Infosecurity News

  1. CISOs Receive Smaller Raises and Bonuses in 2023

    Most CISOs are considering a job change in the next 12 months

  2. Vulnerability Exposed in WordPress Plugin User Submitted Posts

    With over 20,000 active installations, the plugin is used for user-generated content submissions

  3. California Enacts “Delete Act” For Data Privacy

    Governor Newsom signed the first US bill requiring data brokers to delete personal data upon request

  4. Chinese APT ToddyCat Targets Asian Telecoms, Governments

    A cyber espionage campaign tied to the Chinese group ToddyCat is targeting high-profile organizations in Kazakhstan, Uzbekistan, Pakistan, and Vietnam

  5. Half of Small Businesses Hit by Cyber-Attack Over the Past Year

    A new survey from accounting software provider Sage showed that most SMEs have developed a cybersecurity posture but struggle to keep up with the threats

  6. European Police Hackathon Hunts Down Traffickers

    Many recruit victims on social media, says Europol

  7. Fifth of UK Cybersecurity Pros Work Excessive Hours

    Workload is biggest concern for industry professionals

  8. US Smashes Annual Data Breach Record With Three Months Left

    Volume of data compromises already exceeds previous high by 14%

  9. Curl Releases Fixes For High-Severity Vulnerability

    The flaw impacts curl and libcurl, causing SOCKS5 proxy handshake to suffer heap buffer overflow

  10. US Government Issues Open-Source Security Guidance for Critical Infrastructure

    The recommendations are designed to reduce the life-safety implications of cyber incidents in ICS environments

  11. Exploitation Accounts For 29% of Education Sector Attacks

    The figures from the latest Critical Start report also suggest 30% come from phishing campaigns

  12. Cyber Professionals Alarmed by Growing Attacker Use of AI

    IT security professionals are concerned about the increasing use of AI in cyber-attacks, particularly deepfakes

  13. October Patch Tuesday Addresses Three Zero-Days

    Microsoft issues updates for over 100 flaws

  14. Air Europa Asks Customers to Cancel Cards After Breach

    Spanish airline did not disclose scale of the attack

  15. Tech Giants Reveal Record-Breaking “Rapid Reset” DDoS Bug

    Zero-day has been exploited to launch largest attacks ever seen

  16. IZ1H9 Botnet Targets IoT Devices With New Exploits

    FortiGuard Labs said the new campaign incorporates 13 distinct payloads

  17. Flagstar Bank MOVEit Breach Affects 800K Customer Records

    The incident occurred between May 27 and 31 2023, before MOVEit Transfer vulnerability was publicly disclosed

  18. #CyberMonth: Google Makes Passkeys Default Sign-In Option

    The tech giant said the move is designed to help efforts to make passwords obsolete

  19. Half of CISOs Now Report to CEO as Influence Grows

    Trend is more pronounced in Europe than America

  20. New Threat Actor “Grayling” Blamed For Espionage Campaign

    Symantec highlights distinctive DLL sideloading technique

Why not watch?

  1. How to Manage Your Risks and Protect Your Financial Data

  2. Alert Fatigue: What Are You and Your Security Teams Missing?

  3. Dispelling the Myths of Defense-Grade Cybersecurity

  4. Identifying Concentration Risk and Securing the Supply Chain

What’s hot on Infosecurity Magazine?