Infosecurity News

  1. Wake-Up Call as 3AM Ransomware Variant Is Discovered

    Symantec says it was used in a failed LockBit attack

  2. Cloud Vulnerabilities Surge 200% in a Year

    But IBM warns credential compromise is number one initial access vector

  3. New Microsoft Teams Phishing Campaign Targets Corporate Employees

    The new campaign is believed to be perpetrated by Storm-0324, which distributes the payloads of other attackers after achieving initial network compromise

  4. MGM Criticized for Repeated Security Failures

    The malware researchers' collective Vx-underground claimed that ALPHV/BlackCat was behind the attack against the casino giant

  5. Chilling Lack of Cyber Experts in UK Government, Finds Parliamentary Inquiry

    The parliamentary inquiry heard there are “particular shortages” of cybersecurity experts in the civil service, with pay restraints a major factor

  6. Microsoft Fixes Two Zero-Day Bugs Used in Attacks

    Microsoft announces updates for around 60 CVEs

  7. CISA Publishes Plan to Enhance Open Source Security

    New roadmap will cover Fiscal Year 2024-26

  8. UK ICO and NCSC Set to Share Anonymized Threat Intelligence

    Data protection regulator and security agency sign MoU

  9. Windows Systems Targeted in Multi-Stage Malware Attack

    According to Fortinet security expert Cara Lin, the attack begins with a phishing email

  10. Cyber-criminals “Jailbreak” AI Chatbots For Malicious Ends

    SlashNext research shows that most of these tools connect to jailbroken versions of public chatbots

  11. MGM Resorts Hit By Cyber-Attack, Systems Down

    The incident disrupted key company services, impacting website, bookings and in-casino functions

  12. Fighting Individual Ransomware Strains Fruitless, UK Agencies Suggest

    The report highlights the complex supply chain involved in ransomware attacks, requiring a more holistic approach to be taken by governments

  13. Redfly Group Compromises National Power Grid

    Symantec warns of mounting threat to critical infrastructure

  14. US Government Ordered to Urgently Patch Apple Zero-Day Bugs

    Federal agencies have one month to fix BlastPass vulnerabilities

  15. Europol: Financial Crime Makes “Billions” and Impacts “Millions”

    Policing group releases first ever report on the topic

  16. Cuba Ransomware Group Unleashes Undetectable Malware

    Kaspersky found suspicious files in December 2022 which activated the komar65 library known as BUGHATCH

  17. Lazarus Group Targets macOS in Supply Chain Assault

    ESET explained the impact of the supply chain attack translated to a 16.8% increase in Trojan detections

  18. Pentagon Urges Collaboration in Cyber Defense

    Beavers emphasized ongoing modernization initiatives for IT architecture and user experience

  19. Board Members Struggling to Understand Cyber Risks

    The report found that many boards struggle to challenge what they hear about cybersecurity from their organization’s CISO

  20. Ransomware Attack Wipes Out Sri Lankan Government Data

    The government’s email system has suffered from a massive ransomware attack in August

Why not watch?

  1. Enhancing Software Supply Chain Management: A DORA-Focused Approach

  2. Dispelling the Myths of Defense-Grade Cybersecurity

  3. Mastering Australian Privacy Act and Essential Eight While Improving Cybersecurity Posture

  4. Navigating Exposures in Energy ICS Environments

What’s hot on Infosecurity Magazine?