Infosecurity News

  1. Most UK GDPR Enforcement Actions Targeted Public Sector in 2024

    27 UK public sector organizations faced ICO enforcement actions in 2024, with three fines issued, according to URM Consulting

  2. Malicious AI Models on Hugging Face Exploit Novel Attack Technique

    The technique, called nullifAI, allows the models to bypass Hugging Face’s protective measures against malicious AI models

  3. Third-Party Risk Management Failures Expose UK Finance Sector

    Orange Cyberdefense found that over half of UK financial firms suffered at least one third-party attack in 2024, linked to significant gaps in risk management strategies

  4. Cybercriminals Weaponize Graphics Files in Phishing Attacks

    Sophos has observed cybercriminals ramping up their use of graphics files as part of email phishing attacks to bypass conventional security protections

  5. Europol Cracks Down on Global Child Abuse Network “The Com”

    US and Europol dismantle neo-Nazi child abuse network in global crackdown against online exploitation

  6. WordPress ASE Plugin Vulnerability Threatens Site Security

    Patchstack urges admins to patch new WordPress ASE plugin vulnerability that lets users restore previous admin privileges

  7. New UK Cyber Monitoring Centre Introduces 'Richter Scale' for Cyber-Attacks

    This new independent non-profit was set up by the UK insurance industry to bring more transparency around cyber events

  8. Lazarus Group Targets Bitdefender Researcher with LinkedIn Recruiting Scam

    A Bitdefender researcher was targeted by North Korea’s Lazarus with the lure of a fake job offer

  9. NCSC Issues Guidance to Protect UK Research and Innovation

    The UK’s National Cyber Security Centre has published a new set of resources for startups and researchers

  10. Spanish Police Arrest Suspected NATO and US Army Hacker

    Spain’s National Police force has arrested a suspected data thief who targeted government and military victims

  11. Sophisticated Phishing Campaign Targets Ukraine’s Largest Bank

    A new phishing attack by UAC-0006 has been discovered targeting PrivatBank with malicious files in password-protected archives to evade detection

  12. Ransomware Payments Decline 35% as Victims Resist Demands

    Chainalysis found that ransomware payments fell significantly year-over-year despite a recorded increase in the number of ransomware events in 2024

  13. Mobile Malware Targeting Indian Banks Exposes 50,000 Users

    Indian banking malware attack exposes 50,000 users, stealing financial data via SMS interception and phishing

  14. Five Eyes Launch Guidance to Improve Edge Device Security

    The UK and its Five Eyes partners have launched new security guidance for edge device manufacturers and network defenders

  15. Cybercriminals Eye DeepSeek, Alibaba LLMs for Malware Development

    Check Point has observed cybercriminals toy with Alibaba’s Qwen LLM to develop infostealers

  16. Destructive Attacks on Financial Institutions Surge

    Contrast Security reveals a 12.5% annual increase in destructive cyber-attacks on banks

  17. DaggerFly-Linked Linux Malware Targets Network Appliances

    DaggerFly’s Lunar Peek campaign is using a new malware strain, identified by FortiGuard Labs, to compromise Linux networks

  18. Sophisticated Phishing Attack Bypasses Microsoft ADFS MFA

    A sophisticated phishing campaign targeting Microsoft ADFS has been observed, affecting more than 150 organizations

  19. Threefold Increase in Malware Targeting Credential Stores

    Picus Security reports infostealer surge after revealing credentials appear in 29% of malware

  20. Surge in Infostealer Attacks Threatens EMEA Organizations' Data Security

    Check Point Research has found over 10 million stolen credentials associated with EMEA organizations exposed on cybercrime markets

What’s hot on Infosecurity Magazine?