Infosecurity News

  1. ChatGPT-Related Malicious URLs on the Rise

    Newly registered and squatting domains related to ChatGPT grew by 910% between November and April

  2. #CYBERUK23: UK Strengthens Cybersecurity Audits for Government Agencies

    GovAssure will mandate all UK government departments to go through annual independent, more robust security audits

  3. Recycled Network Devices Exposing Corporate Secrets

    ESET warns of breach risk from kit that is not properly decommissioned

  4. #CYBERUK23: Russian Cyber Offensive Exhibits ‘Unprecedented’ Speed and Agility

    Russia’s cyber operations since the invasion of Ukraine have been deployed with remarkable speed and flexibility, a new NCSC report shows

  5. Critical Infrastructure Firms Concerned Over Insider Threat

    Financial services sector is particularly badly impacted

  6. Small Business Interest in Cyber-Hygiene is Waning

    UK government survey finds they are prioritizing other things

  7. Iranian Nation-State Actor "Mint Sandstorm" Weaponizes N-day Flaws

    Since 2023, Microsoft observed a decrease in the time required for the group to adopt public POCs

  8. #CYBERUK23: Threat Posed by 'Irresponsible' Use of Commercial Hacking Tools Increasing, NCSC Warns

    Spyware and hackers-for-hire will almost certainly expand in the next five years, warned the British cybersecurity agency

  9. Raspberry Robin Adopts Unique Evasion Techniques

    Security researchers at Check Point published a new advisory on Tuesday describing the new malware

  10. Nurse Call Systems, Infusion Pumps Riskiest Connected Medical Devices

    The findings come from a new report by asset visibility and security company Armis

  11. #CYBERUK23: NCSC Urges International Collaboration to Build Cyber Resilience

    The NCSC’s CEO, Lindy Cameron, urges the UK to cooperate more with its allies in combating cyber threats

  12. Police Escape $1.2m Fine For Secretly Recording Phone Calls

    Surrey and Sussex police forces reprimanded after recording 200,000 calls

  13. Triple-digit Increase in API and App Attacks on Tech and Retail

    Web attacks also surge in financial services, although not in UK

  14. NCSC Warns of Destructive Russian Attacks on Critical Infrastructure

    Alert follows advisory about Kremlin hackers targeting Cisco routers

  15. Goldoson Malware Found in Dozens of Google Play Store Apps

    The malicious software library can collect installed app lists, Wi-Fi and Bluetooth data, and more

  16. MuddyWater Uses SimpleHelp to Target Critical Infrastructure Firms

    A new advisory by Group-IB suggests the software used as part of these attacks is not compromised

  17. NSO Group's Pegasus Spyware Found on High-Risk iPhones

    The findings by Jamf suggest the observed attacks are highly targeted

  18. Cyber Intrusion Detection Time at an All-Time Low

    Mandiant’s latest M-Trends report shows that organizations only needed a median time of 16 days to detect an intrusion in 2022 – the lowest dwell time ever recorded by the firm

  19. WhatsApp, Signal Claim Online Safety Bill Threatens User Privacy and Safety

    The UK Government OSB undermines end-to-end encrypted communications and must be reconsidered according to an open letter signed by Signal and WhatsApp

  20. Cloud Security Alerts Take Six Days to Resolve

    Palo Alto report warns of an expanding cloud attack surface

Why not watch?

  1. Identifying Concentration Risk and Securing the Supply Chain

  2. Auditing AI Risk: Essential Strategies for IT & Compliance Leaders

  3. Navigating Exposures in Energy ICS Environments

  4. Enhancing Software Supply Chain Management: A DORA-Focused Approach

What’s hot on Infosecurity Magazine?