Infosecurity News

  1. TfL Claims Cyber-Incident is Not Impacting Services

    London’s transport body, TfL, is playing down the impact of a cybersecurity incident on its services

  2. Irish Wildlife Park Warns Customers to Cancel Credit Cards Following Breach

    Fota Wildlife Park in Co Cork has told visitors to its website to cancel credit and debit cards, following a cyber-attack

  3. US Authorities Issue RansomHub Ransomware Alert

    Agencies under the #Stopransomware banner publish details of RansomHub group’s tactics, indicators of compromise and essential mitigations

  4. South Korea Police Investigates Telegram Over Deepfake Porn

    The Asian country’s law enforcement suspects the instant messaging app of abetting deepfake sex crimes

  5. Verkada Facing Penalty After Hackers Viewed Sensitive Video Footage

    The US FTC has proposed a $2.95m fine for security camera firm Verkada for alleged security failings that allowed hackers to access customers' video footage

  6. Cicada3301 Ransomware Group Emerges From the Ashes of ALPHV

    Truesec claims new Cicada3301 ransomware-as-a-service group could have ties to ALPHV/BlackCat and Brutus

  7. Scores of Organizations Hit By Novel Voldemort Malware

    Proofpoint has uncovered a new cyber-espionage campaign deploying new malware dubbed “Voldemort”

  8. Published Vulnerabilities Surge by 43%

    Forescout highlighted a 43% increase in published vulnerabilities in H1 2024, with attackers targeting flaws in VPNs and network infrastructure for initial access

  9. Russian Hackers Use Commercial Spyware Exploits to Target Victims

    In a campaign targeting Mongolian government websites, Russian-backed APT29 leveraged exploits previously used by spyware vendors NSO Group and Intellexa

  10. North Korean Hackers Launch New Wave of npm Package Attacks

    North Korean groups exploited npm packages in coordinated attacks, targeting developers and cryptocurrency wallet browser extensions

  11. BlackByte Adopts New Tactics, Targets ESXi Hypervisors

    BlackByte, linked to the Conti group, exploited VMware ESXi CVE-2024-37085 to control virtual machines

  12. Unpatched CCTV Cameras Exploited to Spread Mirai Variant

    Threat actors are exploiting a vulnerability found in CCTV cameras used in critical infrastructure to spread a Mirai malware variant

  13. Surge in New Scams as Pig Butchering Dominates

    Chainalysis report reveals a likely increase in new internet scams this year as fraudsters adapt to increasing enforcement efforts

  14. Iranian Hackers Secretly Aid Ransomware Attacks on US

    CISA and the FBI warned that Iranian APT group, Fox Kitten, has helped ransomware groups to attack US organizations since 2017

  15. IT Engineer Charged For Attempting to Extort Former Employer

    A virtual machine specialist was arrested after a foiled data extortion plot targeting his former employer

  16. Ransomware Attacks Exposed 6.7 Million Records in US Schools

    Ransomware attacks on US schools and colleges have surged, with 491 incidents since 2018, affecting over 8000 institutions

  17. LummaC2 Infostealer Resurfaces With Obfuscated PowerShell Tactics

    LummaC2, a C-based MaaS tool first identified in 2022, has resurfaced to exfiltrate credentials and personal data

  18. Iran-Backed Peach Sandstorm Hackers Deploy New Tickler Backdoor

    The hacking subsidiary of the Iranian Islamic Revolutionary Guard Corps (RGC) has targeted satellite, communications, oil and gas and government sectors in the US and UAE

  19. Money Laundering Dominates UK Fraud Cases

    KPMG research finds money laundering accounted for the majority of fraud cases heard in the first half of 2024

  20. South Korean Spies Exploit WPS Office Zero-Day

    ESET uncovers a South Korean cyber-espionage campaign featuring a zero-day exploit for WPS Office

Why Not Watch?

  1. Mastering AI Security With ISACA’s New AAISM Certification

  2. Five Non-Negotiable Strategies to Get Identity Security Right in 2026

  3. Audit & Compliance in the Era of AI and Emerging Technology

  4. Modernizing GRC: From Checkbox to Strategic Advantage

What’s Hot on Infosecurity Magazine?