Infosecurity News

  1. Scammers Exploit Microsoft 365 to Target PayPal Users

    A new PayPal phishing scam used genuine money requests, bypassing security checks to deceive recipients

  2. Casio Admits Security Failings as Attackers Leak Employee and Customer Data

    Electronics firm Casio revealed that ransomware attackers have leaked the personal data of employees, customers and business partners

  3. New Mirai Botnet Exploits Zero-Days in Routers and Smart Devices

    A newly identified Mirai botnet exploits over 20 vulnerabilities, including zero-days, in industrial routers and smart home devices

  4. Fake Government Officials Use Remote Access Tools for Card Fraud

    Group-IB has observed scammers impersonating government officials to trick disaffected consumers into divulging card details

  5. New Research Highlights Vulnerabilities in MLOps Platforms

    New research by Security Intelligence has revealed security risks in MLOps platforms including Azure ML, BigML and Google Vertex AI

  6. Moxa Urges Immediate Updates for Security Vulnerabilities

    Moxa has reported two critical vulnerabilities in its routers and network security appliances that could allow system compromise and arbitrary code execution

  7. Phishing Click Rates Triple in 2024

    Netskope observed a 190% growth in enterprise users clicking phishing links as attackers become more creative in delivering effective lures

  8. UK Government to Ban Creation of Explicit Deepfakes

    The UK government is cracking down on the generation of sexually explicit deepfakes in a bid to protect women and girls

  9. CISA Claims Treasury Breach Did Not Impact Other Agencies

    The US Cybersecurity and Infrastructure Security Agency claims a recent China-linked breach was confined to the Treasury

  10. Supply Chain Attack Targets Key Ethereum Development Tools

    A new supply chain attack targets Ethereum tools, exploiting npm packages to steal sensitive data

  11. New PhishWP Plugin Enables Sophisticated Payment Page Scams

    The PhishWP plugin enables scammers to create fake payment pages, stealing sensitive data via Telegram

  12. Chinese Hackers Double Cyber-Attacks on Taiwan

    Taiwan’s security service said government networks faced 2.4 million attacks in 2024, most of which are attributed to Chinese state actors

  13. New Infostealer Campaign Uses Discord Videogame Lure

    Threat actors are tricking victims into downloading malware with the promise of testing a new videogame

  14. Scammers Drain $500m from Crypto Wallets in a Year

    Scam Sniffer claims that threat actors used wallet drainers to steal $494m from victims in 2024

  15. US Sanctions Chinese Cybersecurity Firm for Global Botnet Attacks

    The US government said that China based firm Integrity Technology Group provided infrastructure for Flax Typhoon to attack multiple US targets

  16. Atos Group Denies Space Bears' Ransomware Attack Claims

    Atos Group has denied the ransomware group Space Bears' claims of compromising its database, calling the allegations unfounded

  17. Crypto Boss Extradited to Face $40bn Fraud Charges

    Former Terraform CEO Do Hyeong Kwon is now in the US facing federal fraud charges

  18. DDoS Disrupts Japanese Mobile Giant Docomo

    Docomo has revealed a DDoS attack on Thursday took down key services

  19. Web3 Attacks Result in $2.3Bn in Cryptocurrency Losses

    The amount of crypto stolen in the Web3 ecosystem rose by 31.6% compared to 2023, with phishing the most costly attack vector

  20. Apple Agrees $95M Settlement Over Siri Privacy Violations

    Apple has agreed to a $95m settlement in a class action lawsuit alleging Siri privacy violations, with eligible users receiving up to $20 per Siri-enabled device

Why not watch?

  1. Enhancing Software Supply Chain Management: A DORA-Focused Approach

  2. Alert Fatigue: What Are You and Your Security Teams Missing?

  3. Dispelling the Myths of Defense-Grade Cybersecurity

  4. Mastering Australian Privacy Act and Essential Eight While Improving Cybersecurity Posture

What’s hot on Infosecurity Magazine?