Infosecurity News

  1. VPN and RDP Exploitation the Most Common Attack Technique

    Initial access brokers still play a key role in threat supply chain

  2. US Prosecutors Line Up Charges in $2.5bn Healthcare Fraud Cases

    Nearly 80 individuals accused of participating in multiple schemes

  3. Japan in the Crosshairs of Many State-Sponsored Threat Actors New Report Finds

    Rapid7 found that Vietnamese APTs have also been targeting Japanese organizations, especially competitors of Vietnam’s budding automotive industry

  4. Manifest Confusion Threat Undermines Trust in Entire Npm Registry

    Former manager takes registry to task for slow response

  5. Suncor Energy Responds to Cybersecurity Incident

    Over 1500 Petro-Canada gas stations are unable to accept credit card payments

  6. ThirdEye Infostealer Poses New Threat to Windows Users

    FortiGuard explained that ThirdEye can harvest BIOS and hardware data

  7. Andariel’s Mistakes Uncover New Malware in Lazarus Group Campaign

    Kaspersky analyzes the group’s tactics and reveals the emergence of a new threat called EarlyRat

  8. Mobile Malware and Phishing Surge in 2022

    Zimperium records large increase in share of compromised devices

  9. EncroChat Bust Leads to 6500 Arrests in Three Years

    Encrypted comms platform was used by organized criminals

  10. Experts Unconvinced by Upskill in UK Cyber Program

    Its 3600 applicants will barely make a dent in overall skills shortages

  11. Anatsa Banking Trojan Targets Banks in US, UK and DACH Region

    ThreatFabric said the ongoing campaign started in March and has witnessed over 30,000 installations

  12. Third-Party Vendor Hack Exposes Data at American, Southwest Airlines

    American Airlines reported 5745 pilots and applicants affected, Southwest Airlines reported 3009

  13. Study Reveals Alarming Gap in SIEM Detection of Adversary Techniques

    CardinalOps examined 4000 detection rules, one million log sources and many unique log source types

  14. Submarine Cables at Growing Risk of Cyber-Attacks

    A report from Recorded Future highlights how digital cable management systems are vulnerable to nation-state attacks

  15. Over Half of UK Banks Are Exposing Customers to Email Fraud

    Recommended DMARC policy only implemented by a minority

  16. NCSC Launches Cyber Risk Management Toolbox

    Security agency’s latest guidance refresh makes best practices more accessible

  17. Payments Lobby: Anti-APP Fraud Policies Could Increase Scams

    Payments Association wants social media firms to play role in crackdown

  18. Are GPT-Based Models the Right Fit for AI-Powered Cybersecurity?

    Many cybersecurity vendors are integrating general-purpose large language models into their solutions. However, some experts argue that these are not the best AI algorithms for security

  19. Umbral Stealer Discovered in Trojanized Super Mario Installer

    The discovery comes from security researchers at Cyble Research and Intelligence Labs

  20. Millions Face RepoJacking Risk on GitHub Repositories

    Aqua identified numerous high-profile targets, including organizations such as Google and Lyft

Why not watch?

  1. Alert Fatigue: What Are You and Your Security Teams Missing?

  2. Identifying Concentration Risk and Securing the Supply Chain

  3. Enhancing Software Supply Chain Management: A DORA-Focused Approach

  4. Dispelling the Myths of Defense-Grade Cybersecurity

What’s hot on Infosecurity Magazine?