Infosecurity News
Okta Warns Customers of Credential Stuffing Barrage
Okta has issued customers with new advice on how to block mounting credential stuffing attacks
Over 850 Vulnerable Devices Secured Through CISA Ransomware Program
CISA’s RVWP program sent 1754 ransomware vulnerability notifications to government and critical infrastructure entities in 2023, leading to 852 devices being secured
Ring to Pay Out $5.6m in Refunds After Customer Privacy Breach
The US Federal Trade Commission will send $5.6m worth of refunds to the spied-on customers of the Amazon-owned home camera company
US Takes Down Illegal Cryptocurrency Mixing Service Samourai Wallet
The two founders of Samourai Wallet have been charged with money laundering and unlicensed money-transmitting offenses
State-Sponsored Espionage Campaign Exploits Cisco Vulnerabilities
An advisory from Cisco Talos has highlighted a sophisticated cyber-espionage campaign targeting government networks globally
DragonForce Ransomware Group Uses LockBit's Leaked Builder
Cyber threat intelligence provider Cyble found that DragonForce was using a ransomware binary based on LockBit Black’s builder
11% of Cybersecurity Teams Have Zero Women
A new ISC2 study highlights the lack of diversity in cybersecurity with only 4% of teams having a majority of women, while 11% have none at all
Online Banking Security Still Not Up to Par, Says Which?
Consumer rights group Which? has found more security gaps in UK banking sites and apps
BEC and Fund Transfer Fraud Top Insurance Claims
Email-borne fraud accounted for more insurance claims than any other category in 2023, says Coalition
High Performance Podcast Duo to Unveil Secrets of Success at Infosecurity Europe 2024
Jake Humphrey and Professor Damian Hughes, the minds behind the High Performance Podcast, share their top non-negotiable behaviours for success in cybersecurity
US Congress Passes Bill to Ban TikTok
The bill that could see TikTok banned in the US has been approved by the House of Representatives and the Senate
US Sanctions Iranian "Fronts" for Cyber-Attacks on American Entities
The US Treasury announced sanctions on two companies and four individuals for cyber campaigns conducted on behalf of the Iranian government
Leeds Talent Pool Attracts BlueVoyant's First UK Security Operations Center
The proximity of organizations’ headquarters, like Asda’s and NHS England’s, prompted BlueVoyant to choose Leeds as the location for its first UK SOC
Security Leaders Braced for Daily AI-Driven Attacks by Year-End
Netacea research found that 93% of security leaders expect to face daily AI-driven attacks by the end of 2024, with 65% predicting that offensive AI will be the norm for cybercriminals
Fifth of CISOs Admit Staff Leaked Data Via GenAI
One in five UK organizations have had corporate data exposed via generative AI, says RiverSafe
North Korean Hackers Target Dozens of Defense Companies
North Korean hackers ran a year-long cyber-espionage campaign against South Korean defense companies
US Imposes Visa Restrictions on Alleged Spyware Figures
The move is reportedly part of a broader effort to counter the misuse of surveillance technology
End-to-End Encryption Sparks Concerns Among EU Law Enforcement
The call comes amid the rollout of end-to-end encryption on Meta’s Messenger platform
Millions of Americans' Data Potentially Exposed in Change Healthcare Hack
Millions of Americans may be impacted by the Change Healthcare data breach as UnitedHealth confirms exposed data includes personal and health information
Vulnerability Exploitation on the Rise as Attackers Ditch Phishing
Mandiant’s latest M-Trends report found that vulnerability exploitation was the most common initial infection vector in 2023, making up 38% of intrusions
