Infosecurity News

  1. API Vulnerabilities: 74% of Organizations Report Multiple Breaches

    The Traceable report is based on insights from 1629 cybersecurity experts across the US, UK and EU

  2. DGA Behavior Shifts Raise Cybersecurity Concerns

    Akamai found domain shifts of 50 days from expected dates, suggesting hacker-driven confusion

  3. Zero-Day Flaw Exposes Atlas VPN User IPs

    The exploit code, shared by a researcher on Reddit, demonstrates the issue

  4. UK and US Sanction 11 Russians Tied to Trickbot/Conti Ransomware

    These new sanctions follow a first wave in February 2023, where seven Russians involved with Trickbot and Conti were also sanctioned

  5. IBM Reports Patient Data Breach at Johnson & Johnson Subsidiary

    The attackers may have accessed sensitive patient information, such as health insurance and medication details

  6. Chinese Hacker Steals Microsoft Signing Key, Spies on US Government

    The threat actor used the stolen key to breach 25 organizations, including US government agencies

  7. Think Tank Urges Labour to Promote “Securonomics” Agenda

    Progressive Britain wants the party to borrow from US security strategy

  8. Hundreds of Scam Pages Uncovered in Major Investment Fraud Campaign

    Users are first targeted by Facebook adverts

  9. UK Government Backs Down on Anti-Encryption Stance

    Statement to Lords heralds delay to on-device message scanning

  10. MITRE and CISA Release OT Attack Emulation Tool

    The open source tool will enable cyber teams to consistently test and boost the defenses of ICS environments

  11. Russia-Backed APT28 Tried to Attack a Ukrainian Critical Power Facility

    The attack has been carried out using legitimate services and standard software functions, CERT-UA observed

  12. High-Severity Vulnerability Discovered in Popular CMS

    The unpatched bug in PHPFusion could result in the theft of sensitive data, Synopsys researchers warn

  13. UK Boards Are Growing Less Concerned About Cyber-Risk

    Their global peers feel the opposite, according to Proofpoint study

  14. Experts Uncover Underground Phishing “Empire” W3LL

    Secretive group targets specifically Microsoft 365 accounts

  15. Crypto Casino Stake.com Back Online After $40m Heist

    Hot wallets were compromised at firm

  16. Mend.io SAML Vulnerability Exposed

    SAML flaw in enabled rogue customers to access others’ SaaS data

  17. Airlines Battle Surge in Loyalty Program Fraud

    Group-IB said 2022 saw 30% more loyalty fraud, impacting 75+ airlines and involving 2000 malicious sources

  18. UK Electoral Commission Fails Cybersecurity Test Amid Data Breach

    Auditors cited outdated software and unsupported iPhones as key reasons for the failed test

  19. More Schools Hit By Cyber-Attacks Before Term Begins

    Highgate Wood School forced to delay new term for six days

  20. UK National Cyber Security Centre Gets a New CTO

    Industry veteran Ollie Whitehouse is confirmed

Why not watch?

  1. New Cyber Regulations: What it Means for UK and EU Businesses

  2. Alert Fatigue: What Are You and Your Security Teams Missing?

  3. Identifying Concentration Risk and Securing the Supply Chain

  4. Dispelling the Myths of Defense-Grade Cybersecurity

What’s hot on Infosecurity Magazine?