Infosecurity News
Over 240 Million US Breach Victims Recorded in Q3
Supply chain victim numbers surge as more than 240 million US residents are impacted by data breaches in Q3 2024
Apple’s iPhone Mirroring Flaw Exposes Employee Privacy Risks
The privacy flaw in Apple’s iPhone mirroring feature enables personal apps on an iPhone to be listed in a company’s software inventory when the feature is used on work computers
New BeaverTail Malware Targets Job Seekers via Fake Recruiters
New BeaverTail malware targets tech job seekers via fake recruiters on LinkedIn and X
New Generation of Malicious QR Codes Uncovered by Researchers
Barracuda researchers have identified a new wave of QR code phishing attacks that evade traditional security measures and pose a significant threat to email security
UK Launches New Competition to Spur Cybersecurity Careers
The UK government’s Cyber Team Competition offer applicants the chance to receive advanced training, mentorship and networking opportunities
Australia Introduces First Standalone Cybersecurity Law
The Australian government’s Cyber Security Bill 2024 will mandate cybersecurity standards for smart devices and introduce ransomware reporting requirements
New EU Body to Centralize Complaints Against Facebook, TikTok, YouTube
The Appeals Centre Europe is supported by Meta’s Oversight Board Trust and certified by Ireland's media regulator
Ivanti: Three CSA Zero-Days Are Being Exploited in Attacks
Ivanti’s Cloud Services Appliance is being targeted by threat actors exploiting three zero-day bugs
Microsoft Fixes Five Zero-Days in October Patch Tuesday
October’s Patch Tuesday saw Microsoft patch over 100 CVEs including five zero-day vulnerabilities
American Water Hit by Cyber-Attack, Billing Systems Disrupted
American Water, the largest water utility in the US, discovered a cyber-attack impacting internal systems on October 3
Cloud Security Risks Surge as 38% of Firms Face Exposures
Tenable’s latest report reveals 38% of organizations face risks from a “toxic cloud triad” of security gaps
31 New Ransomware Groups Join the Ecosystem in 12 Months
Secureworks reports a 30% increase in active ransomware groups despite law enforcement efforts, with 31 new groups emerging in the past year
US Warns of Foreign Interference in Congressional Races Ahead of Election
Iran is targeting the US presidential race, China the congressional races, and Russia both
Cyber Fraud Cost up to $37bn in Southeast Asia Last Year
A UN report found that organized crime groups in the region have rapidly integrated malware, generative AI and deepfakes to enhance their fraud activities
Global Police Track Human Traffickers in Online Crackdown
Europol claims its EMPACT operation has revealed dozens of human trafficking victims and suspects
MoneyGram Reveals Data Breach After Incident Downed Services
MoneyGram has issued a data breach notification to customers following a security incident
Universal Music Group Admits Data Breach
UMG, a major music corporation, reported a July 2024 data breach affecting 680 US residents
Advanced Threat Group GoldenJackal Exploits Air-Gapped Systems
GoldenJackal targeted air-gapped government systems from May 2022 to March 2024, ESET found
Board-CISO Mismatch on Cyber Responsibility, NCSC Research Finds
The UK NCSC found that there is a lot of confusion between board members and security leaders of who is responsible for cybersecurity within their organizations
ICO Releases New Data Protection Audit Framework
The UK’s ICO said the framework is designed to help businesses build trust and encourage a positive data protection culture