Infosecurity News

  1. White House Convenes States to Discuss Water Sector Breaches

    The Biden administration is inviting state representatives to urgently discuss the security of the water sector

  2. Researchers Uncover New “Conversation Overflow” Tactics

    SlashNext said the method deceives ML systems to deliver phishing messages into victims’ inboxes

  3. Research Shows IT and Construction Sectors Hardest Hit By Ransomware

    The Ontinue report draws from an extensive analysis of data collected from 600,000 endpoints

  4. NCSC Publishes Security Guidance For Cloud-Hosted SCADA

    The UK’s National Cyber Security Centre wants to help organizations migrate their SCADA systems to the cloud

  5. Prolific Chinese Threat Campaign Targets 100+ Victims

    Trend Micro uncovers Chinese cyber-espionage campaign Earth Krahang

  6. Moldovan Behind E-Root Marketplace Gets US Federal Prison Term

    Sandu Boris Diaconu was involved in conspiracy to commit access device and computer fraud

  7. FCC Agrees to Cyber Trust Mark for IoT Products

    The voluntary FCC program will allow smart device manufacturers to demonstrate to consumers that their product has met robust cybersecurity standards

  8. Over 50,000 Vulnerabilities Discovered in DoD Systems Through Bug Bounty Program

    Seven years into its ethical hacking program, the Pentagon received its 50,000th vulnerability report on March 15

  9. Three New Critical Vulnerabilities Uncovered in Argo

    The flaws, identified by KTrust, enable attackers to bypass rate limits and brute force protection mechanisms

  10. Microsoft: 87% of UK Organizations Vulnerable to Costly Cyber-Attacks

    A Microsoft report found that 87% of UK organizations are either vulnerable or at high-risk of cyber-attacks, and urged investment in AI as a security tool

  11. NHS Dumfries and Galloway Warns of “Significant” Data Theft

    Scottish NHS trust reveals patient and staff data may have been taken in security breach

  12. IMF Investigates Serious Cybersecurity Breach

    The International Monetary Fund says it is still looking into a recent compromise of multiple email accounts

  13. NIST National Vulnerability Database Disruption Sees CVE Enrichment on Hold

    Vulnerability data has stopped being added to the most widely used software vulnerability database for over a month, putting organizations at risk – and nobody knows why

  14. HSE Misconfiguration Exposed Over a Million Irish Citizens’ Vaccine Status

    An AppOmni researcher detailed a misconfiguration in the HSE COVID Vaccination Portal, exposing the health and personal data of over a million Irish citizens

  15. TikTok Faces US Ban as House Votes to Compel ByteDance to Sell

    The vote saw 352 members of Congress supporting the bill while only 65 opposed it

  16. New Report Suggests Surge in SaaS Assets, Employee Data Sharing

    DoControl said one in six employees was found to have shared company data via personal email

  17. French Employment Agency Data Breach Could Affect 43 Million People

    France’s employment agency suffered a massive breach, exposing the data of users who registered over the past 20 years

  18. US Government to Investigate Change Healthcare Ransomware Attack

    The US government will investigate whether protected healthcare information was breached in the Change Healthcare ransomware attack, and if the firm complied with HIPAA rules

  19. Google Paid $10m in Bug Bounties to Security Researchers in 2023

    Google revealed it paid $10m in bug bounty payments to more than 600 researchers in 2023, with the highest single payment being £113,337

  20. Fortinet Patches Critical Bug in FortiClient EMS

    Fortinet has released security updates to fix several critical vulnerabilities in its products

Why not watch?

  1. Mastering Emerging Regulations: DORA, NIS2 and AI Act Compliance

  2. Cybersecurity Employment: Making Sense of Conflicting Messaging

  3. Reimagining the SOC: From Reactive to Resilient

  4. From Code to Chaos: How AI Is Weaponizing the Cyber Battlefield

What’s hot on Infosecurity Magazine?