Infosecurity News

  1. CISA: Patch Critical GeoServer GeoTools Bug Now

    CISA has told federal agencies to patch a critical GeoServer GeoTools vulnerability under active exploitation

  2. MHTML Exploited By APT Group Void Banshee

    Void Banshee targeted North American, European and Southeast Asian regions with the Atlantida stealer

  3. Iranian MuddyWater Upgrades Arsenal With New Custom Backdoor

    The Iranian APT group has shifted away from using legitimate remote monitoring tools to compromise its victims

  4. Hacktivists Claim Leak Over 1 Terabyte of Disney Data

    Disney unreleased projects and internal data are part of a data leak claimed by hacktivist group ‘NullBulge’

  5. Hacktivist Groups Target Romania Amid Geopolitical Tensions

    CyberDragon and Cyber Army of Russia, among others, have claimed responsibility for the attacks

  6. Half of SMEs Unprepared for Cyber-Threats

    JumpCloud found that half of SME IT teams believe they lack the resources and staffing to defend their organization against cyber-threats

  7. Kaspersky to Quit US Following Commerce Department Ban

    Russian AV-maker Kaspersky is set to shutter its US operations from Saturday

  8. Two-Fifths of Senior Citizens Suffer Frequent Fraud Attempts

    A Portsmouth University study finds that large numbers of elderly citizens are being harassed by phone fraudsters

  9. CRYSTALRAY Cyber-Attacks Grow Tenfold Using OSS Tools

    Sysdig said CRYSTALRAY used a variety of open source security tools to scan for vulnerabilities

  10. WP Time Capsule Plugin Update Urged After Critical Security Flaw

    The WordPress plugin has over 20,000 active installations and is used for site backups and update management

  11. Attackers Exploit URL Protections to Disguise Phishing Links

    Barracuda has observed attackers using three different URL protection services to mask their phishing URLs, bypassing email security tools

  12. Pharmacy Giant Rite Aid Hit By Ransomware

    US pharmacy chain Rite Aid has confirmed a cybersecurity ‘incident’ in June

  13. Google Lines Up $23bn Swoop For Startup Wiz Security

    Google is in talks to acquire security startup Wiz Security

  14. Hackers Downloaded Call Logs from Cloud Platform in AT&T Breach

    AT&T discloses data breach where hackers accessed customer call logs from a cloud platform in April

  15. Indiana County Files Disaster Declaration Following Ransomware Attack

    Clay County, Indiana, said a ransomware attack has prevented the administration of critical services, leading to a disaster declaration being filed

  16. Snowflake Breach at Advance Auto Parts Hits 2.3 Million People

    Advance Auto Parts has confirmed a breach of its Snowflake account will impact millions

  17. NATO Set to Build New Cyber Defense Center

    NATO members have agreed to develop a new integrated facility to help improve collective cyber-resilience

  18. CISA Urges Software Makers to Eliminate OS Command Injection Vulnerabilities

    An alert from the CISA and the FBI has urged software manufacturers to work towards the elimination of operating system (OS) command injection vulnerabilities

  19. Fraud Campaign Targets Russians with Fake Olympics Tickets

    Operation Ticket Heist involves 700 web domains to sell fake Olympic Games tickets to a Russian-speaking audience, QuoIntelligence has found

  20. Ransomware Surges Annually Despite Law Enforcement Takedowns

    Symantec figures suggest a 9% annual increase claimed ransomware attacks

Why Not Watch?

  1. Securing M365 Data and Identity Systems Against Modern Adversaries

  2. How To Enhance Security Operations with AI-Powered Defenses

  3. Audit & Compliance in the Era of AI and Emerging Technology

  4. Five Non-Negotiable Strategies to Get Identity Security Right in 2026

What’s Hot on Infosecurity Magazine?