Infosecurity News

  1. Microchip Technology Says IT Incident Impacted Operations

    US chip firm Microchip reveals operational disruption stemming from cyber incident

  2. Novel Phishing Method Used in Android/iOS Financial Fraud Campaigns

    ESET detected a new phishing technique using progressive web applications (PWAs) as part of a large-scale mobile financial scam

  3. New DNS-Based Backdoor Threat Discovered at Taiwanese University

    The Msupedge backdoor communicates with a command-and-control server by using DNS traffic

  4. Iranian Group TA453 Launches Phishing Attacks with BlackSmith

    TA453, also known as Charming Kitten, launched a targeted phishing attack using PowerShell malware BlackSmith

  5. Vermin Cyber-Attacks Target Ukraine, Exploiting Kursk Battle

    Ukraine detected cyber-attacks using malicious emails containing photos of alleged prisoners of war from the Kursk direction

  6. Iran Behind Trump Campaign Hack, US Government Confirms

    The ODNI, FBI and CISA confirmed Iran was behind a reported hack of a Trump campaign website as part of efforts to stoke discord and undermine the US elections

  7. Former Congressman Santos Admits Identity Theft and Fraud

    Former US Representative George Santos pleads guilty to multiple fraud and identity theft charges

  8. Jewish Home Lifecare Notifies 100,000 Victims of Ransomware Breach

    Healthcare organization Jewish Home Lifecare has revealed that a 2024 data breach hit over 100,000 customers

  9. FBI and CISA Assure Public on Election Ransomware Security

    The FBI and CISA said ransomware on local networks may cause delays but won't impact voting system integrity

  10. New Tool Xeon Sender Enables Large-Scale SMS Spam Attacks

    Xeon Sender features SMS spam via APIs, Nexmo/Twilio credentials validation and phone number generation

  11. Microsoft Apps for macOS Exposed to Library Injection Attacks

    Cisco Talos researchers found a flaw in eight Microsoft apps for macOS that could enable library injection attacks, putting sensitive data at risk

  12. Ransomware Resilience Drives Down Cyber Insurance Claims

    Cyber insurance claims in the UK have fallen by over a third between 2022 and 2024 as businesses refuse ransom payments

  13. NCSC Opens Cyber Resilience Audit Scheme to Applicants

    The UK’s National Cyber Security Centre wants prospective auditors to check compliance with its Cyber Assessment Framework

  14. Unicoin Staff Locked Out of G-Suite in Mystery Attack

    Employees at crypto firm Unicoin couldn’t access Google services for four days during a recent breach

  15. US Bipartisan Committee Urges Investigation Into Chinese Wi-Fi Routers

    Two Congressmen fear that the Chinese government might use TP-Link Wi-Fi routers to deploy hacking and espionage campaigns in the US

  16. Microsoft Mandates MFA for All Azure Sign-Ins

    Microsoft is mandating MFA for all Azure sign-ins, with customers given 60-day advance notices to start implementation

  17. Florida-Based National Public Data Confirms Data Breach

    The US data broker did not address the threat actor’s claim that the breach concerns 2.9 billion records

  18. Geopolitical Tensions Drive Explosion in DDoS Attacks

    Radware found that Web DDoS attacks rose by 265% in H1 2024, driven by hacktivist groups amid rising geopolitical tensions

  19. Cyber-criminals Exploited Paris Olympics With Fake Domains

    166 Olympics-related domains displayed signs of DNS abuse like keyword stuffing and typosquatting

  20. Advanced ValleyRAT Campaign Hits Windows Users in China

    Discovered by FortiGuard Labs, the ValleyRAT campaign targets Chinese Windows systems

Why not watch?

  1. Identifying Concentration Risk and Securing the Supply Chain

  2. Mastering Australian Privacy Act and Essential Eight While Improving Cybersecurity Posture

  3. Alert Fatigue: What Are You and Your Security Teams Missing?

  4. New Cyber Regulations: What it Means for UK and EU Businesses

What’s hot on Infosecurity Magazine?