Infosecurity News
LockBit, Black Basta, Play Dominate Ransomware in Q1 2024
The data from ReliaQuest also suggests LockBit faced a significant setback due to law enforcement action
UnitedHealth CEO Confirms Breach Tied to Stolen Credentials, No MFA
Andrew Witty made the claims in a written testimony submitted before a House subcommittee hearing
1 in 5 US Ransomware Attacks Triggers Lawsuit
Comparitech found that 18% of ransomware incidents in the US led to a lawsuit in 2023, with 59% of completed lawsuits since 2018 proving successful
Lawsuits and Company Devaluations Await For Breached Firms
New report from Netwrix reveals unplanned expenses impact half of breached firms, including a surge in lawsuits
DBIR: Vulnerability Exploits Triple as Initial Access Point for Data Breaches
The growth of software supply chain attacks pushed vulnerability exploits to the third most used initial access method, Verizon found
Infosecurity Europe Keynote: Building Strong Teams and Driving Change with F1’s Claire Williams
Join Claire Williams at Infosecurity Europe to learn how F1 leadership strategies can inspire cybersecurity leaders
NCSC’s New Mobile Risk Model Aimed at “High-Threat” Firms
The UK’s National Cyber Security Centre claims its AMS model will protect firms from state-backed mobile threats
US Government Releases New Resources Against AI Threats
The US Department of Homeland Security has released new guidelines for securing critical infrastructure and CBRN from AI threats
Ransomware Rising Despite Takedowns, Says Corvus Report
The first quarter of 2024 saw the most ransomware activity ever recorded, Corvus Insurance found in a new analysis
YMCA Fined for Data Breach, ICO Raises Concerns About Privacy for People with HIV
Central YMCA was fined £7,500 for a data breach exposing HIV information of support program participants, prompting the ICO to call for stronger privacy protections for people with HIV
Millions of Malicious Containers Found on Docker Hub
According to JFrog, approximately 25% of all repositories lack useful functionality and serve as vehicles for spam and malware
Disinformation: EU Opens Probe Against Facebook and Instagram Ahead of Election
Meta’s moderation failings could allow coordinated disinformation campaigns to thrive in the run-up to the EU election
Ransom Payments Surge by 500% to an Average of $2m
Sophos found that the average ransom payment was $2m in 2023, with 63% of ransom demands $1m or more
FCC Fines Carriers $200m For Selling User Location Data
Some of America’s biggest wireless carriers illegally sold customer location, says FCC
Google Blocks 2.3 Million Apps From Play Store Listing
Google blocked millions of policy-violating apps from being listed on Play in 2023 and banned 333,000 bad accounts
Study Reveals Alarming Levels of USPS Phishing Traffic
The top malicious domains attracted over 100,000 hits each, according to Akamai Security
Judge0 Sandbox Vulnerabilities Expose Systems to Takeover Risk
Tanto Security uncovered three vulnerabilities which could allow attackers to execute sandbox escapes and gain root permissions on host machines
Voter Registration System Taken Offline in Coffee County Cyber-Incident
Coffee County has discovered malicious cyber-activity on its IT systems, and it reportedly severed its connection to Georgia’s state voter registration system
OpenAI's ChatGPT is Breaking GDPR, Says Noyb
European non-profit Noyb has filed a complaint to the Austrian data protection authority (DSB) over OpenAI’s ChatGPT providing false personal information
New UK Smart Device Security Law Comes into Force
IoT manufacturers, retailers and importers must comply with new security legislation, the PSTI act, from today
