Infosecurity News

  1. Ninety Percent of Energy Companies Suffer Supplier Data Breach

    Forty-three of the world’s 48 largest energy companies were hit by a third-party data breach over the past year

  2. Governments Spying on Apple and Google Users, Says Senator

    Secret government requests for Android and iOS push notification data should be made public, argues Ron Wyden

  3. Cambridge Hospitals Admit Two Excel-Based Data Breaches

    Information on cancer and maternity patients was accidentally disclosed by Cambridge University Hospitals NHS Foundation Trust

  4. 78% of CISOs Concerned About AppSec Manageability

    The Cycode report draws from a survey of 500 US CISOs, AppSec Directors and DevSecOps team members

  5. Trojan-Proxy Threat Expands Across macOS, Android and Windows

    Kaspersky found multiple variants, but none are being marked as malicious by anti-malware vendors

  6. LockBit Remains Top Global Ransomware Threat

    The strain was responsible for over a quarter of global ransomware attacks between January 2022 and September 2023

  7. Deutsche Wohnen Ruling Set to Drive Up GDPR Fines

    Legal experts claim that landmark ECJ ruling will make it easier for authorities to sanction organizations infringing the GDPR

  8. Police Arrest 1000 Suspected Money Mules

    Global police arrest 1000 money mule suspects and identify thousands more in a major crackdown on money laundering

  9. UK FCA Warns of Christmas Loan Fee Fraud Surge

    Financial Conduct Authority claims economic hardship is making consumers more vulnerable to loan fee fraud

  10. Disney+ Cyber Scheme Exposes New Impersonation Attack Tactics

    Abnormal Security said the attackers used advanced customization techniques to deceive victims

  11. SpyLoan Scams Target Android Users With Deceptive Apps

    ESET said these apps request sensitive user information, exfiltrating it to attackers’ servers

  12. US Federal Agencies Miss Deadline for Incident Response Requirements

    20 government agencies have failed to reach the incident response maturity level required by law, the GAO found in a new report

  13. Russian APT28 Exploits Outlook Bug to Access Exchange

    Notorious Russian APT28 group is actively exploiting CVE-2023-23397 to hijack Exchange email accounts

  14. Porn Age Checks Threaten Security and Privacy, Report Warns

    Online Safety Act’s mandate for age verification to access pornography could be a security and privacy disaster, think tanks warn

  15. Sellafield Accused of Covering Up Major Cyber Breaches

    Europe’s largest nuclear site, Sellafield, is accused of consistent security failings

  16. Cybercriminals Escalate Microsoft Office Attacks By 53% in 2023

    The Kaspersky report also revealed an average detection of 411,000 malicious files per day

  17. Rust-Based Botnet P2Pinfect Targets MIPS Architecture

    Cado Security found the variant while investigating files uploaded to an SSH honeypot

  18. EU Council and Parliament Reach Agreement on Cyber Resilience Act

    The European institutions have finally resolved several contentious aspects of the Cyber Resilience Act

  19. Staples Hit With Disruption After Cyber-Attack

    Retail giant’s service lines still impacted

  20. Russian Developer Pleads Guilty to Trickbot Conspiracy

    40-year-old was extradited from South Korea

Why not watch?

  1. Auditing AI Risk: Essential Strategies for IT & Compliance Leaders

  2. Dispelling the Myths of Defense-Grade Cybersecurity

  3. Navigating Exposures in Energy ICS Environments

  4. Identifying Concentration Risk and Securing the Supply Chain

What’s hot on Infosecurity Magazine?