Infosecurity News
Operational Technology Leaves Itself Open to Cyber-Attack
Excessive use of remote access tools is leaving operational technology devices vulnerable, with even basic security features missing
Gallup: Pollster Acts to Close Down Security Threat
As the US presidential election draws near, polling company Gallup acts to block XSS vulnerability
Crypto Scams Reach New Heights, FBI Reports $5.6bn in Losses
The Federal Bureau of Investigation's Internet Crime Complaint Center (IC3) reported a 45% increase in cryptocurrency-related scams in 2023
Cybersecurity Workforce Gap Rises by 19% Amid Budget Pressures
ISC2 found that the cybersecurity workforce gap is now at 4.8 million, a 19% increase from 2023
Poland's Supreme Court Blocks Pegasus Spyware Probe
The Polish Supreme Court has ruled that a parliamentary commission investigating the previous government’s use of the Pegasus spyware was unconstitutional
UK’s ICO and NCA Sign Memorandum to Boost Reporting and Resilience
The Information Commissioner’s Office and National Crime Agency have cemented ties with a memorandum of understanding
Microsoft Fixes Four Actively Exploited Zero-Days
September’s Patch Tuesday fix-list features scores of CVEs including four zero-day vulnerabilities
Highline Public Schools Forced to Close By Cyber-Attack
Highline Public Schools in Washington State have now been closed for two days following the incident
China-Linked Threat Actors Target Taiwan Military Industry
TIDRONE group targets military, drone and satellite industries in Taiwan
DoJ Distributes $18.5m to Western Union Fraud Victims
The Justice Department has begun the latest round of fraud reimbursement from the Western Union Remission Fund
Critical SonicWall SSLVPN Bug Exploited By Ransomware Actors
Researchers have warned that a critical SonicWall vulnerability is being exploited in ransomware attacks
Technology Causes “Digital Entropy” as Firms Struggle With Governance
Increasingly complex regulations are stretching governance and compliance in organizations, warns the IAPP
DDoS Attacks Double With Governments Most Targeted
Distributed denial of service attacks continue to increase, with government the most targeted vertical
Cyber-Attack on Payment Gateway Exposes 1.7 Million Credit Card Details
A cyber-attack on Slim CD, which handles electronic payments for US and Canadian-based merchants, has potentially exposed the credit card details of 1.7 million people
Man Charged in AI-Generated Music Fraud on Spotify and Apple Music
A North Carolina resident made over $10m in unlawful royalty payments by producing hundreds of thousands of fake songs listened to by bots using AI
Car Giant Avis Reveals Breach Impacted 300,000 Customers
Rental hire company Avis has notified 300,000 customers of a data breach
TfL Admits Some Services Are Down Following Cyber-Attack
Transport for London has revealed several digital services are suspended after a cyber-attack last week
Spyware Vendors' Nebulous Ecosystem Helps Them Evade Sanctions
The secret web of at least 435 entities across 42 countries making up the spyware landscape facilitates unpunished security and human rights violations, the Atlantic Council found
US and Allies Accuse Russian Military of Destructive Cyber-Attacks
The joint government advisory highlighted the cyber activities of Unit 29155, which has launched destructive cyber-attacks against critical infrastructure globally
PyPI Revival Hijack Puts Thousands of Applications at Risk
Revival Hijack Python Package Index supply chain attack threatens 22,000 packages through malicious downloads
