Infosecurity News

  1. Apple Fixes Actively Exploited iOS and iPadOS Zero-Day Vulnerability

    The out-of-bounds write issue in the kernel could be exploited to execute arbitrary code

  2. POS Malware Used to Steal Details of Over 167,000 Credit Cards

    The operators could make over $3m if they decide to sell the card dumps on underground forums

  3. Ukraine Warns of Cuba Ransomware Campaign

    Financially motivated affiliate appears to be to blame

  4. Iranian Atomic Energy Agency Admits Email Hack

    Suspected hacktivists inside country share sensitive info

  5. US Charges Two Chinese Agents in Huawei Obstruction Case

    Indictments form one of three cases involving Chinese spies

  6. CISA Warns Against Ransomware Group Daixin Team Targeting Health Organizations

    Daixin Team is actively targeting US businesses, mainly in the healthcare sector

  7. Multiple RCE Vulnerabilities Discovered in Veeam Backup & Replication App

    The Veeamp malware was used by the Monti and Yanluowang ransomware groups in these attacks

  8. DHL Replaces LinkedIn As Most Imitated Brand in Phishing Attempts

    It is due partly to a major phishing attack DHL warned about before the quarter started

  9. UK Cyber Security Council Creates Chartered Qualification for Industry Pros

    The UK Cyber Security Council has announced a pilot program designed to create the country’s first chartered cyber professionals

  10. Clicker Malware Garners Estimated 20 Million Downloads

    Google forced to remove over a dozen malicious apps

  11. UK Construction Company Fined £4.4m for Serious Security Failings

    Interserve slammed by regulator after employee data breach

  12. European Police Warn of Metaverse Cyber-Threats

    Cops also identify opportunities to enhance law enforcement

  13. New Phishing Campaign Targets Saudi Government Service Portal

    The campaigns are set up to provide fake services to the citizens and steal their credentials

  14. Google Unveils Open Source Project to Improve Software Supply Chain Security

    GUAC aims to bring together many different sources of software security metadata

  15. Thousands of Publicly Exposed API Tokens Could Threaten Software Integrity

    JFrog scanned over eight million artifacts in the most common open-source software registries

  16. NCSC CEO Calls for International Standards on IoT Security

    Lindy Cameron argues that smart cities are becoming an attractive target for threat actors, including nation states

  17. Lesson Learned: How SolarWinds Strengthened its Security Post-Incident

    Tim Brown, CISO and VP of security at SolarWinds shared his experiences remediating a major cyber-attack during Mandiant’s mWISE event on October 18, 2022

  18. Cyber-Enabled Crimes Are Biggest Police Concerns

    Interpol study warns that many threats are expected to increase

  19. OldGremlin Ransomware Ups Ante Against Russian Targets

    Ransom demands soar to $17m, according to new report

  20. Cops Arrest Suspected Multimillion-Dollar Fraud Mastermind

    Spanish police apprehend suspect in Tenerife

Why not watch?

  1. Auditing AI Risk: Essential Strategies for IT & Compliance Leaders

  2. Mastering Australian Privacy Act and Essential Eight While Improving Cybersecurity Posture

  3. Alert Fatigue: What Are You and Your Security Teams Missing?

  4. Dispelling the Myths of Defense-Grade Cybersecurity

What’s hot on Infosecurity Magazine?