Infosecurity News

  1. African Police Bust $800K Fraud Schemes

    International operation lasted four months

  2. ConnectWise Fixes XSS Vulnerability that Could Lead to Remote Code Execution

    Threat actors could exploit the flaw to take complete control of the ConnectWise platform

  3. Google Releases Chrome Patch to Fix New Zero-Day Vulnerability

    The high-severity vulnerability refers to a heap buffer overflow in the GPU component

  4. Remote Code Execution Vulnerability Found in Windows Internet Key Exchange

    The discovered vulnerabilities could have been exploited to target almost 1000 systems

  5. Experts Warn Remote Workers of Black Friday Security Threats

    Shared devices can present corporate security risk

  6. Experts Find 1600+ Malicious Docker Hub Images

    Shared repository is also a hidden source of malware

  7. Global Police Celebrate $130m Cyber Busts

    Almost 1000 arrested in Haechi III operation

  8. Bahamut Spyware Group Compromises Android Devices Via Fake VPN Apps

    The app used as part of the campaign was a trojanized version of SoftVPN or OpenVPN

  9. SharkBot Malware Found in Android File Manager Apps With Thousands of Downloads

    The apps are no longer available on the Play Store, but can be found in third-party stores

  10. Sonder confirms data breach, documents and other PII potentially compromised

    The company reportedly learned of unauthorized access to one of its systems on November 14

  11. Cyber Essentials Scheme Set for April 2023 Update

    UK best practice security framework to offer new guidance

  12. UK Cops Lead Action Against Fraud Site that Made £100m+

    Over 100 admins and users of iSpoof site arrested

  13. Russian DDoS Briefly Downs European Parliament Site

    Parliament had declared Russia a state-sponsor of terrorism

  14. Panaseer Launches Guidance on Security Controls Ahead of EU's New Legislation

    The cybersecurity monitoring firm offers 18 recommendations on security controls to help organizations anticipate tougher cybersecurity regulations

  15. CISA Updates Guidelines to Increase Resilience of Infrastructure Planning

    They expand the framework's scope by adding new resources and tools to support SLTT partners

  16. Meta Removes Pro-US Accounts in Middle East and Central Asia

    The operation relied on many internet services, including Telegram, Twitter, YouTube and others

  17. Qakbot Infections Linked to Black Basta Ransomware Campaign

    Threat actors obtained admin access in two hours and then deployed ransomware in under 12 hours

  18. Yanluowang Ransomware's Russian Links Laid Bare

    Another dump of chat records provides insight into threat group

  19. UK Privacy Tsar Defends Controversial Enforcement Strategy

    Information commissioner wants to avoid "money-go-round" of government fines

  20. Dozens of Russian Groups Steal 50 Million User Passwords

    Info-stealing malware infected nearly one million devices in 2022

Why not watch?

  1. Dispelling the Myths of Defense-Grade Cybersecurity

  2. How to Manage Your Risks and Protect Your Financial Data

  3. Navigating Exposures in Energy ICS Environments

  4. Auditing AI Risk: Essential Strategies for IT & Compliance Leaders

What’s hot on Infosecurity Magazine?