Infosecurity News

  1. Exploit Code Released For Critical Fortra GoAnywhere Bug

    Researchers have released exploit code for a critical bug in managed file transfer software Fortra GoAnywhere

  2. AI Set to Supercharge Ransomware Threat, Says NCSC

    The National Cyber Security Centre claims in a new report that AI will increase volume and impact of ransomware attacks

  3. Malicious npm Packages Used to Target GitHub Developer SSH Keys

    ReversingLabs noted a 1300% surge in harmful open-source packages between 2020 and 2023

  4. Hackers Target Atlassian Confluence With RCE Exploits

    Shadowserver reported over 39,000 exploitation attempts from 600 unique IP addresses, mainly Russian

  5. New Cybersecurity Governance Code Puts Cyber Risks on Boardroom Agenda

    The UK government has published a draft code that aims to establish cybersecurity as a key focus for business leaders, on par with financial and legal risks

  6. French Watchdog Slams Amazon with €32m Fine for Spying on Workers

    The French CNIL has fined Amazon France Logistique $35m for an "excessively intrusive" surveillance system set up to monitor the performance of its staff

  7. Australia Sanctions Russian Hacker Behind Medibank Breach

    The Australian government has sanctioned Russian national Aleksandr Ermakov for his role in the Medibank data breach

  8. SEC Confirms SIM Swap Attack Behind X Account Takeover

    The Securities and Exchange Commission says hackers hijacked its X account in a SIM swap attack after MFA was disabled

  9. Mega-Breach Database Exposes 26 Billion Records

    A haul of 26 billion records found online was compiled from historic breaches

  10. LoanDepot Data Breach Hits 16.6 Million Customers

    The US loan giant confirmed 16.6 million customers had “sensitive personal” information stolen in a cyber-attack

  11. Thai Court Blocks 9near.org to Avoid Exposure of 55M Citizens

    Thailand’s data breaches fell in 2022-2023, but Resecurity is warning of rising cyber-threats

  12. New macOS Malware Targets Cracked Apps

    Kaspersky said the malware targeted macOS Ventura 13.6 and newer versions

  13. Data Privacy Week: Lack of Understanding, Underfunding Threaten Data Privacy and Compliance

    According to ISACA, two-thirds of professionals don’t fully understand the privacy regulations their organization needs to comply with

  14. CISA Emergency Directive Demands Action on Ivanti Zero-Days

    US security agency CISA orders all civilian federal agencies to take immediate steps to mitigate two Ivanti zero-day flaws

  15. Russian Spies Brute Force Senior Microsoft Staff Accounts

    Russian intelligence hackers compromise emails of senior Microsoft leadership with simple password spray attacks

  16. Russian Coldriver Hackers Deploy Malware to Target Western Officials

    Google has warned that the Russia-linked Coldriver has expanded its targeting of Western officials by deploying malware to exfiltrate sensitive data

  17. Experts Urge Clearer Direction in South Africa's Cyber Strategy

    South Africa’s cyber defenses have been lacking direction and resources for too long, researchers from the Carnegie Endowment for International Peace argued

  18. TA866 Resurfaces in Targeted OneDrive Campaign

    Proofpoint said it thwarted a large-scale campaign on January 11 primarily targeting North America

  19. New Malware Campaign Exploits 9hits in Docker Assault

    Discovered by Cado Security, the campaign deploys two containers to vulnerable Docker instances

  20. Iranian Phishing Campaign Targets Israel-Hamas War Experts

    Microsoft said the social engineering campaign aims to steal sensitive data from experts deemed to be able to influence intelligence and policies relating to the Israel-Hamas War

Why not watch?

  1. Alert Fatigue: What Are You and Your Security Teams Missing?

  2. Navigating Exposures in Energy ICS Environments

  3. How to Manage Your Risks and Protect Your Financial Data

  4. Identifying Concentration Risk and Securing the Supply Chain

What’s hot on Infosecurity Magazine?