Infosecurity News

  1. Smishing Triad: China-Based Fraud Network Exposed

    Resecurity explained the “Smishing Triad” campaign exclusively utilizes iMessages

  2. Open-Source Malware SapphireStealer Expands

    Cisco Talos said SapphireStealer has evolved significantly, resulting in multiple variants

  3. Sophisticated Cyber-Espionage Group Earth Estries Exposed

    Trend Micro noted that “Earth Estries” employed advanced tactics to infiltrate networks

  4. Adobe ColdFusion Critical Vulnerabilities Exploited Despite Patches

    Although the patches for these vulnerabilities have already been released, public attacks are still occurring

  5. BYOD Security Gap: Survey Finds 49% of European Firms Unprotected

    Jamf suggested firms enroll employees in a BYOD or Mobile Device Management (MDM) program

  6. New Research Exposes Airbnb as Breeding Ground For Cybercrime

    Slashnext unveiled a disturbing arsenal of stealers, cookies and exploits

  7. Facebook Accounts Targeted by Vietnamese Threat Groups

    These groups often sell ads to other cybercriminals, either for a fee or a share of the operations

  8. GRU Blamed for Infamous Chisel Malware Targeting Ukraine's Military Phones

    Infamous Chisel, which enables unauthorized access to compromised Android devices used by the Ukrainian military, has been linked to Sandworm

  9. Russian APT Intensifies Cyber Espionage Activities Amid Ukrainian Counter-Offensive

    The Gamaredon group has ramped up attacks against Ukrainian military entities, with the aim of hindering Ukraine’s counter-offensive operations

  10. Classiscam Spreads: $64.5M Scheme Targets 79 Countries

    Group-IB’s analysis showed that between H1 2021 and H1 2023, 251 brands were targeted by Classiscam

  11. Flaw Exposes WP Migration Plugin to Hacks

    The vulnerable code was identified by the security research team at PatchStack

  12. Chinese APT Group GREF Use BadBazaar in Android Espionage

    ESET said BadBazaar was available via the Google Play Store, Samsung Galaxy Store and various app sites

  13. Chinese Hackers Target US, Other Govts With Barracuda Flaw

    The campaign deployed many malware families, including Skipjack, DepthCharge, Foxglove and Foxtrot

  14. FBI-Led Operation Duck Hunt Shuts Down QakBot Malware

    With Operation Duck Hunt, the FBI took control of the botnet, allowed victims to uninstall the malware loader and seized $8.6m in cryptocurrency

  15. OpenAI Promises Enterprise-Grade Security with ChatGPT for Business

    OpenAI has launched ChatGPT Enterprise highlighting high-profile customers including Klarna, PwC and The Estee Lauder Companies

  16. NCSC Issues Cyber Warning Over AI Chatbots

    The UK cyber agency highlights the lack of understanding of LLMs among industry and academia

  17. LockBit 3.0 Ransomware Variants Surge Post Builder Leak

    Kaspersky explained that LockBit 3.0, also known as LockBit Black, first emerged in June 2022

  18. New Ransomware Campaign Targets Citrix NetScaler Flaw

    Sophos X-Ops suspects the involvement of a well-known ransomware threat actor known as STAC4663

  19. Report Reveals Growing Disparity in Cyber Insurance Landscape

    Delinea’s report shows gap grows as firms struggle for cyber insurance, longer policy wait times

  20. Microsoft Warns of Adversary-in-the-Middle Uptick on Phishing Platforms

    Existing phishing-as-a-service platforms are increasingly incorporating adversary-in-the-middle capabilities

Why not watch?

  1. Cybersecurity Employment: Making Sense of Conflicting Messaging

  2. Cyber Resilience in the AI Era: New Challenges and Opportunities

  3. Safeguarding Critical Supply Chain Data Through Effective Risk Assessment

  4. How to Tackle Rising Cloud Identity Attacks

What’s hot on Infosecurity Magazine?