Infosecurity News

  1. Pentagon Cyber Policy Cites Learnings from Ukraine War

    New 2023 strategy document sent to Congress

  2. WordPress Rushes Out Jetpack Patch to Millions

    Bug could allow malicious actors to manipulate files

  3. Dark Pink APT Group Expands Tooling and Targets

    Group-IB spots five new victims

  4. Nigerian Cybercrime Ring's Phishing Tactics Exposed

    The criminal enterprise resulted in losses of up to $1m

  5. Human Error Fuels Industrial APT Attacks, Kaspersky Reports

    OT network admins grant access to employees or contractors without sufficient security measures

  6. DogeRAT Malware Impersonates BFSI, Entertainment, E-commerce Apps

    Discovered by CloudSEK, the malicious campaign relies on open source Android malware

  7. Ransomware Gangs Adopting Business-like Practices to Boost Profits

    Cyber-criminal gangs are mirroring the practices of legitimate businesses to drive efficiencies and increase profits

  8. Dark Web Data Leak Exposes RaidForums Members

    Cybercrime site was taken down by the authorities in 2022

  9. Retailer Database Error Leaks Over One Million Customer Records

    SimpleTire snafu has now been remediated

  10. Nine Million MCNA Dental Customers Hit by Breach

    LockBit ransomware group has claimed responsibility

  11. New Mirai Variant Campaigns are Targeting IoT Devices

    Unit 42 researchers observed that a wave of malicious campaigns, all deployed by the same threat actor, have been using IZ1H9 since November 2021

  12. New Russian-Linked Malware Poses “Immediate Threat” to Energy Grids

    Researchers say the specialized OT malware has similarities with Industroyer, which was used to take down power in Kiev, Ukraine, in 2016

  13. Romania’s Safetech Leans into UK Cybersecurity Market

    The cyber innovator sees the UK is an ideal location to realize its global ambitions as it opens a SOC at the Plexal Innovation Hub

  14. Advanced Phishing Attacks Surge 356% in 2022

    Perception Point said the increase is due to the adoption of new cloud collaboration apps

  15. Expo Framework API Flaw Reveals User Data in Online Services

    The vulnerability was discovered by Salt Security and has a CVSS score of 9.6

  16. NCSC Warns Against Chinese Cyber Attacks on Critical Infrastructure

    The threat actors used sophisticated tactics to evade detection during their malicious activities

  17. SMBs Targeted by State-Aligned Actors for Financial Theft and Supply Chain Attacks

    Proofpoint researchers have found that small and medium-sized businesses are increasingly being targeted by APT actors globally

  18. AI Used to Create Malware, WithSecure Observes

    The cybersecurity firm confirms that it has observed AI being used to generate malware

  19. Lazarus Group Targeting Microsoft Web Servers to Launch Espionage Malware

    Researchers detail the DLL side-loading technique used to deploy malware that facilitates credential theft and lateral movement

  20. US Sanctions North Korean Entities Training Expat IT Workers in Russia, China and Laos

    Illicit North Korean IT workers send the money they made from abroad to fund Kim’s regime, US Treasury Department said

Why not watch?

  1. Enhancing Software Supply Chain Management: A DORA-Focused Approach

  2. Dispelling the Myths of Defense-Grade Cybersecurity

  3. Auditing AI Risk: Essential Strategies for IT & Compliance Leaders

  4. Alert Fatigue: What Are You and Your Security Teams Missing?

What’s hot on Infosecurity Magazine?