Infosecurity News

  1. Fifth of CISOs Admit Staff Leaked Data Via GenAI

    One in five UK organizations have had corporate data exposed via generative AI, says RiverSafe

  2. North Korean Hackers Target Dozens of Defense Companies

    North Korean hackers ran a year-long cyber-espionage campaign against South Korean defense companies

  3. US Imposes Visa Restrictions on Alleged Spyware Figures

    The move is reportedly part of a broader effort to counter the misuse of surveillance technology

  4. End-to-End Encryption Sparks Concerns Among EU Law Enforcement

    The call comes amid the rollout of end-to-end encryption on Meta’s Messenger platform

  5. Millions of Americans' Data Potentially Exposed in Change Healthcare Hack

    Millions of Americans may be impacted by the Change Healthcare data breach as UnitedHealth confirms exposed data includes personal and health information

  6. Vulnerability Exploitation on the Rise as Attackers Ditch Phishing

    Mandiant’s latest M-Trends report found that vulnerability exploitation was the most common initial infection vector in 2023, making up 38% of intrusions

  7. Russian Sandworm Group Hit 20 Ukrainian Energy and Water Sites

    Notorious APT44 group Sandworm launched a major campaign against Ukrainian critical infrastructure in March

  8. Russian APT28 Group in New “GooseEgg” Hacking Campaign

    Microsoft has warned of a long-running credential stealing campaign from Russia’s APT28

  9. Fraudsters Exploit Telegram’s Popularity For Toncoin Scam

    The scheme was uncovered by Kaspersky and has been operational since November 2023

  10. Dependency Confusion Vulnerability Found in Apache Project

    This occurs when a private package fetches a similar public one, leading to exploit due to misconfigurations in package managers

  11. CrushFTP File Transfer Vulnerability Lets Attackers Download System Files

    CrushFTP is urging customers to download v11 of its file transfer platform, with attackers actively exploiting a vulnerability that allows them to download system files

  12. NSA Launches Guidance for Secure AI Deployment

    The new document is the first release from NSA’s Artificial Intelligence Security Center (AISC), in partnership with other government agencies in the US and other Five Eyes countries

Why not watch?

  1. Understand and Combat the Top Healthcare Cloud Threats Today

  2. Adapting to Tomorrow's Threat Landscape: AI's Role in Cybersecurity and Security Operations in 2024

  3. Uncovering DDoS Vulnerabilities with Simulation Testing: A Case Study

  4. Is MFA Enough? Strategies for Next-Level Identity Security in 2024

What’s hot on Infosecurity Magazine?