Infosecurity News

  1. Exploitation Accounts For 29% of Education Sector Attacks

    The figures from the latest Critical Start report also suggest 30% come from phishing campaigns

  2. Cyber Professionals Alarmed by Growing Attacker Use of AI

    IT security professionals are concerned about the increasing use of AI in cyber-attacks, particularly deepfakes

  3. October Patch Tuesday Addresses Three Zero-Days

    Microsoft issues updates for over 100 flaws

  4. Air Europa Asks Customers to Cancel Cards After Breach

    Spanish airline did not disclose scale of the attack

  5. Tech Giants Reveal Record-Breaking “Rapid Reset” DDoS Bug

    Zero-day has been exploited to launch largest attacks ever seen

  6. IZ1H9 Botnet Targets IoT Devices With New Exploits

    FortiGuard Labs said the new campaign incorporates 13 distinct payloads

  7. Flagstar Bank MOVEit Breach Affects 800K Customer Records

    The incident occurred between May 27 and 31 2023, before MOVEit Transfer vulnerability was publicly disclosed

  8. #CyberMonth: Google Makes Passkeys Default Sign-In Option

    The tech giant said the move is designed to help efforts to make passwords obsolete

  9. Half of CISOs Now Report to CEO as Influence Grows

    Trend is more pronounced in Europe than America

  10. New Threat Actor “Grayling” Blamed For Espionage Campaign

    Symantec highlights distinctive DLL sideloading technique

  11. Magecart Hackers Hide in 404 Error Pages

    Akamai spots new digital skimming campaign

  12. MGM Resorts Reveals Over $100M in Costs After Ransomware Attack

    In an SEC 8-K filing published last Thursday, the company cited operational disruptions

  13. Google Bug Bounty Program Expands to Chrome V8, Google Cloud

    Google has launched capture the flag (CTF) competitions focused on Chrome’s V8 JavaScript engine and Google Cloud’s kernel-based virtual machine (KVM)

  14. DNA Tester 23andMe Hit By Credential Stuffing Campaign

    Threat actor offers to sell DNA profiles of ‘millions’

  15. Blackbaud Settles Ransomware Breach Case For $49.5m

    Thousands of non-profit customers were affected

  16. Social Dominates as Victims Take $2.7bn Fraud Hit

    Social media is number one channel for fraud, says FTC

  17. AWS to Mandate Multi-Factor Authentication from 2024

    Move is designed to mitigate risk of account takeover

  18. Qakbot Gang Still Active Despite FBI Takedown

    Cisco Talos found new evidence that Qakbot-affiliated actors were still distributing ransomware despite the August FBI takedown of the threat group

  19. CISA and NSA Publish Top 10 Misconfigurations

    Data was compiled from real-world read and blue team engagements

  20. Apple Issues Emergency Patches for More Zero-Day Bugs

    One is being exploited in the wild

Why not watch?

  1. Dispelling the Myths of Defense-Grade Cybersecurity

  2. How to Manage Your Risks and Protect Your Financial Data

  3. Enhancing Software Supply Chain Management: A DORA-Focused Approach

  4. Navigating Exposures in Energy ICS Environments

What’s hot on Infosecurity Magazine?