Infosecurity News

  1. DDoS Attack Volume and Magnitude Continues to Soar

    Gcore reported a 56% year-over-year rise in DDoS attacks in H2 2024, highlighting a steep long-term growth tend for the attack technique

  2. Ransomware Gangs Increasingly Prioritize Speed and Volume in Attacks

    Ransomware groups are adopting agile techniques in a quantity-over-quality approach, according to a new report from Huntress

  3. 8Base Ransomware Site Seized, Phobos Suspects Arrested in Thailand

    Four Europeans were arrested in Phuket, believed to be members of the Phobos ransomware group

  4. Apple Mitigates “Extremely Sophisticated” Zero-Day Exploit

    Apple has patched a zero-day vulnerability being exploited in targeted attacks

  5. OpenAI Was Not Breached, Say Researchers

    Kela researchers explain that infostealers are to blame for compromised OpenAI logins

  6. BadIIS Malware Exploits IIS Servers for SEO Fraud

    Trend Micro uncovers BadIIS malware exploiting IIS servers for SEO fraud and malicious redirects

  7. Georgia Hospital Alerts 120,000 Individuals of Data Breach

    Memorial Hospital and Manor, located in Bainbridge, Georgia, has alerted 120,000 individuals that their data was breached following a ransomware attack last November

  8. US: Man Gets 20 Years for $37m Crypto Heist

    A US resident based in Indiana was charged with cyber intrusion and cryptocurrency theft conspiracies

  9. UK Military Fast-Tracks Cybersecurity Recruitment

    The UK MoD has announced it is fast-tracking the recruitment of specialist cybersecurity roles, with recruits offered a starting salary of above £40,000

  10. Experts Dismayed at UK’s Apple Decryption Demands

    Security and privacy experts have questioned a new demand from the UK Home Office on Apple’s encrypted iCloud service

  11. Europol Warns Financial Sector of “Imminent” Quantum Threat

    Europol has urged the financial sector to prioritize quantum-safe cryptography

  12. Most UK GDPR Enforcement Actions Targeted Public Sector in 2024

    27 UK public sector organizations faced ICO enforcement actions in 2024, with three fines issued, according to URM Consulting

  13. Malicious AI Models on Hugging Face Exploit Novel Attack Technique

    The technique, called nullifAI, allows the models to bypass Hugging Face’s protective measures against malicious AI models

  14. Third-Party Risk Management Failures Expose UK Finance Sector

    Orange Cyberdefense found that over half of UK financial firms suffered at least one third-party attack in 2024, linked to significant gaps in risk management strategies

  15. Cybercriminals Weaponize Graphics Files in Phishing Attacks

    Sophos has observed cybercriminals ramping up their use of graphics files as part of email phishing attacks to bypass conventional security protections

  16. Europol Cracks Down on Global Child Abuse Network “The Com”

    US and Europol dismantle neo-Nazi child abuse network in global crackdown against online exploitation

  17. WordPress ASE Plugin Vulnerability Threatens Site Security

    Patchstack urges admins to patch new WordPress ASE plugin vulnerability that lets users restore previous admin privileges

  18. New UK Cyber Monitoring Centre Introduces 'Richter Scale' for Cyber-Attacks

    This new independent non-profit was set up by the UK insurance industry to bring more transparency around cyber events

  19. Lazarus Group Targets Bitdefender Researcher with LinkedIn Recruiting Scam

    A Bitdefender researcher was targeted by North Korea’s Lazarus with the lure of a fake job offer

  20. NCSC Issues Guidance to Protect UK Research and Innovation

    The UK’s National Cyber Security Centre has published a new set of resources for startups and researchers

What’s hot on Infosecurity Magazine?