Infosecurity News

  1. Malicious PyPI Packages Use Compiled Python Code to Bypass Detection

    According to ReversingLabs this could be the first supply chain attack capitalizing on PYC files

  2. Insurers Predict $33bn Bill for Catastrophic "Cyber Event"

    One-in-200 year event could stem from cloud, data breach or ransomware

  3. Chinese Phishing Gang "PostalFurious" Expands Campaign

    Latest victims of smishing attacks are UAE residents

  4. Kaspersky Says it is Being Targeted By Zero-Click Exploits

    Possible US campaign began in 2019

  5. Horabot Campaign Targets Spanish-Speaking Users in the Americas

    Cisco Talos said the threat actor behind the campaign is believed to be located in Brazil

  6. Void Rabisu's RomCom Backdoor Reveals Shifting Threat Actor Goals

    Trend Micro said the motives of Void Rabisu seem to have changed since at least October 2022

  7. Potential Backdoor in Gigabyte PCs Exposes Supply Chain Risks

    Eclypsium is working closely with Gigabyte to rectify insecure implementation of its app center

  8. HMRC in New Tax Credits Scam Warning

    Claimants bombarded by phishing emails, phone calls and texts

  9. Amazon to Pay $31m After FTC's Security and Privacy Allegations

    Regulator's proposed order to cover civil penalty and consumer refunds

  10. Zyxel Customers Urged to Patch Exploited Bug

    Vulnerability being "widely exploited" in Mirai-based botnet attacks

  11. New "Migraine" Flaw Enables Attackers to Bypass MacOS Security

    Discovered by Microsoft and dubbed "Migraine," the flaw was disclosed to Apple and patched

  12. SpinOk Trojan Compromises 421 Million Android Devices

    The Doctor Web team unveiled information about the malware in an advisory published on Monday

  13. IDSA: Only 49% of Firms Invest in Identity Protection Before Incidents

    Just 29% take action after having already experienced a security incident

  14. Danni Brooke to Spotlight the Role of Women in Cyber at Infosecurity Europe 2023

    Danni Brooke, former Met police officer and star of Channel 4’s Hunted, has been confirmed as the keynote speaker at this year’s Women in Cybersecurity event

  15. Pentagon Cyber Policy Cites Learnings from Ukraine War

    New 2023 strategy document sent to Congress

  16. WordPress Rushes Out Jetpack Patch to Millions

    Bug could allow malicious actors to manipulate files

  17. Dark Pink APT Group Expands Tooling and Targets

    Group-IB spots five new victims

  18. Nigerian Cybercrime Ring's Phishing Tactics Exposed

    The criminal enterprise resulted in losses of up to $1m

  19. Human Error Fuels Industrial APT Attacks, Kaspersky Reports

    OT network admins grant access to employees or contractors without sufficient security measures

  20. DogeRAT Malware Impersonates BFSI, Entertainment, E-commerce Apps

    Discovered by CloudSEK, the malicious campaign relies on open source Android malware

Why not watch?

  1. Cybersecurity Employment: Making Sense of Conflicting Messaging

  2. Reimagining the SOC: From Reactive to Resilient

  3. How to Tackle Rising Cloud Identity Attacks

  4. Safeguarding Critical Supply Chain Data Through Effective Risk Assessment

What’s hot on Infosecurity Magazine?