Infosecurity News

  1. Senate Approves Bill Banning TikTok From US Government Devices

    The bill still needs to receive approval from the US House of Representatives

  2. NSA, CISA Warn Against Threats to 5G Network Slicing

    Improper network slice management may enable attackers to access data from different network slices

  3. Loan Scam Campaign 'MoneyMonger' Exploits Flutter to Hide Malware

    Zimperium said the code was part of an existing campaign previously discovered by K7 Security Labs

  4. Feds Hit DDoS-for-Hire Services with 48 Domain Seizures

    Six also charged in connection with booter services

  5. Over 85% of Attacks Hide in Encrypted Channels

    Zscaler reveals 20% increase in malicious use of encryption

  6. Platforms Flooded with 144,000 Phishing Packages

    NuGet, PyPi and npm inundated with malicious packages

  7. Signed Microsoft Drivers Used in Attacks Against Businesses

    In some cases, the threat actor's intent was to ultimately provide SIM-swapping services

  8. AgentTesla Remains Most Prolific Malware in November, Emotet and Qbot Grow

    These are some of the key findings from the latest Check Point Research Most Wanted report

  9. Apple Fixes Actively Exploited iPhone Zero-Day Vulnerability

    The vulnerability could allow remote code execution (RCE) on a victim's device

  10. New Google Tool Helps Devs Root Out Open Source Bugs

    Free OSV-Scanner searches transitive dependencies

  11. Loan Fee Fraud Surges by a Fifth as Christmas Approaches

    FCA warns of pressure tactics as cost of living bites

  12. Two Zero-Days Fixed in December Patch Tuesday

    Close to 50 CVEs addressed this month

  13. Twitter Addresses November Data Leak Claims

    No passwords were reportedly exposed, but Twitter prompted users to enable 2FA to protect accounts

  14. California Hit By Cyber-Attack, LockBit Claims Responsibility

    At the time of writing, the California Budget website remains offline

  15. Uber Hit By New Data Breach After Attack on Third-Party Vendor

    Company information was stolen from third-party vendor Teqtivity and posted on a dark web forum

  16. Experts Warn ChatGPT Could Democratize Cybercrime

    Researchers claim AI bot can write malware and craft phishing emails

  17. Aussie Data Breaches Surge 489% in Q4 2022

    Country bucks the global trend thanks to high-profile incidents

  18. Security Overlooked in Rush to Hybrid Working

    Apogee study finds just 14% consider it a priority

  19. HSE Cyber-Attack Costs Ireland $83m So Far

    A total of roughly 100,000 people had their personal data stolen during the cyber-attack

  20. Chaos RAT Used to Enhance Linux Cryptomining Attacks

    The main downloader script and further payloads were hosted in different locations

Why not watch?

  1. Alert Fatigue: What Are You and Your Security Teams Missing?

  2. Enhancing Software Supply Chain Management: A DORA-Focused Approach

  3. Identifying Concentration Risk and Securing the Supply Chain

  4. Auditing AI Risk: Essential Strategies for IT & Compliance Leaders

What’s hot on Infosecurity Magazine?