Infosecurity News

  1. CISA and Partners Publish Guide For Remote Access Security

    Cyber-actors are utilizing these tools for easy and broad access to victim systems

  2. North Korean APT Group Kimsuky Expands Social Engineering Tactics

    SentinelOne said the campaign specifically targets experts in North Korean affairs

  3. "PowerDrop" PowerShell Malware Targets US Aerospace Industry

    Adlumin said the malware combines elements of off-the-shelf threats and APT tactics

  4. Cisco Counterfeiter Pleads Guilty to $100m Scheme

    Dual US/Turkish citizen ran at least 19 companies

  5. FBI Warns of Surge in Deepfake Sextortion Attempts

    Fake imagery is being used to harass and extort victims

  6. CVEs Surge By 25% in 2022 to Another Record High

    Volume of new vulnerabilities has increased three-fold in a decade

  7. Three Vulnerabilities Discovered in Game Dev Tool RenderDoc

    Qualys identified one instance of privilege escalation and two heap-based buffer overflows

  8. Exploitation of Vulnerabilities Have Soared, Unit 42 Report Finds

    The Palo Alto Networks report also suggests Linux malware emerged as a growing concern last year

  9. New ChatGPT Attack Technique Spreads Malicious Packages

    Vulcan Cyber's Voyager18 research team called the technique "AI package hallucination"

  10. BEC Volumes and Ransomware Costs Double in a Year

    Annual Verizon report reveals humans are still a major source of risk

  11. Kaspersky Releases Tool to Detect Zero-Click iOS Attacks

    Fallout from Operation Triangulation continues

  12. Clop Ransom Gang Breaches Big Names Via MOVEit Flaw

    Boots, BA, the BBC and more have data compromised

  13. Satacom Malware Campaign Steals Crypto Via Stealthy Browser Extension

    The extension employs various JavaScript scripts to manipulate users' browsers

  14. Critical Zero-Day Flaw Exploited in MOVEit Transfer

    The vulnerability (CVE-2023-34362) can grant escalated privileges and unauthorized access

  15. Spanish Bank Globalcaja Hit By Ransomware Attack

    The firm said the attack occurred last Thursday and prompted it to activate its security protocols

  16. UK Closes CCP Cyber Certification Scheme

    Certified Cyber Professional will be replaced by new chartered scheme

  17. North Korea Makes 50% of Income from Cyber-Attacks: Report

    US assessment highlights significance of offensive capabilities

  18. Atomic Wallet Customers Lose Over $35m in Crypto Attacks

    Digital wallet provider still investigating cause of incidents

  19. Enzo Biochem Hit by Ransomware, 2.5 Million Patients' Data Compromised

    The information includes names, test information and 600,000 Social Security numbers

  20. US and Korean Agencies Issue Warning on North Korean Cyber-Attacks

    The advisory identifies several actors: Kimsuky, Thallium, APT43, Velvet Chollima and Black Banshee

Why not watch?

  1. Identifying Concentration Risk and Securing the Supply Chain

  2. Navigating Exposures in Energy ICS Environments

  3. Mastering Australian Privacy Act and Essential Eight While Improving Cybersecurity Posture

  4. Alert Fatigue: What Are You and Your Security Teams Missing?

What’s hot on Infosecurity Magazine?