Infosecurity News

  1. Former Congressman Santos Admits Identity Theft and Fraud

    Former US Representative George Santos pleads guilty to multiple fraud and identity theft charges

  2. Jewish Home Lifecare Notifies 100,000 Victims of Ransomware Breach

    Healthcare organization Jewish Home Lifecare has revealed that a 2024 data breach hit over 100,000 customers

  3. FBI and CISA Assure Public on Election Ransomware Security

    The FBI and CISA said ransomware on local networks may cause delays but won't impact voting system integrity

  4. New Tool Xeon Sender Enables Large-Scale SMS Spam Attacks

    Xeon Sender features SMS spam via APIs, Nexmo/Twilio credentials validation and phone number generation

  5. Microsoft Apps for macOS Exposed to Library Injection Attacks

    Cisco Talos researchers found a flaw in eight Microsoft apps for macOS that could enable library injection attacks, putting sensitive data at risk

  6. Ransomware Resilience Drives Down Cyber Insurance Claims

    Cyber insurance claims in the UK have fallen by over a third between 2022 and 2024 as businesses refuse ransom payments

  7. NCSC Opens Cyber Resilience Audit Scheme to Applicants

    The UK’s National Cyber Security Centre wants prospective auditors to check compliance with its Cyber Assessment Framework

  8. Unicoin Staff Locked Out of G-Suite in Mystery Attack

    Employees at crypto firm Unicoin couldn’t access Google services for four days during a recent breach

  9. US Bipartisan Committee Urges Investigation Into Chinese Wi-Fi Routers

    Two Congressmen fear that the Chinese government might use TP-Link Wi-Fi routers to deploy hacking and espionage campaigns in the US

  10. Microsoft Mandates MFA for All Azure Sign-Ins

    Microsoft is mandating MFA for all Azure sign-ins, with customers given 60-day advance notices to start implementation

  11. Florida-Based National Public Data Confirms Data Breach

    The US data broker did not address the threat actor’s claim that the breach concerns 2.9 billion records

  12. Geopolitical Tensions Drive Explosion in DDoS Attacks

    Radware found that Web DDoS attacks rose by 265% in H1 2024, driven by hacktivist groups amid rising geopolitical tensions

  13. Cyber-criminals Exploited Paris Olympics With Fake Domains

    166 Olympics-related domains displayed signs of DNS abuse like keyword stuffing and typosquatting

  14. Advanced ValleyRAT Campaign Hits Windows Users in China

    Discovered by FortiGuard Labs, the ValleyRAT campaign targets Chinese Windows systems

  15. Russia's FSB Behind Massive Phishing Espionage Campaign

    Citizen Lab attributed the campaign to Coldriver, a notorious FSB subordinate team, and Coldwastrel, a new, Russian-aligned group

  16. Another Record Year For Ransomware Beckons as Crypto Profits Hit $460m

    Ransom payments in the first half of 2024 hit $460m, according to Chainalysis

  17. Google Warns of Iranian Cyber-Attacks on Presidential Campaigns

    Google has highlighted sophisticated spearphishing attacks by Iranian state actor APT42 targeting individuals associated with the US Presidential campaign

  18. SolarWinds Urges Upgrade After Revealing Critical RCE Bug

    SolarWinds has discovered and fixed a critical remote code execution vulnerability in Web Help Desk

  19. New Phishing Attack Uses Sophisticated Infostealer Malware

    The phishing attack uses infostealer malware to target saved passwords, credit cards & Bitcoin info

  20. Manufacturing Firm Loses $60m in BEC Scam

    Manufacturing firm Orion revealed it has lost $60m in a business email compromise (BEC) scam, which targeted a non-executive employee

Why Not Watch?

  1. Modernizing GRC: From Checkbox to Strategic Advantage

  2. Securing M365 Data and Identity Systems Against Modern Adversaries

  3. Five Non-Negotiable Strategies to Get Identity Security Right in 2026

  4. Time Is a New Attack Surface: Securing Networks with Trusted Time Synchronization

What’s Hot on Infosecurity Magazine?