Infosecurity News
Lessons from Helsinki: NCSC-FI's Role in Mitigating a Major Data Breach
A representative of NCSC-FI shared some lessons learned from a 2024 data breach affecting the Finnish capital
Malware Campaign Uses Rogue WordPress Plugin to Skim Credit Cards
A long-running malware campaign targeting WordPress via a rogue plugin has been observed skimming data, stealing credentials and user profiling
Mclaren Health Care Data Breach Impacts Over 743,000 Patients
Data breach at McLaren Health Care affecting over 743,000 individuals has been linked to a ransomware attack
Half of Security Pros Want GenAI Deployment Pause
Cobalt found that many security professionals believe a “strategic pause” in genAI deployment is necessary to recalibrate defenses
Reported Impersonation Scams Surge 148% as AI Takes Hold
New ITRC data reveals identity crimes are down but impersonation scams now account for a third of all scams
NCSC Urges Experts to Join Cyber Advisor Program
The NCSC says its Cyber Advisor program is not growing fast enough
Cyber Intel Pros and Hobbyists Can Now Report Threats Anonymously
Draugnet is a new anonymous threat reporting platform built for the MISP ecosystem
Cyber Fattah Leaks Data from Saudi Games in Alleged Iranian Operation
A cyber-attack by pro-Iranian group Cyber Fattah has leaked personal information from the Saudi Games online
Fake Web3 Wallet Prompt Steals $43,000 from CoinMarketCap Users
A cyber-attack on CoinMarketCap exposed users to a fake Web3 wallet prompt, draining $43,266 from wallets
US Warns of Heightened Risk of Iranian Cyber-Attacks After Military Strikes
The DHS warned of a heightened risk of cyber and physical attacks on US targets by Iran in retaliation for strikes on Iranian nuclear facilities over the weekend
Cyber Essentials Breaks Quarterly Record for Certifications
The UK government’s Cyber Essentials scheme hits 10,000 certifications for the first time in a quarter but challenges persist
Chinese “LapDogs” ORB Network Targets US and Asia
SecurityScorecard has discovered a covert cyber-espionage botnet dubbed “LapDogs” linked to China
M&S and Co-op Hacks Classified as Single Cyber Event
The UK’s Cyber Monitoring Centre (CMC) assessed the incident as a Category 2 systemic event, based on the significant economic impact
Personal Data of Oxford City Council Officers Exposed
Oxford City Council revealed that attackers accessed data of individuals who worked on Council-administered elections between 2001 and 2022
Meta To Introduce Full Passkey Support for Facebook on Mobiles
Around half of the world’s top 100 websites have already integrated passkey support
UK Gov Cybersecurity Jobs Average Salary is Under £45,000, Study Finds
Bridewell’s analysis of advertised UK cybersecurity roles revealed that the public sector offers one the lowest average salaries across all industries
Russia Expert Falls Prey to Elite Hackers Disguised as US Officials
A prominent expert on Russian information operations was targeted by a sophisticated spear phishing attack likely coming from Russian hackers
Banana Squad’s Stealthy GitHub Malware Campaign Targets Devs
Banana Squad exploited GitHub to distribute malicious Python code disguised as legitimate tools
North Korean Hackers Deploy Python-Based Trojan Targeting Crypto
Python RAT PylangGhost, linked to Famous Chollima, targeted crypto professionals via fake job sites
Krispy Kreme Data Breach Puts Employees at Risk of Financial Fraud
Doughnut maker Krispy Kreme has revealed that sensitive financial and personal data of over 160,000 individuals has been impacted following a November 2024 cyber incident