Infosecurity News

  1. Ducktail Hacker Group Evolves, Targets Facebook Business Accounts

    Activity observed since early September featured new avenues to spear-phish targets

  2. US Takes Down Domains Used in 'Pig Butchering' Cryptocurrency Scheme

    The US Attorney's Office for the Eastern District of Virginia made the announcement on Monday

  3. Firms Spend $1197 Per Employee Yearly to Address Cyber-Attacks

    The data excludes compliance fines, ransomware costs and losses from non-operational processes

  4. Estonian Duo Arrested for Masterminding $575m Ponzi Scheme

    US authorities unseal 18-count indictment

  5. Experts Warn Threat Actors May Abuse Red Team Tool Nighthawk

    C2 framework could be the next Cobalt Strike, says Proofpoint

  6. Credential Stuffers Steal $300K from DraftKings Customers

    Complaints about poor customer service flood Twitter

  7. Google Wins Legal Battle Against Glupteba Botnet

    The tech giant said the court's ruling against the botnet operators set a crucial legal precedent

  8. Thousands of Algolia API Keys Could Expose Users' Data

    The majority were from shopping, education, lifestyle, business and medical firms

  9. Luna Moth Phishing Extortion Campaign Targets Businesses in Multiple Sectors

    It leverages extortion without encryption and has cost victims hundreds of thousands of dollars

  10. Private Equity Exposed by Cyber-Hygiene Shortcomings

    Fifth of portfolio companies feature "zero tolerance findings"

  11. New AXLocker Ransomware Steals Victims' Discord Tokens

    Researchers also discover two additional new variants

  12. Ten Charged in $11m Healthcare BEC Plots

    Several of the men diverted funds intended for hospitals

  13. CISA, NSA, ODNI Publish Software Supply Chain Guidelines For Customers

    The come after the August release of guidance for developers and the October one for suppliers

  14. Shoppers Warned Stay Alert this Black Friday as Hackers Renew Efforts

    Cyber-criminals are exploiting the busy period during both purchase and delivery stages

  15. Instagram Credential Phishing Attacks Bypass Microsoft Email Security

    The attack bypassed both SPF and DMARC email authentication checks

  16. Emerging Threat Actor DEV-0569 Expands Its Toolkit to Deliver Royal Ransomware

    As well as malvertising and phishing links, the new threat actor is now also using contact forms to deliver its payloads, found Microsoft

  17. Netflix Phishing Emails Surge 78%

    Social engineers are using Unicode techniques to bypass filters

  18. Russian Duo Indicted Over E-Book Piracy

    St Petersburg couple were arrested in Argentina

  19. Hive Ransomware Has Made $100m to Date

    CISA notice warns of 1300 victims and counting

  20. Zeus Botnet Suspected Leader Arrested in Geneva

    Vyacheslav Igorevich Penchukov was arrested in Geneva on October 23, 2022, and is now pending extradition to the US

Why not watch?

  1. Auditing AI Risk: Essential Strategies for IT & Compliance Leaders

  2. Navigating Exposures in Energy ICS Environments

  3. How to Manage Your Risks and Protect Your Financial Data

  4. Identifying Concentration Risk and Securing the Supply Chain

What’s hot on Infosecurity Magazine?