Infosecurity News

  1. Rising AI-Fueled Phishing Drives Demand for Password Alternatives

    FIDO Alliance’s third Online Authentication Barometer showed that AI-powered phishing is slowly prompting users to switch passwords for multi-factor authentication methods

  2. Cisco Warns of Critical Vulnerability in IOS XE Software

    The tech giant has issued guidance to mitigate exploitation of the flaw, which has the highest severity rating

  3. A Third of Organizations Not Ready to Comply with NIS2

    A new survey found that three-quarters of organizations in the UK are yet to address the five key requirements for compliance

  4. Ransomware Targets Unpatched WS_FTP Servers

    The threat actors attempted to escalate privileges using the open-source GodPotato tool

  5. Growing Concern Over Role of Hacktivism in Israel-Hamas Conflict

    Hacktivists claim DDoS attacks against Israeli websites as cybersecurity experts urge caution in believing these cyber-criminals’ claims

  6. Signal Disputes Alleged Zero-Day Flaw

    Reports emerged over the weekend regarding a zero-day exploit in the messaging app

  7. Healthcare Sector Warned About New Ransomware Group NoEscape

    The US government highlighted the operations of the NoEscape group, which is believed to be a rebrand of Russian threat actor Avaddon

  8. New RomCom Backdoor Targets Female Political Leaders

    A new version of the RomCom backdoor was used to lure attendees of the June 2023 Women Political Leaders Summit

  9. UK Regulator Fines Equifax £11m for 2017 Data Breach

    The UK FCA held Equifax Ltd responsible for failing to protect UK consumer data held by its US-based parent company

  10. New Phishing Campaign Uses LinkedIn Smart Links in Blanket Attack

    Email security provider Cofense has unveiled a large-scale phishing campaign leveraging LinkedIn Smart Links

  11. CISOs Receive Smaller Raises and Bonuses in 2023

    Most CISOs are considering a job change in the next 12 months

  12. Vulnerability Exposed in WordPress Plugin User Submitted Posts

    With over 20,000 active installations, the plugin is used for user-generated content submissions

  13. California Enacts “Delete Act” For Data Privacy

    Governor Newsom signed the first US bill requiring data brokers to delete personal data upon request

  14. Chinese APT ToddyCat Targets Asian Telecoms, Governments

    A cyber espionage campaign tied to the Chinese group ToddyCat is targeting high-profile organizations in Kazakhstan, Uzbekistan, Pakistan, and Vietnam

  15. Half of Small Businesses Hit by Cyber-Attack Over the Past Year

    A new survey from accounting software provider Sage showed that most SMEs have developed a cybersecurity posture but struggle to keep up with the threats

  16. European Police Hackathon Hunts Down Traffickers

    Many recruit victims on social media, says Europol

  17. Fifth of UK Cybersecurity Pros Work Excessive Hours

    Workload is biggest concern for industry professionals

  18. US Smashes Annual Data Breach Record With Three Months Left

    Volume of data compromises already exceeds previous high by 14%

  19. Curl Releases Fixes For High-Severity Vulnerability

    The flaw impacts curl and libcurl, causing SOCKS5 proxy handshake to suffer heap buffer overflow

  20. US Government Issues Open-Source Security Guidance for Critical Infrastructure

    The recommendations are designed to reduce the life-safety implications of cyber incidents in ICS environments

Why not watch?

  1. Navigating Exposures in Energy ICS Environments

  2. Dispelling the Myths of Defense-Grade Cybersecurity

  3. Auditing AI Risk: Essential Strategies for IT & Compliance Leaders

  4. Enhancing Software Supply Chain Management: A DORA-Focused Approach

What’s hot on Infosecurity Magazine?