Infosecurity News
US Data Breaches Head for Another Record Year After 11% Surge
There were 1732 publicly reported US data breaches in the first half of 2025, according to the latest ITRC report
Most European Financial Firms Still Lagging on DORA Compliance
A Veeam survey found that 96% of financial services organizations believe their current levels of data resilience falls short of DORA compliance, citing major challenges
SquidLoader Malware Campaign Targets Hong Kong Financial Sector
A new malware campaign targeting Hong Kong finance has been identified, featuring SquidLoader to deploy Cobalt Strike Beacon
Pro-Russian Cybercrime Network Demolished in Operation Eastwood
A Europol coordinated operation has taken down key infrastructure used by pro-Russian hacktivist group NoName057(16), as well as a number of arrests
Over 5.4 Million Affected in Healthcare Data Breach at Episource
A data breach at Episource has exposed the personal information of 5.4 million individuals after attackers accessed systems for 10 days
Retail Ransomware Attacks Jump 58% Globally in Q2 2025
BlackFog found that publicly disclosed ransomware attacks on retail grew significantly in Q2 compared to Q1, with UK firms heavily targeted
Cloudflare Blocks Record-Breaking 7.3 Tbps DDoS Attack
Cloudflare highlighted a huge rise in hyper-volumetric DDoS attacks in Q2 2025, with attackers seeking to overwhelm defenses
Education Sector is Most Exposed to Remote Attacks
CyCognito research finds that a third of education sector APIs, web apps and cloud assets are exposed to attack
Co-op Aims to Divert More Young Hackers into Cyber Careers
The Co-op is teaming up with The Hacking Games to inspire pathways into ethical cybersecurity careers
MITRE Launches New Framework to Tackle Crypto Risks
MITRE has introduced AADAPT framework, a new cybersecurity framework aimed at mitigating risks in digital financial systems like cryptocurrency
Threat Actors Exploit SVG Files in Stealthy JavaScript Redirects
A new phishing campaign uses SVG files for JavaScript redirects, bypassing traditional detection methods
SaaS Security Adoption Grows Amid Rising Breach Rates
The latest report from AppOmni has revealed 91% confidence in SaaS security while 75% of organizations have faced incidents
North Korean Actors Expand Contagious Interview Campaign with New Malware Loader
Socket has identified a new malware loader called XORIndex incorporated into malicious packages published to the npm registry, with over 9000 downloads so far
Abacus Market Shutters After Exit Scam, Say Experts
Darknet giant Abacus Market has gone offline due to a likely exit scam, according to TRM Labs
NCSC Launches Vulnerability Research Institute to Boost UK Resilience
The NCSC’s new Vulnerability Research Institute will help it develop outreach with the external cybersecurity community
Grok-4 Jailbroken Two Days After Release Using Combined Attack
Grok-4 was jailbroken 48 hours post-launch using Echo Chamber and Crescendo attack methods
IoT Devices at Risk Due to eSIM Flaw in Kigen eUICC Cards
A vulnerability in Kigen eUICC cards has exposed billions of IoT devices via flawed eSIM profile management
Fake News Sites Mimicking CNN, BBC and CNBC Pave Way for Investment Scams
CTM360 has identified over 17,000 fake news sites mimicking reputable brands like CNN, BBC and CNBC, spreading investment fraud across 50 countries
NCSC Urges Enterprises to Upgrade to Microsoft Windows 11 to Avoid Cyber Threats
The NCSC has warned that there are still a significant number of organizations using Windows 10, which will soon be unsupported with security updates
Interlock Ransomware Unleashes New RAT in Widespread Campaign
Interlock ransomware continues to develop custom tooling and a new RAT has been detected by researchers
