Infosecurity News

  1. Iranian Hackers Secretly Aid Ransomware Attacks on US

    CISA and the FBI warned that Iranian APT group, Fox Kitten, has helped ransomware groups to attack US organizations since 2017

  2. IT Engineer Charged For Attempting to Extort Former Employer

    A virtual machine specialist was arrested after a foiled data extortion plot targeting his former employer

  3. Ransomware Attacks Exposed 6.7 Million Records in US Schools

    Ransomware attacks on US schools and colleges have surged, with 491 incidents since 2018, affecting over 8000 institutions

  4. LummaC2 Infostealer Resurfaces With Obfuscated PowerShell Tactics

    LummaC2, a C-based MaaS tool first identified in 2022, has resurfaced to exfiltrate credentials and personal data

  5. Iran-Backed Peach Sandstorm Hackers Deploy New Tickler Backdoor

    The hacking subsidiary of the Iranian Islamic Revolutionary Guard Corps (RGC) has targeted satellite, communications, oil and gas and government sectors in the US and UAE

  6. Money Laundering Dominates UK Fraud Cases

    KPMG research finds money laundering accounted for the majority of fraud cases heard in the first half of 2024

  7. South Korean Spies Exploit WPS Office Zero-Day

    ESET uncovers a South Korean cyber-espionage campaign featuring a zero-day exploit for WPS Office

  8. Microsoft 365 Copilot Vulnerability Exposes User Data Risks

    The flaw in Microsoft 365 Copilot allowed data theft using ASCII smuggling and prompt injection

  9. MOVEit Hack Exposed Personal Data of Half Million TDECU Users

    The Texas Dow Employees Credit Union told the Maine Attorney General the MOVEit data breach compromised information of over 500,000 members

  10. FBI Flawed Data Handling Raises Security Concerns

    A US Justice Department watchdog has found “significant weaknesses” in the FBI’s physical and online media storage and disposal processes

  11. Suspected Cyber-Attack Causes Travel Chaos at Seattle Airport

    The Port of Seattle revealed system outages at the city’s airport may have been caused by a cyber-attack, affecting early Labor Day travel

  12. Uber Hit With €290m GDPR Fine

    The Dutch data protection regulator has imposed a €290m GDPR fine on Uber for storing driver data in the US without adequate safeguards

  13. A Third of Organizations Suffer SaaS Data Breaches

    AppOmni report claims number of companies suffering SaaS-related data breaches has jumped five percentage points over past year

  14. Newly Discovered Group Offers CAPTCHA-Solving Services to Cybercriminals

    Greasy Opal is a Czech Republic-based hacking group selling products that can be used for deploying cyber-attacks

  15. NSA Releases Guide to Combat Living Off the Land Attacks

    The National Security Agency has published a guide to help organizations defend against APT attacks that leverage living off the land techniques

  16. Chinese Velvet Ant Uses Cisco Zero-Day to Deploy Custom Malware

    The Chinese cyber espionage group was observed jailbreaking a Cisco switch appliance using a zero-day exploit

  17. Georgia Tech Sued Over Cybersecurity Violations

    The US government has filed a lawsuit against Georgia Tech for alleged cybersecurity violations as a Department of Defense contractor

  18. Qilin Caught Red-Handed Stealing Credentials in Google Chrome

    Browser credential harvesting is an unusual activity for a ransomware group

  19. YouTube Launches AI Tool to Recover Hacked Accounts

    YouTube’s new AI troubleshooting tool is designed to help users recover and secure their accounts after they’ve been hacked

  20. Liverpool Fans Lose Big in Premier League Ticket Scams

    Liverpool fans were the most frequent and highest-value targets for ticket scams last season, losing over £17,000 to fraudsters

Why Not Watch?

  1. Revisiting CIA: Developing Your Security Strategy in the SaaS Shared Reality

  2. Mastering AI Security With ISACA’s New AAISM Certification

  3. Securing M365 Data and Identity Systems Against Modern Adversaries

  4. Modernizing GRC: From Checkbox to Strategic Advantage

What’s Hot on Infosecurity Magazine?