal data between the two regions, but is likely to be challenged in the courts

Why not watch?

  1. Navigating Exposures in Energy ICS Environments

  2. Mastering Australian Privacy Act and Essential Eight While Improving Cybersecurity Posture

  3. Dispelling the Myths of Defense-Grade Cybersecurity

  4. Identifying Concentration Risk and Securing the Supply Chain

What’s hot on Infosecurity Magazine?