Infosecurity News

  1. Persistent Espionage Campaign Targets APAC Governments

    Kaspersky said the campaign exploiting USB drives first came to light in early 2023

  2. Fake Browser Updates Used in Malware Distribution

    Proofpoint have identified at least four distinct threat clusters

  3. Rising AI-Fueled Phishing Drives Demand for Password Alternatives

    FIDO Alliance’s third Online Authentication Barometer showed that AI-powered phishing is slowly prompting users to switch passwords for multi-factor authentication methods

  4. Cisco Warns of Critical Vulnerability in IOS XE Software

    The tech giant has issued guidance to mitigate exploitation of the flaw, which has the highest severity rating

  5. A Third of Organizations Not Ready to Comply with NIS2

    A new survey found that three-quarters of organizations in the UK are yet to address the five key requirements for compliance

  6. Ransomware Targets Unpatched WS_FTP Servers

    The threat actors attempted to escalate privileges using the open-source GodPotato tool

  7. Growing Concern Over Role of Hacktivism in Israel-Hamas Conflict

    Hacktivists claim DDoS attacks against Israeli websites as cybersecurity experts urge caution in believing these cyber-criminals’ claims

  8. Signal Disputes Alleged Zero-Day Flaw

    Reports emerged over the weekend regarding a zero-day exploit in the messaging app

  9. Healthcare Sector Warned About New Ransomware Group NoEscape

    The US government highlighted the operations of the NoEscape group, which is believed to be a rebrand of Russian threat actor Avaddon

  10. New RomCom Backdoor Targets Female Political Leaders

    A new version of the RomCom backdoor was used to lure attendees of the June 2023 Women Political Leaders Summit

  11. UK Regulator Fines Equifax £11m for 2017 Data Breach

    The UK FCA held Equifax Ltd responsible for failing to protect UK consumer data held by its US-based parent company

  12. New Phishing Campaign Uses LinkedIn Smart Links in Blanket Attack

    Email security provider Cofense has unveiled a large-scale phishing campaign leveraging LinkedIn Smart Links

  13. CISOs Receive Smaller Raises and Bonuses in 2023

    Most CISOs are considering a job change in the next 12 months

  14. Vulnerability Exposed in WordPress Plugin User Submitted Posts

    With over 20,000 active installations, the plugin is used for user-generated content submissions

  15. California Enacts “Delete Act” For Data Privacy

    Governor Newsom signed the first US bill requiring data brokers to delete personal data upon request

  16. Chinese APT ToddyCat Targets Asian Telecoms, Governments

    A cyber espionage campaign tied to the Chinese group ToddyCat is targeting high-profile organizations in Kazakhstan, Uzbekistan, Pakistan, and Vietnam

  17. Half of Small Businesses Hit by Cyber-Attack Over the Past Year

    A new survey from accounting software provider Sage showed that most SMEs have developed a cybersecurity posture but struggle to keep up with the threats

  18. European Police Hackathon Hunts Down Traffickers

    Many recruit victims on social media, says Europol

  19. Fifth of UK Cybersecurity Pros Work Excessive Hours

    Workload is biggest concern for industry professionals

  20. US Smashes Annual Data Breach Record With Three Months Left

    Volume of data compromises already exceeds previous high by 14%

Why Not Watch?

  1. Mastering AI Security With ISACA’s New AAISM Certification

  2. Modernizing GRC: From Checkbox to Strategic Advantage

  3. Audit & Compliance in the Era of AI and Emerging Technology

  4. Securing M365 Data and Identity Systems Against Modern Adversaries

What’s Hot on Infosecurity Magazine?