Infosecurity News

  1. GitHub Updates Security Protocol For Operations Over SSH

    The move reportedly did not stem from a compromise of GitHub systems or customer information

  2. IRS Phishing Emails Used to Distribute Emotet

    Monster 500MB attachment hides a nasty surprise

  3. UK Parliament Bans TikTok from its Network and Devices

    Further blow for Chinese social media app

  4. Security Flaws Cost Fifth of Execs Business

    Business leaders still underestimate importance of security to growth

  5. China-Aligned "Operation Tainted Love" Targets Middle East Telecom Providers

    The deployment of custom credential theft malware is the main novelty of the new campaign

  6. SharePoint Phishing Scam Targets 1600 Across US, Europe

    Cyber-criminals used the scam to steal the credentials for various email accounts

  7. New Post-Exploitation Attack Method Found Affecting Okta Passwords

    The flaw derives from the way the Okta system records failed login attempts to instances

  8. UK Government Sets Out Vision for NHS Cybersecurity

    Plans to boost cyber-resilience in the health service by 2030

  9. Malicious ChatGPT Chrome Extension Hijacks Facebook Accounts

    Software was unwittingly downloaded thousands of times

  10. Irish Food Giant Dole Admits Employee Data Breach

    Incident was linked to previously disclosed ransomware attack

  11. BreachForums Shuts Down After Admin's Arrest

    The forum's admin said the move might be temporary and that they will set up a new Telegram group

  12. New Android Banking Trojan 'Nexus' Promoted As MaaS

    Nexus offers overlay attacks and keylogging activities designed to steal victims' credentials

  13. CISA and NSA Enhance Security Framework With New IAM Guide

    Guidance includes best practices for identity governance, environmental hardening, SSO, MFA and IAM auditing

  14. Security Researchers Spot $36m BEC Attack

    Threat actors impersonated target company's vendor

  15. Just 1% of Dot-Org Domains Are Fully DMARC Protected

    Organizations are failing with their anti-phishing measures

  16. Ransomware Attacks Double in Europe's Transport Sector

    ENISA claims most threats are opportunistic

  17. Over 2400 Fake Pages Found Targeting Job Seekers in Middle East, Africa

    The scam targeted more than 40 well-known brands from 13 countries in the MEA region

  18. CommonMagic Targets Entities in Russo-Ukrainian Conflict Zone

    Administrative, agriculture and transportation firms targeted in Donetsk, Luhansk and Crimea

  19. Hackers Use NuGet Packages to Target .NET Developers

    JFrog said this is the first instance of packages with malicious code in NuGet

  20. NCSC Launches Two New Tools for Small Businesses

    Offerings are designed to improve security for millions of firms

Why not watch?

  1. Closing the Browser Security Gap: Defending Against Modern Web-Based Threats

  2. How to Tackle Rising Cloud Identity Attacks

  3. Mastering Emerging Regulations: DORA, NIS2 and AI Act Compliance

  4. From Code to Chaos: How AI Is Weaponizing the Cyber Battlefield

What’s hot on Infosecurity Magazine?