Infosecurity News
Vinted Fined €2.3m Over Data Protection Failure
The Lithuanian data protection authority has imposed a fine of almost $2.5m on second-hand specialist Vinted for breaching GDPR
EU Opens Applications for Cybersecurity and Digital Skills Funding
The EU’s Digital Europe Programme (DEP) will provide over €210m in funding for cybersecurity and digital skills projects
Europol Warns of Home Routing Challenges For Lawful Interception
Law Enforcement Agencies can’t intercept communications without an agreement disabling PET in home routing
Meta Faces Suspension of AI Data Training in Brazil
The action comes in response to concerns over the company’s updated privacy policy
Over $1bn in Cryptocurrency Lost to Web3 Cyber Incidents in 2024
Certik observed the loss of $1.1bn worth of cryptocurrency across Web3 platforms in the first half of 2024, with phishing the most common vector
Gamers' Data Exposed in RPG Platform Roll20 Breach
Roll20 confirmed its administrative website account was accessed by a “bad actor,” leaving its users’ personal information exposed
New Ransomware Group Phones Execs to Extort Payment
Researchers claim the Volcano Demon ransomware group personally phone victims to pressure them into paying
UK’s NCA Leads Major Cobalt Strike Takedown
Global law enforcers have share intelligence leading to the takedown of hundreds of IP addresses hosting Cobalt Strike
WordPress Plugins at Risk From Polyfill Library Compromise
The attack exploits the polyfill.io domain, which was recently acquired by Funnull, a China-based entity
Microsoft Uncovers Major Flaws in Rockwell PanelView Plus
The vulnerabilities stem from manipulable custom classes in PanelView Plus
Cyber Extortion Soars: SMBs Hit Four Times Harder
Orange Cyberdefense’s latest Cy-Xplorer report shows a 77% rise in cyber extortion, with SMBs impacted 4.2 times more often than large enterprises
Half of Employees Fear Punishment for Reporting Security Mistakes
A ThinkCyber survey conducted at Infosecurity Europe 2024 found that half of employees are afraid of reporting security mistakes
New RUSI Report Exposes Psychological Toll of Ransomware, Urges Action
A new report reveals the hidden mental health toll of ransomware attacks on victims, urging a focus on well-being alongside data and system recovery
APP Fraud Singled Out as Biggest Financial Crime Threat
Payments professionals have highlighted authorized push payment (APP) fraud as the top threat facing businesses and consumers
Dozens of Arrests Disrupt €2.5m Vishing Gang
Police have arrested 54 suspected members of a vishing group who stole the life savings of scores of victims
Mobile Political Spam Surges Threefold For 2024 Election
Proofpoint highlighted how smishing, impersonation and spam are eroding trust in mobile messaging
Chrome Update Will Block Entrust Certificates by November 2024
The move follows a series of reported compliance failures and lack of progress in addressing publicly disclosed incidents
Ransomware Attack Demands Reach a Staggering $5.2m in 2024
Comparitech calculated that the average ransom demand was over $5.2m in the first six months of 2024, with 421 confirmed incidents during this period
Health Tech Execs Get Jail Time For $1bn Fraud Scheme
The former CEO and COO of a health startup will spend years in jail after conducting a large-scale fraud scheme
Cisco Patches Zero-Day Bug Used by Chinese Velvet Ant Group
Cisco has patched a zero-day vulnerability exploited by a Chinese APT group to compromise Nexus switches
