Infosecurity News

  1. SMBs at Risk From SendGrid-Focused Phishing Tactics

    Kaspersky explained the fraudulent emails prompted recipients to enable two-factor authentication

  2. Change Healthcare Cyber-Attack Leads to Prescription Delays

    The incident has impacted numerous Change Healthcare applications, including pharmacy, medical records

  3. Russian-Aligned Network Doppelgänger Targets German Elections

    SentinelLabs and ClearSky said the group leverage a substantial network of social media accounts

  4. OWASP Releases Security Checklist for Generative AI Deployment

    The OWASP Foundation provides new guidelines to deploy secure-by-design LLM use cases

  5. Cyber Pros Embrace AI, Over 80% Believe It Will Enhance Jobs

    ISC2 found that 82% of cybersecurity professionals believe AI will improve the efficiency of their jobs

  6. Chinese Duo Found Guilty of $3m Apple Fraud Plot

    Two Maryland residents have been convicted of a multimillion-dollar fraud scheme against Apple

  7. Ransomware Warning as CVSS 10.0 ScreenConnect Bug is Exploited

    Researchers warn of a “ransomware free-for-all” after ScreenConnect vulnerability is exploited

  8. Businesses Increase Cybersecurity as Budgets Surge in 2024

    Over two-thirds of IT decision-makers increase cybersecurity budgets in 2024, prioritizing cloud security and incident response as cyber threats escalate

  9. Over 40% of Firms Struggle With Cybersecurity Talent Shortage

    Kaspersky’s recent report said the shortage is particularly acute in Europe, Russia and Latin America

  10. Biden Executive Order to Bolster US Maritime Cybersecurity

    The White House Executive Order will give new powers to the US Coast Guard to manage cyber threats in ports and issue cybersecurity standards

  11. Exclusive: eSentire Confirms Rhysida Ransomware Victims

    Since emerging in May 2023, the group claims to have victimized 77 companies and public institutions

  12. IBM: Identity Compromises Surge as Top Initial Access Method for Cybercriminals

    Compromising valid identities became the top initial access vector in 2023 while phishing dropped to second place, IBM found in a new report

  13. Russian Hackers Launch Email Campaigns to Demoralize Ukrainians

    ESET researchers reveal a Russian threat actor has targeted Ukrainian citizens with PYSOPs messages warning of impacts such as food and medicine shortages from the war

  14. NCSC Sounds Alarm Over Private Branch Exchange Attacks

    The UK’s National Cyber Security Centre has produced new guidance for smaller firms on PBX attacks

  15. Attacker Breakout Time Falls to Just One Hour

    It now takes threat actors on average just 62 minutes to move laterally from initial access, Crowdstrike claims

  16. New Typosquatting and Repojacking Tactics Uncovered on PyPI

    ReversingLabs uncovered two suspicious packages on PyPI: NP6HelperHttptest and NP6HelperHttper

  17. Linux Malware Campaign “Migo” Targets Redis For Cryptomining

    Cado Security said this campaign introduces unique techniques to compromise the security of Redis servers

  18. Top UK Universities Recovering Following Targeted DDoS Attack

    The attack, which has been claimed by Anonymous Sudan, has been confirmed to have impacted IT services at the universities of Cambridge and Manchester

  19. Initial Ransomware Demands Jump 20% to $600,000 in 2023

    Arctic Wolf found that the median ransomware demand was $600,000 in 2023, a 20% rise on the previous year

  20. Insider Steals 80,000 Email Addresses From District Councils

    A former employee at Stratford-on-Avon District Council stole residents’ emails to promote his business

Why not watch?

  1. Alert Fatigue: What Are You and Your Security Teams Missing?

  2. How to Manage Your Risks and Protect Your Financial Data

  3. Identifying Concentration Risk and Securing the Supply Chain

  4. Dispelling the Myths of Defense-Grade Cybersecurity

What’s hot on Infosecurity Magazine?