Infosecurity News

  1. Australia Sanctions Russian Hacker Behind Medibank Breach

    The Australian government has sanctioned Russian national Aleksandr Ermakov for his role in the Medibank data breach

  2. SEC Confirms SIM Swap Attack Behind X Account Takeover

    The Securities and Exchange Commission says hackers hijacked its X account in a SIM swap attack after MFA was disabled

  3. Mega-Breach Database Exposes 26 Billion Records

    A haul of 26 billion records found online was compiled from historic breaches

  4. LoanDepot Data Breach Hits 16.6 Million Customers

    The US loan giant confirmed 16.6 million customers had “sensitive personal” information stolen in a cyber-attack

  5. Thai Court Blocks 9near.org to Avoid Exposure of 55M Citizens

    Thailand’s data breaches fell in 2022-2023, but Resecurity is warning of rising cyber-threats

  6. New macOS Malware Targets Cracked Apps

    Kaspersky said the malware targeted macOS Ventura 13.6 and newer versions

  7. Data Privacy Week: Lack of Understanding, Underfunding Threaten Data Privacy and Compliance

    According to ISACA, two-thirds of professionals don’t fully understand the privacy regulations their organization needs to comply with

  8. CISA Emergency Directive Demands Action on Ivanti Zero-Days

    US security agency CISA orders all civilian federal agencies to take immediate steps to mitigate two Ivanti zero-day flaws

  9. Russian Spies Brute Force Senior Microsoft Staff Accounts

    Russian intelligence hackers compromise emails of senior Microsoft leadership with simple password spray attacks

  10. Russian Coldriver Hackers Deploy Malware to Target Western Officials

    Google has warned that the Russia-linked Coldriver has expanded its targeting of Western officials by deploying malware to exfiltrate sensitive data

  11. Experts Urge Clearer Direction in South Africa's Cyber Strategy

    South Africa’s cyber defenses have been lacking direction and resources for too long, researchers from the Carnegie Endowment for International Peace argued

  12. TA866 Resurfaces in Targeted OneDrive Campaign

    Proofpoint said it thwarted a large-scale campaign on January 11 primarily targeting North America

  13. New Malware Campaign Exploits 9hits in Docker Assault

    Discovered by Cado Security, the campaign deploys two containers to vulnerable Docker instances

  14. Iranian Phishing Campaign Targets Israel-Hamas War Experts

    Microsoft said the social engineering campaign aims to steal sensitive data from experts deemed to be able to influence intelligence and policies relating to the Israel-Hamas War

  15. Illicit Cryptocurrency Flows Drop 39% in 2023

    Chainalysis data shows major drop in value of funds received into underground crypto addresses in 2023, to $24.2bn

  16. NCSC Builds New “Cyber League” Threat Tracking Community

    The UK’s National Cyber Security Centre has launched a Cyber League to monitor emerging cyber-threats

  17. AI, Gaming, FinTech Named Major Cybersecurity Threats For Kids

    Kaspersky also noted smart home device popularity and malicious apps as threats to children in 2024

  18. Vendor Email Attacks Surged by 137% in Financial Sector in 2023

    Abnormal Security also noted a 71% surge in BEC attacks against the same sector

  19. OpenAI Announces Plans to Combat Misinformation Amid 2024 Elections

    OpenAI will implement a provenance standard into DALL-E 3 and link ChatGPT to an authoritative election website in the US

  20. 75% of Organizations Hit by Ransomware in 2023

    Veeam found that 75% of organizations suffered at least one ransomware attack last year, with 26% hit four or more times

Why not watch?

  1. Auditing AI Risk: Essential Strategies for IT & Compliance Leaders

  2. The Threat Intelligence Imperative: Transforming Risk into Cyber Resilience

  3. Safeguarding Critical Supply Chain Data Through Effective Risk Assessment

  4. How to Update Your PAM Strategy to Protect Hybrid Cloud Infrastructures

What’s hot on Infosecurity Magazine?