Infosecurity News
Dark Web Mentions of Malicious AI Tools Spike 200%
Kela researchers detect a 200%+ increase in dark web chatter about malicious AI tools
IngressNightmare: Four Critical Bugs Found in 40% of Cloud Systems
Wiz Security finds four critical RCE vulnerabilities in the Ingress NGINX Controller for Kubernetes
VanHelsingRaaS Expands Rapidly in Cybercrime Market
VanHelsingRaaS, a new ransomware-as-a-service program, infected three victims within two weeks of release, demanding ransoms of $500,000
Ukraine Railway Systems Hit by Targeted Cyber-Attack
Ukraine’s national railway company has suffered a “large-scale” cyber-attack, disrupting online services and operations
Authorities Seize 1842 Devices in Africa’s Cybercrime Crackdown
Authorities in seven African countries have arrested 306 suspects and seized 1842 devices in Operation Red Card
California AG Reminds 23andMe Customers of Data Deletion Rights Amid Bankruptcy Filing
Two years after a data breach that compromised almost seven million customers, 23andMe's CEO has resigned as the company files for bankruptcy
Teen Boys at Risk of Sextortion as 74% Lack Basic Awareness
The UK’s National Crime Agency has launched a new campaign designed to raise awareness of sextortion among teenage boys
Google Account Hijackers Target Victims Via Semrush Ads
Threat actors are looking to compromise Google accounts to further malvertising and data theft
Albabat Ransomware Evolves to Target Linux and macOS
Trend Micro observed a continuous development of Albabat ransomware, designed to expand attacks and streamline operations
Cybercriminals Exploit CheckPoint Antivirus Driver in Malicious Campaign
A security researcher has observed threat actors exploiting vulnerabilities in a driver used by CheckPoint’s ZoneAlarm antivirus to bypass Windows security measures
Attackers Use Fake CAPTCHAs to Deploy Lumma Stealer RAT
Attackers are exploiting user familiarity with CAPTCHAs to distribute the Lumma Stealer RAT via malicious PowerShell commands, according to HP
FishMonger APT Group Linked to I-SOON in Espionage Campaigns
The FishMonger APT Group has been linked with I-SOON, targeting governments, NGOs and think tanks in cyber-espionage campaigns
Rooted Devices 250 Times More Vulnerable to Compromise
Rooted devices are 250 times more vulnerable to security incidents, Zimperium warned
UK CNI Security Leaders Express Confidence in Cybersecurity, Despite 95% Breach Rate
Bridewell has released its annual report on critical infrastructure security leaders’ perceived cybersecurity maturity and threats
UK Police Arrest 422 in Major Fraud Crackdown
February’s Operation Henhouse resulted in hundreds of arrests and the seizure of £7.5m
Over Half a Million Hit by Pennsylvania Schools Union Breach
The Pennsylvania State Education Association (PSEA) has sent breach notifications to over 500,000 current and former members
NCSC Sets 2035 Deadline for Post-Quantum Cryptography Migration
New NCSC guidance sets out a three-phase migration to post-quantum cryptography, designed to ensure all systems are protected from quantum attacks by 2035
Windows Shortcut Flaw Exploited by 11 State-Sponsored Groups
Newly discovered vulnerability ZDI-CAN-25373 takes advantage of Windows shortcuts has been exploited by 11 state-sponsored groups since 2017
752,000 Browser Phishing Attacks Mark 140% Increase YoY
A surge in browser-based phishing attacks has been recorded over the past year, with a 140% increase compared to 2023 according to Menlo Security
Brian Cox to Discuss Quantum Computing's Impact at Infosecurity Europe 2025
World-renowned physicist, Professor Brian Cox, will headline day one of Infosecurity Europe, analyzing the science behind quantum computing and the challenges it brings
