Infosecurity News

  1. Fake Law Firms Con Victims of Crypto Scams, Warns FBI

    The FBI has urged cryptocurrency scam victims to be on the alert for fraudsters posing as lawyers

  2. New Medusa Trojan Variant Emerges with Enhanced Stealth Features

    Cleafy identified five different botnets operated by affiliates, each targeting different geographical areas

  3. Dark Web Sees 230% Rise in Singapore Identity Theft

    According to Resecurity, a significant portion of the stolen data was found on the XSS underground forum

  4. Cloud Breaches Impact Nearly Half of Organizations

    A Thales report found that 44% of organizations have experienced a cloud data breach, with human error and misconfigurations the leading root causes

  5. Google's Naptime Framework to Boost Vulnerability Research with AI

    The framework aims to improve automated vulnerability discovery approaches

  6. Suspected North Korean Attack Drains $2m from CoinStats Wallets

    CoinStats has revealed a likely state-sponsored attack impacting over 1500 users

  7. Credential Stuffing Attack Hits 72,000 Levi’s Accounts

    Levi’s reveals major credential stuffing attack impacting over 72,000 customer accounts

  8. Modular Malware Boolka’s BMANAGER Trojan Exposed

    The group has been observed exploiting vulnerabilities through SQL injection attacks since 2022

  9. Android Users Warned of Rising Malware Threat From Rafel RAT

    An earlier publication by Check Point Research had already linked Rafel to the APT-C-35/DoNot Team

  10. China-Based RedJuliett Targets Taiwan in Cyber Espionage Campaign

    The likely Chinese state-sponsored group ran espionage campaigns against Taiwan’s government, academia and diplomacy from Fuzhou, China

  11. Polish Prosecutors Step Up Probe into Pegasus Spyware Operation

    Polish prosecutors investigating a massive political spying operation have seized Pegasus from a government agency

  12. Sellafield Pleads Guilty to Historic Cybersecurity Offenses

    UK’s most hazardous nuclear site, Sellafield, has admitted criminal charges related to IT security failings

  13. Chemical Facilities Warned of Possible Data Exfiltration Following CISA Breach

    CISA has informed chemical facilities that its Chemical Security Assessment Tool (CSAT) was infiltrated by a malicious actor, and potentially exfiltrated sensitive data

  14. US Bans Kaspersky Over Alleged Kremlin Links

    Kaspersky “poses an undue or unacceptable risk to national security,” according to the US Commerce Department’s Bureau of Industry and Security

  15. Synnovis Attackers Publish NHS Patient Data Online

    Ransomware group Qilin has reportedly published nearly 400GB of data stolen following the attack on NHS provider Synnovis in early June

  16. LockBit Most Prominent Ransomware Actor in May 2024

    The LockBit ransomware group returned the fold to launch 176 attacks in May 2024 following a law enforcement takedown, NCC Group found

  17. French Diplomatic Entities Targeted by Russian-Aligned Nobelium

    The French cybersecurity agency has warned that Russian-aligned threat actor has been targeting public organizations for years

  18. Crypto Firm Kraken Calls the Cops After Researchers Attempt “Extortion”

    A cryptocurrency exchange claims to have been extorted after ‘researchers’ exploited a vulnerability to steal millions

  19. Threat Actor Claims AMD and Apple Breaches

    Notorious threat actor IntelBroker is claiming to have stolen data from Apple and AMD

  20. Quishing Campaign Targets Chinese Citizens via Fake Official Documents

    Cyber threat intelligence provider Cyble observed a new malicious QR code phishing campaign targeting Chinese citizens

Why Not Watch?

  1. Mastering AI Security With ISACA’s New AAISM Certification

  2. Time Is a New Attack Surface: Securing Networks with Trusted Time Synchronization

  3. Audit & Compliance in the Era of AI and Emerging Technology

  4. Securing M365 Data and Identity Systems Against Modern Adversaries

What’s Hot on Infosecurity Magazine?