Infosecurity News

  1. Two-Fifths of Senior Citizens Suffer Frequent Fraud Attempts

    A Portsmouth University study finds that large numbers of elderly citizens are being harassed by phone fraudsters

  2. CRYSTALRAY Cyber-Attacks Grow Tenfold Using OSS Tools

    Sysdig said CRYSTALRAY used a variety of open source security tools to scan for vulnerabilities

  3. WP Time Capsule Plugin Update Urged After Critical Security Flaw

    The WordPress plugin has over 20,000 active installations and is used for site backups and update management

  4. Attackers Exploit URL Protections to Disguise Phishing Links

    Barracuda has observed attackers using three different URL protection services to mask their phishing URLs, bypassing email security tools

  5. Pharmacy Giant Rite Aid Hit By Ransomware

    US pharmacy chain Rite Aid has confirmed a cybersecurity ‘incident’ in June

  6. Google Lines Up $23bn Swoop For Startup Wiz Security

    Google is in talks to acquire security startup Wiz Security

  7. Hackers Downloaded Call Logs from Cloud Platform in AT&T Breach

    AT&T discloses data breach where hackers accessed customer call logs from a cloud platform in April

  8. Indiana County Files Disaster Declaration Following Ransomware Attack

    Clay County, Indiana, said a ransomware attack has prevented the administration of critical services, leading to a disaster declaration being filed

  9. Snowflake Breach at Advance Auto Parts Hits 2.3 Million People

    Advance Auto Parts has confirmed a breach of its Snowflake account will impact millions

  10. NATO Set to Build New Cyber Defense Center

    NATO members have agreed to develop a new integrated facility to help improve collective cyber-resilience

  11. CISA Urges Software Makers to Eliminate OS Command Injection Vulnerabilities

    An alert from the CISA and the FBI has urged software manufacturers to work towards the elimination of operating system (OS) command injection vulnerabilities

  12. Fraud Campaign Targets Russians with Fake Olympics Tickets

    Operation Ticket Heist involves 700 web domains to sell fake Olympic Games tickets to a Russian-speaking audience, QuoIntelligence has found

  13. Ransomware Surges Annually Despite Law Enforcement Takedowns

    Symantec figures suggest a 9% annual increase claimed ransomware attacks

  14. Huione Guarantee Marketplace Exposed as Front for Cybercrime

    Researchers at Elliptic claim multibillion dollar Huione Guarantee platform is enabler of scams and money laundering

  15. Smishing Triad Targets India with Fraud Surge

    Smishing Triad's MO involves registering fraudulent domain names that mimic legitimate organizations

  16. Microsoft Outlook Faced Critical Zero-Click RCE Vulnerability

    For trusted senders, the flaw is zero-click, but requires one-click interactions for untrusted ones

  17. Ransomware Groups Prioritize Defense Evasion for Data Exfiltration

    A Cisco report highlighted TTPs used by the most prominent ransomware groups to evade detection, establish persistence and exfiltrate sensitive data

  18. Russian Media Uses AI-Powered Software to Spread Disinformation

    RT leverages the Meliorator software to create fake personas on social media, US, Canadian and Dutch agencies have found

  19. Most Security Pros Admit Shadow SaaS and AI Use

    Next DLP study finds majority of security professionals have used unauthorised apps in past year

  20. Microsoft Fixes Four Zero-Days in July Patch Tuesday

    Microsoft has addressed two actively exploited and two publicly disclosed zero-day bugs this month

Why Not Watch?

  1. Five Non-Negotiable Strategies to Get Identity Security Right in 2026

  2. Revisiting CIA: Developing Your Security Strategy in the SaaS Shared Reality

  3. Audit & Compliance in the Era of AI and Emerging Technology

  4. Mastering AI Security With ISACA’s New AAISM Certification

What’s Hot on Infosecurity Magazine?