Infosecurity News

  1. UK Government Weighs Review of Computer Misuse Act to Combat Cybercrime

    The British Minister for Security Dan Jarvis said at Recorded Future’s Predict 2024 that the new government was considering reforming the 1990 legislation

  2. US Energy Sector Vulnerable to Supply Chain Attacks

    45% of security breaches in the energy sector in the past year were third-party related, according to a report by Security Scorecard and KPMG

  3. LLMjacking and Open-Source Tool Abuse Surge in 2024 Cloud Attacks

    Cloud attacks surged in 2024 as attackers exploited cloud resources at unprecedented levels

  4. SEC Charges Tech Firms Over Misleading SolarWinds Hack Disclosures

    Four current and former publicly trading tech companies have agreed to pay civil penalties in relation to the SEC charges

  5. 75% of US Senate Campaign Websites Fail to Implement DMARC

    75% of US Senate campaign sites lack DMARC, risking cybersecurity and email safety

  6. Phishing Attack Impacts Over 92,000 Transak Users

    A phishing attack targeting Transak employees led to a data breach, compromising the information of 92,554 users

  7. Meta to Fight Celeb-Bait Scams with Facial Recognition

    Meta is testing facial recognition technology to tackle celeb-bait ad scams and enable the recovery of compromised accounts

  8. Think Tanks Urge Action to Curb Misuse of Spyware and Hack-for-Hire

    RUSI and Chatham House recommended global standards to combat commercial cyber tool abuse

  9. AI-Powered Attacks Flood Retail Websites

    AI tools are being used to launch over half a million cyber-attacks daily on retailers, according to a new report

  10. Severe Flaws Discovered in Major E2EE Cloud Storage Services

    The cryptographic vulnerabilities were found in Sync, pCloud, Icedrive and Seafile by ETH Zurich

  11. Stolen Access Tokens Lead to New Internet Archive Breach

    A threat actor claimed to get hold of an exposed GitLab configuration file containing Zendesk API access tokens

  12. 50,000 Files Exposed in Nidec Ransomware Attack

    The August ransomware attack stole 50,000+ documents from Nidec, leaked after ransom refusal

  13. Netskope Reports Possible Bumblebee Loader Resurgence

    The malware loader taken down by Europol in May 2024 could be back with a vengeance

  14. Australia's Privacy Watchdog Publishes Guidance on Commercial AI Products

    Businesses in Australia must update their privacy policies with clear and transparent information about their use of AI, said the regulator

  15. Half of Organizations Have Unmanaged Long-Lived Cloud Credentials

    Long-lived credentials in the cloud put organizations at high risk of breaches, a report from Datadog has found

  16. Internet Archive and Wayback Machine Resurrect After DDoS Wave

    Internet Archive founder confirmed the allegedly exposed data was “safe”

  17. macOS Vulnerability Could Expose User Data, Microsoft Warns

    Microsoft urges macOS users to apply a fix for the vulnerability, which it believes may be under active exploitation by the Adload malware family

  18. Instagram Rolls Out New Sextortion Protection Measures

    Instagram has announced new security features to protect users from sextortion scams, including hiding follower lists, preventing screenshots, and launching an awareness campaign

  19. Microsoft Named Most Imitated Brand in Phishing Attacks

    The Redmond-based firm was the most impersonated brand in the third quarter of 2024, while Alibaba entered the Top 10 for the first time

  20. US Arrest Man for SEC X Account Hack

    US authorities have charged a man for involvement in the SEC X account hack in January 2024, which falsely announced the approval of Bitcoin Exchange Traded Funds

Why not watch?

  1. How to Manage Your Risks and Protect Your Financial Data

  2. Navigating Exposures in Energy ICS Environments

  3. Identifying Concentration Risk and Securing the Supply Chain

  4. New Cyber Regulations: What it Means for UK and EU Businesses

What’s hot on Infosecurity Magazine?