Infosecurity News

  1. Manifest Confusion Threat Undermines Trust in Entire Npm Registry

    Former manager takes registry to task for slow response

  2. Suncor Energy Responds to Cybersecurity Incident

    Over 1500 Petro-Canada gas stations are unable to accept credit card payments

  3. ThirdEye Infostealer Poses New Threat to Windows Users

    FortiGuard explained that ThirdEye can harvest BIOS and hardware data

  4. Andariel’s Mistakes Uncover New Malware in Lazarus Group Campaign

    Kaspersky analyzes the group’s tactics and reveals the emergence of a new threat called EarlyRat

  5. Mobile Malware and Phishing Surge in 2022

    Zimperium records large increase in share of compromised devices

  6. EncroChat Bust Leads to 6500 Arrests in Three Years

    Encrypted comms platform was used by organized criminals

  7. Experts Unconvinced by Upskill in UK Cyber Program

    Its 3600 applicants will barely make a dent in overall skills shortages

  8. Anatsa Banking Trojan Targets Banks in US, UK and DACH Region

    ThreatFabric said the ongoing campaign started in March and has witnessed over 30,000 installations

  9. Third-Party Vendor Hack Exposes Data at American, Southwest Airlines

    American Airlines reported 5745 pilots and applicants affected, Southwest Airlines reported 3009

  10. Study Reveals Alarming Gap in SIEM Detection of Adversary Techniques

    CardinalOps examined 4000 detection rules, one million log sources and many unique log source types

  11. Submarine Cables at Growing Risk of Cyber-Attacks

    A report from Recorded Future highlights how digital cable management systems are vulnerable to nation-state attacks

  12. Over Half of UK Banks Are Exposing Customers to Email Fraud

    Recommended DMARC policy only implemented by a minority

  13. NCSC Launches Cyber Risk Management Toolbox

    Security agency’s latest guidance refresh makes best practices more accessible

  14. Payments Lobby: Anti-APP Fraud Policies Could Increase Scams

    Payments Association wants social media firms to play role in crackdown

  15. Are GPT-Based Models the Right Fit for AI-Powered Cybersecurity?

    Many cybersecurity vendors are integrating general-purpose large language models into their solutions. However, some experts argue that these are not the best AI algorithms for security

  16. Umbral Stealer Discovered in Trojanized Super Mario Installer

    The discovery comes from security researchers at Cyble Research and Intelligence Labs

  17. Millions Face RepoJacking Risk on GitHub Repositories

    Aqua identified numerous high-profile targets, including organizations such as Google and Lyft

  18. NSA Releases Guide to Mitigate BlackLotus Bootkit Infections

    Microsoft patched exploited boot loader flaw but did not revoke trust in unpatched loaders

  19. Companies Call for Changes to UK’s Cyber Essentials Scheme

    Concerns over cost and one-size-fits-all approach

  20. US Authorities Seize BreachForums Domain

    Questions still to be answered over why it took so long

Why not watch?

  1. Mastering Australian Privacy Act and Essential Eight While Improving Cybersecurity Posture

  2. Dispelling the Myths of Defense-Grade Cybersecurity

  3. Identifying Concentration Risk and Securing the Supply Chain

  4. Navigating Exposures in Energy ICS Environments

What’s hot on Infosecurity Magazine?