Infosecurity News

  1. Cyber Essentials Breaks Quarterly Record for Certifications

    The UK government’s Cyber Essentials scheme hits 10,000 certifications for the first time in a quarter but challenges persist

  2. Chinese “LapDogs” ORB Network Targets US and Asia

    SecurityScorecard has discovered a covert cyber-espionage botnet dubbed “LapDogs” linked to China

  3. M&S and Co-op Hacks Classified as Single Cyber Event

    The UK’s Cyber Monitoring Centre (CMC) assessed the incident as a Category 2 systemic event, based on the significant economic impact

  4. Personal Data of Oxford City Council Officers Exposed

    Oxford City Council revealed that attackers accessed data of individuals who worked on Council-administered elections between 2001 and 2022

  5. Meta To Introduce Full Passkey Support for Facebook on Mobiles

    Around half of the world’s top 100 websites have already integrated passkey support

  6. UK Gov Cybersecurity Jobs Average Salary is Under £45,000, Study Finds

    Bridewell’s analysis of advertised UK cybersecurity roles revealed that the public sector offers one the lowest average salaries across all industries

  7. Russia Expert Falls Prey to Elite Hackers Disguised as US Officials

    A prominent expert on Russian information operations was targeted by a sophisticated spear phishing attack likely coming from Russian hackers

  8. Banana Squad’s Stealthy GitHub Malware Campaign Targets Devs

    Banana Squad exploited GitHub to distribute malicious Python code disguised as legitimate tools

  9. North Korean Hackers Deploy Python-Based Trojan Targeting Crypto

    Python RAT PylangGhost, linked to Famous Chollima, targeted crypto professionals via fake job sites

  10. Krispy Kreme Data Breach Puts Employees at Risk of Financial Fraud

    Doughnut maker Krispy Kreme has revealed that sensitive financial and personal data of over 160,000 individuals has been impacted following a November 2024 cyber incident

  11. UBS Employee Data Reportedly Exposed in Third Party Attack

    Banking giant UBS revealed it had suffered a data breach following a cyber-attack on procurement service provider Chain IQ

  12. Researchers Warn of 'Living off AI' Attacks After PoC Exploits Atlassian's AI Agent Protocol

    Cato Networks researchers demonstrated an attack leveraging Atlassian’s AI agent-enabling server

  13. Alleged Ryuk Initial Access Broker Extradited to the US

    An alleged former member of the infamous Ryuk ransomware group has been extradited to the US

  14. Israeli Hacktivists Steal and Burn $90m+ from Iranian Crypo Biz

    Pro-Israel Predatory Sparrow Group steals $90m in crypto from Iranian exchange Nobitex

  15. Critical Linux Flaws Discovered Allowing Root Access Exploits

    Two critical Linux flaws allow unprivileged users to gain root access, affecting major distributions

  16. AI Now Generates Majority of Spam and Malicious Emails

    Barracuda observed a big spike in spam emails generated using AI tools, making up the majority detected in April 2025

  17. GodFather Malware Upgraded to Hijack Legitimate Mobile Apps

    Upgraded GodFather banking malware now uses on-device virtualization to hijack apps, enabling real-time fraud

  18. ClickFix Helps Infostealers Use MHSTA for Defense Evasion

    ClickFix techniques are enabling threat actors to bypass defenses using tools like MSHTA, says ReliaQuest

  19. UK Government Publishes Plan to Boost Cyber Sector Growth

    The new Cyber Growth Action Plan aims to support the UK’s cyber industry, including the development of innovative new technologies and startups

  20. Ransomware Group Qilin Offers Legal Counsel to Affiliates

    The group positions itself “not just as a ransomware group, but as a full-service cybercrime platform”, according to Cybereason

What’s hot on Infosecurity Magazine?