Infosecurity News

  1. Microsoft: Gift Card Fraud Rising, Costing Businesses up to $100,000 a Day

    Microsoft has warned of surging gift card fraud and sophisticated approaches from the group Storm-0539

  2. Fake Pegasus Spyware Strains Populate Clear and Dark Web

    Actors in the clear and dark web are distributing fake source codes of the Pegasus spyware for financial gain

  3. Cybercriminals Exploit Cloud Storage For SMS Phishing Scams

    According to Enea, these campaigns use cloud storage platforms to host malicious websites, sending links via SMS to bypass firewalls

  4. Indian Election Faces Cyber-Attacks, Data Leaks on Dark Web

    Resecurity reported a 300% spike in cyber-attacks post-#OpIsrael, intensifying since #OpIndia last year

  5. NVD Leaves Exploited Vulnerabilities Unchecked

    Over half of CISA’s known exploited vulnerabilities disclosed since February 2024 have not yet been analyzed by NIST’s National Vulnerability Database

  6. National Records of Scotland Data Breached in NHS Cyber-Attack

    National Records of Scotland said sensitive personal data was part of information published online following a ransomware attack on NHS Dumfries and Galloway

  7. GitHub Fixes Maximum Severity Flaw in Enterprise Server

    A newly patched GitHub Enterprise Server bug has a CVSS score of 10

  8. PSNI Faces £750,000 Data Breach Fine After Spreadsheet Leak

    The Police Service of Northern Ireland has been fined £750K following a serious data breach last year

  9. Report Reveals 341% Rise in Advanced Phishing Attacks

    This data comes from SlashNext’s mid-year State of Phishing 2024 report

  10. UserPro Plugin Vulnerability Allows Account Takeover

    The plugin is used by over 20,000 sites and enables users to create customizable community websites

  11. Chinese Hackers Rely on Covert Proxy Networks to Evade Detection

    Volt Typhoon and other Chinese cyber espionage actors are relying on operational relay box (ORB) networks, Mandiant has observed

  12. Mastercard Doubles Speed of Fraud Detection with Generative AI

    Mastercard said it is using generative AI-based predictive technology to double the speed at which it can detect potentially compromised cards

  13. US Unveils $50M Program to Help Hospitals Patch Cybersecurity Gaps

    The US government UPGRADE program aims to automate vulnerability management in hospital environments, ensuring minimum disruption to services

  14. UK Government in £8.5m Bid to Tackle AI Cyber-Threats

    The government is spending millions on research into AI safety

  15. Authorized Push Payment Fraud Cases Surge 12% Annually

    UK Finance figures reveal romance, purchase and investment scams drove up authorised push payment fraud in 2023

  16. Russia’s DoppelGänger Campaign Manipulates Social Media

    Operation Matriochka has been challenging the credibility of journalists and fact-checkers since May 2022

  17. 70% of CISOs Expect Cyber-Attacks in Next Year, Report Finds

    Proofpoint said the shift to remote and hybrid work has expanded the attack surface for many businesses

  18. AI Seoul Summit: 16 AI Companies Sign Frontier AI Safety Commitments

    The signatories of these new commitments in safe AI developments include Chinese and Emirati organizations

  19. Ransomware and AI-Powered Hacks Drive Cyber Investment

    The rise in ransomware and AI generated attacks has contributed to accelerate investment into cyber defenses, Infosecurity Europe found in a new study

  20. Over 60% of Network Security Appliance Flaws Exploited as Zero Days

    Rapid7 found there were more mass compromise events arose from zero-day vulnerabilities than from n-day vulnerabilities in 2023

Why Not Watch?

  1. Modernizing GRC: From Checkbox to Strategic Advantage

  2. Risk-Based IT Compliance: The Case for Business-Driven Cyber Risk Quantification

  3. Mastering AI Security With ISACA’s New AAISM Certification

  4. Exposing AI’s Blind Spots: Security vs Safety in the Age of Gen AI

What’s Hot on Infosecurity Magazine?