Infosecurity News

  1. Lawmakers Slam UK Government’s “Ostrich Strategy” for Cybersecurity

    An influential parliamentary committee claims government short-termism is exposing the country to ransomware catastrophe

  2. Victims Lose $47m to Crypto Phishing Scams in February

    Some 57,000 victims lost $47m in phishing scams targeting their cryptocurrency last month

  3. Magnet Goblin Exploits Ivanti Vulnerabilities

    The threat actor uses custom Linux malware to pursue financial gain, according to Check Point Research

  4. BianLian Threat Actor Shifts Focus to Extortion-Only Tactics

    GuidePoint said the threat actor gained initial access via vulnerabilities in a TeamCity server

  5. NSA Launches Top 10 Cloud Security Mitigation Strategies

    The advisory is associated with ten companion cybersecurity information sheets detailing how to implement each strategy

  6. Third-Party Breach and Missing MFA Contributed to British Library Cyber-Attack

    A British Library report found the most likely source of the incident was the compromise of third-party account credentials and no MFA was in place to stop the attackers

  7. Telemedicine Business Owner Faces 20 Years For $136m Fraud

    Nurse practitioner pleads guilty to $136m Medicare fraud plot involving her telemedicine companies

  8. Russia’s Midnight Blizzard Accesses Microsoft Source Code

    Threat group APT29 is using secrets stolen in an earlier attack to compromise Microsoft’s internal systems

  9. Dropbox Used to Steal Credentials and Bypass MFA in Novel Phishing Campaign

    Darktrace reveals a novel phishing campaign where attackers leveraged legitimate Dropbox infrastructure to steal credentials before bypassing MFA

  10. UnitedHealth Sets Timeline to Restore Change Healthcare Systems After BlackCat Hit

    UnitedHealth said it expects Change Healthcare’s key systems to be restored by March 18, amid reports it paid a $22m ransom to BlackCat

  11. RATs Spread Via Fake Skype, Zoom, Google Meet Sites

    Zscaler’s ThreatLabz discovered malware spreading SpyNote RAT to Android and NjRAT/DCRat to Windows

  12. Evasive Panda Targets Tibet With Trojanized Software

    ESET researchers said the attackers strategically leveraged the Monlam Festival, targeting individuals associated with Tibetan Buddhism

Why not watch?

  1. How to Secure Remote Connectivity within Operational Technology Environments

  2. Uncovering DDoS Vulnerabilities with Simulation Testing: A Case Study

  3. Disinformation Defense: Protecting Businesses from the New Wave of AI-Powered Cyber Threats

  4. Adapting to Tomorrow's Threat Landscape: AI's Role in Cybersecurity and Security Operations in 2024

What’s hot on Infosecurity Magazine?