Infosecurity News

  1. QNAP: Patch Critical Remote Code Injection Bug

    Vulnerability affects QTS and QuTS Hero firmware

  2. JD Sports Confirms Breach Affected 10 Million Customers

    The cyber-attack hit the company between November 2018 and October 2020

  3. Hackers Use TrickGate Software to Deploy Emotet, REvil, Other Malware

    Threat actors used TrickGate to conduct between 40 and 650 attacks per week in the last two years

  4. Devs on Dark Web Forums Paid Up to $20,000 For Illicit Activities

    The data comes from 155 dark web forums analyzed between January 2020 and June 2022

  5. Fake Money Apps Garner Millions of Android Downloads

    Over 20 million users install apps from Google Play

  6. New Yorker Gets Four Years for $9m COVID Fraud Scheme

    Woman recruited multiple co-conspirators to help her

  7. Five Data Wipers Attack Ukrainian News Agency

    Russia's Sandworm group suspected of destructive attack

  8. Multiple Vulnerabilities Found In Healthcare Software OpenEMR

    Two of these vulnerabilities combined could lead to unauthenticated remote code execution

  9. Black Basta Deploys PlugX Malware in USB Devices With New Technique

    The variant is “wormable” and can infect USB devices to hide itself from the Windows OS

  10. New 'Pig Butchering' Scam in West Africa Impersonates US Financial Advisors

    DomainTools said most of these attacks exploited professional network services such as LinkedIn

  11. Security is Key to Business Transformation, Say IT Chiefs

    Two-fifths see it as a critical innovation driver

  12. Global Action "Dismantles" Hive Ransomware Group

    FBI distributes hundreds of decryption keys to victims

  13. Microsoft: Update On-Premises Exchange Server Now

    Attacks are not going away, tech giant warns

  14. Iranian Group Cobalt Sapling Targets Saudi Arabia With New Persona

    The findings come from cybersecurity experts at Secureworks' Counter Threat Unit

  15. Zacks Investment Research Confirms Breach Affecting 820,000 Customers

    The firm believes the unauthorized access occurred between November 2021 and August 2022

  16. CISA Warns Against Malicious Use of Legitimate RMM Software

    The document mentions an October 2022 cyber campaign involving the malicious use of RMM solutions

  17. NCSC: Iranian and Russian Groups Targeting Government, Activists and Journalists With Spearphishing

    The NCSC advisory details tactics used by Russia-based threat actor SEABORGIUM and Iran-based group TA453

  18. Dark Web Posts Advertising Counterfeit Cash Surge 90%

    Physical currency remains a big draw for cyber-criminals

  19. Near-Record Year for US Data Breaches in 2022

    Breach notices are increasingly opaque, warns non-profit

  20. Lloyds Bank Warns of 80% Surge in Advance Fee Scams

    Fake ads for loans, jobs and properties are on the rise

Why not watch?

  1. Auditing AI Risk: Essential Strategies for IT & Compliance Leaders

  2. How to Manage Your Risks and Protect Your Financial Data

  3. Mastering Australian Privacy Act and Essential Eight While Improving Cybersecurity Posture

  4. Enhancing Software Supply Chain Management: A DORA-Focused Approach

What’s hot on Infosecurity Magazine?