Infosecurity News
Europol Taskforce Disrupts Global Criminal Network Through Supply Chain Attack
The suspected creator of Ghost, an encrypted communication platform allegedly used by organized crime groups worldwide, has been arrested
AT&T Agrees $13m FCC Settlement Over Cloud Data Breach
Telco giant AT&T will pay the FCC $13m to resolve a cloud breach investigation
CISA Issues Advice to Help Eliminate XSS Bugs
The US Cybersecurity and Infrastructure Security Agency is trying to eradicate cross-site scripting vulnerabilities
US Looks to Align Security Across Government
CISA project will align cybersecurity polices across the Federal Civilian Executive Branch of US government
ICO Acts Against Sky Betting and Gaming Over Cookies
Online gambling site, Sky Betting and Gaming, found to have “unlawfully” processed data through advertising cookies
Most Cyber Leaders Fear AI-Generated Code Will Increase Security Risks
83% of organizations use AI to generate code despite rising concerns from security leaders, found a Venafi survey
Singapore Launches Accelerator for International Cybersecurity Startups
The CyberBoost: Catalyse is supported by the Cyber Security Agency of Singapore, the National University of Singapore and UK-based innovation hub Plexal
Over Half of Breached UK Firms Pay Ransom
Cohesity claims ransomware attacks are on the rise in the UK, with 59% of breached firms paying their extortionists
US Ramps Up Sanctions on Spyware-Maker Intellexa
The US Treasury has issued more sanctions against directors of notorious spyware developer Intellexa
White House to Tackle AI-Generated Sexual Abuse Images
White House issues new voluntary commitments to combat image-based sexual abuse in AI
Half of UK Firms Lack Basic Cybersecurity Skills
A new government report reveals that nearly half of UK businesses lack basic cybersecurity skills, while advanced skills like penetration testing and incident management are even more scarce
Advanced Phishing Attacks Put X Accounts at Risk
SIM swapping and “adversary-in-the-middle” can bypass security for accounts on X (formerly Twitter)
Apple to Drop Spyware Lawsuit Over Security Concerns
Apple filed a motion to drop its lawsuit against NSO Group, fears key elements of its cyber defensive measures could be revealed to other spyware vendors
Meta Goes Ahead With Controversial AI Training in UK
Meta has unpaused a project to train AI on Facebook and Instagram posts, despite privacy concerns
23andMe Agrees to $30m Data Breach Settlement
Under-fire DNA testing firm 23andMe will pay $30m to settle class action lawsuit
UK Hosts International Cyber Skills Conference
Nations participating in the event include the US, Canada, EU countries, India, Japan, Singapore, Ghana and Oman
Malicious Actors Spreading False US Voter Registration Breach Claims
An FBI and CISA alert highlighted false claims of breaches of voter registration databases, designed to undermine confidence in US elections
Record $65m Settlement for Hacked Patient Photos
Over 600 patients and employees of Lehigh Valley Health Network in Pennsylvania had their medical record photos hacked and posted on the internet
Microsoft Vows to Prevent Future CrowdStrike-Like Outages
Microsoft will introduce new security capabilities for solution providers outside of kernel mode, preventing events like the CrowdStrike global outage
Irish Data Protection Regulator to Investigate Google AI
Ireland’s Data Protection Commission launches inquiry into whether Google followed GDPR rules over AI model training