Infosecurity News

  1. Millions of Insurance Customers Compromised Via Supplier

    Aflac and Zurich reveal major breaches this week

  2. The Guardian Confirms UK Staff Data Was Accessed in Ransomware Attack

    The updates come from The Guardian's CEO Anna Bateson and its editor-in-chief Katharine Viner

  3. Telegram Bot Abuse For Phishing Increased By 800% in 2022

    The growth is associated with using HTML attachments as a delivery method in credential phishing

  4. Cyber-Threat Actors Tailoring Attacks to Key Sectors

    Darktrace’s latest report analyses findings from the energy, retail and healthcare sectors

  5. Google Chrome 'SymStealer' Vulnerability Could Affect 2.5 Billion Users

    The warning comes from Imperva's security researcher Ron Masas

  6. Quarter of UK SMBs Hit by Ransomware in 2022

    War in Ukraine is making firms more anxious

  7. Twitter: Leak of 200 Million Accounts Not Due to Historic Bug

    Social media firm claims its systems were not compromised

  8. Royal Mail Halts International Deliveries After Cyber-Incident

    It's still unclear whether customer data has been compromised

  9. New APT Dark Pink Hits Asia-Pacific, Europe With Spear Phishing Tactics

    The group began operations as early as mid-2021, but its activity increased in mid-to-late 2022

  10. Multiple Danish Banks Disrupted By DDoS Cyber-Attack

    The attack also affected IT financial industry solutions developer Bankdata

  11. Sensitive Files From San Francisco Transit Police Allegedly Leaked

    The leaked files include some 120,000 files, with specific allegations of child abuse

  12. Customer and Employee Data the Top Prize for Hackers – Imperva

    Customer and employee data accounts for almost half all stolen data while credit cards and password see a decline

  13. Applications Five Years or Older Likely to have Security Flaws

    Veracode’s 2023 State of Software Security Report is focused on flaw introduction

  14. Over 100 CVEs Addressed in First Patch Tuesday of 2023

    Microsoft's January Patch Tuesday resolved over 100 CVEs, including an actively exploited zero day

  15. US Supreme Court Allows WhatsApp to Sue NSO Group

    WhatsApp can now sue for damages ensued by the installation of the Pegasus spyware

  16. Researchers Find Security Flaw in JsonWebToken Library Used By 20,000+ Projects

    An attacker could perform RCE on a server verifying a maliciously crafted JWT request

  17. GitHub Adds Features to Automate Vulnerability Code Scanning

    Called “default setup,” the novel capability simplifies starting code scanning on repositories

  18. UK Charities Offered Free Cyber Essentials Support

    The NCSC’s new Funded Cyber Essentials Programme will support SMEs as well as charities

  19. Ukraine: Russian Cyber-Attacks Should Be Considered War Crimes

    A Ukrainian official revealed that evidence of Russian cyber-attacks are being gathered to support potential war crime prosecutions

  20. Freejacking Campaign By PurpleUrchin Bypasses Captchas

    The threat actors also deployed more aggressive techniques for mining CPU resources

Why not watch?

  1. Navigating Exposures in Energy ICS Environments

  2. Alert Fatigue: What Are You and Your Security Teams Missing?

  3. Mastering Australian Privacy Act and Essential Eight While Improving Cybersecurity Posture

  4. How to Manage Your Risks and Protect Your Financial Data

What’s hot on Infosecurity Magazine?