Infosecurity News

  1. US Charges Russian Individual for Pre-Invasion Ukraine Hack

    The US government is offering up to $10m for information on Amin Timovich Stigal’s location or his malicious cyber activity

  2. IT Leaders Split on Using GenAI For Cybersecurity

    Corelight study claims many IT leaders see benefit of GenAI but similar share are concerned about data exposure

  3. Chinese State Actors Use Ransomware to Conceal Real Intent

    A new report warns that Chinese APT groups are using ransomware to conceal cyber-espionage activity

  4. Progress Discloses Two New Vulnerabilities in MOVEit Products

    Two authentication bypass vulnerabilities affect Progress Software’s MOVEit Transfer SFTP service in a default configuration and MOVEit Gateway

  5. Novel Banking Malware Targets Customers in Southeast Asia

    A novel malware strain, Snowblind, bypasses security measures in banking apps on Android, leading to financial losses and fraud, according to Promon

  6. Cyber Attackers Turn to Cloud Services to Deploy Malware

    A growing number of malware operators have turned to cloud-based command and control servers to deploy malicious campaigns, Fortinet researchers found

  7. Identity Crime Reports Drop 16% Annually but Job Scams Surge

    Identity-related crimes declined 16% annually in 2023 with the majority related to compromised credentials

  8. Fake Law Firms Con Victims of Crypto Scams, Warns FBI

    The FBI has urged cryptocurrency scam victims to be on the alert for fraudsters posing as lawyers

  9. New Medusa Trojan Variant Emerges with Enhanced Stealth Features

    Cleafy identified five different botnets operated by affiliates, each targeting different geographical areas

  10. Dark Web Sees 230% Rise in Singapore Identity Theft

    According to Resecurity, a significant portion of the stolen data was found on the XSS underground forum

  11. Cloud Breaches Impact Nearly Half of Organizations

    A Thales report found that 44% of organizations have experienced a cloud data breach, with human error and misconfigurations the leading root causes

  12. Google's Naptime Framework to Boost Vulnerability Research with AI

    The framework aims to improve automated vulnerability discovery approaches

  13. Suspected North Korean Attack Drains $2m from CoinStats Wallets

    CoinStats has revealed a likely state-sponsored attack impacting over 1500 users

  14. Credential Stuffing Attack Hits 72,000 Levi’s Accounts

    Levi’s reveals major credential stuffing attack impacting over 72,000 customer accounts

  15. Modular Malware Boolka’s BMANAGER Trojan Exposed

    The group has been observed exploiting vulnerabilities through SQL injection attacks since 2022

  16. Android Users Warned of Rising Malware Threat From Rafel RAT

    An earlier publication by Check Point Research had already linked Rafel to the APT-C-35/DoNot Team

  17. China-Based RedJuliett Targets Taiwan in Cyber Espionage Campaign

    The likely Chinese state-sponsored group ran espionage campaigns against Taiwan’s government, academia and diplomacy from Fuzhou, China

  18. Polish Prosecutors Step Up Probe into Pegasus Spyware Operation

    Polish prosecutors investigating a massive political spying operation have seized Pegasus from a government agency

  19. Sellafield Pleads Guilty to Historic Cybersecurity Offenses

    UK’s most hazardous nuclear site, Sellafield, has admitted criminal charges related to IT security failings

  20. Chemical Facilities Warned of Possible Data Exfiltration Following CISA Breach

    CISA has informed chemical facilities that its Chemical Security Assessment Tool (CSAT) was infiltrated by a malicious actor, and potentially exfiltrated sensitive data

Why not watch?

  1. Mastering Australian Privacy Act and Essential Eight While Improving Cybersecurity Posture

  2. Identifying Concentration Risk and Securing the Supply Chain

  3. Navigating Exposures in Energy ICS Environments

  4. Dispelling the Myths of Defense-Grade Cybersecurity

What’s hot on Infosecurity Magazine?