Infosecurity News

  1. LG TV Vulnerabilities Expose 91,000 Devices

    The issues identified permit unauthorized access to the TV’s root system by bypassing authorization mechanisms

  2. Women Experience Exclusion Twice as Often as Men in Cybersecurity

    A WiCyS report detailed the causes of disparities in the experiences of women working in cybersecurity compared to men, including respect and exclusion

  3. Windows: New 'BatBadBut' Rust Vulnerability Given Highest Severity Score

    A flaw in the Rust standard library exposes Windows systems to command injection attacks

  4. US Claims to Have Recovered $1.4bn in COVID Fraud

    The DoJ says it has seized $1.4bn and charged 3500 defendants in COVID fraud cases since 2021

  5. Microsoft Patches 150 Flaws Including Two Zero-Days

    April’s Patch Tuesday saw fixes for 150 CVEs, including two being actively exploited in the wild

  6. Half of UK Businesses Hit by Cyber-Incident in Past Year, UK Government Finds

    The UK Government’s latest Cyber Security Breaches Survey found a large increase in the proportion of businesses impacted by a cyber-attack or breach in the past 12 months

  7. Hackers Use Malware to Hunt Software Vulnerabilities

    Palo Alto Networks observed growing malware-initiated vulnerability scanning activity

  8. Change Healthcare Hit By Cyber Extortion Again

    RansomHub has surfaced threatening to expose stolen data unless another ransom is paid

  9. Research Unearths RUBYCARP’s Multi-Miner Assault on Crypto

    Sysdig stated that, by deploying multiple miners, the group decreased attack time and detection risk

  10. Foreign Interference Drives Record Surge in IP Theft

    DTEX claims industrial espionage and IP theft are at an all-time high thanks to malicious insiders

  11. Over 90,000 D-Link NAS Devices Are Under Attack

    Threat actors are targeting a high severity vulnerability in close to 100,000 legacy D-Link devices

  12. Why Identity Management is Key in a Cyber Resilience Strategy

    For the fourth edition of Identity Management Day, the Identity Defined Security Alliance shared staggering numbers on the boom of identity-related cyber incidents

  13. US Federal Data Privacy Law Introduced by Legislators

    Two US lawmakers have published a draft federal data privacy law, dubbed the American Privacy Rights Act, which aims to provide protections for the personal information of all US citizens

  14. Byakugan Infostealer Capabilities Revealed

    Fortinet said the malware functions identified include screen monitoring, screen capturing, cryptomining and more

  15. New Malware “Latrodectus” Linked to IcedID

    The malware, discovered by Proofpoint and Team Cymru, was mainly utilized by initial access brokers

  16. Famous YouTube Channels Hacked to Distribute Infostealers

    The AhnLab Security Intelligence Center discovered new infostealer distribution campaigns leveraging legitimate YouTube channels

  17. UK Retailers Lost £11.3bn to Fraud in 2023

    Research from Ayden and the CEBR found that 35% of UK retailers fell victim to fraudulent activity, cyber-attacks or data leaks over the past 12 months

  18. Hospital IT Helpdesks Targeted By Voice Fraudsters, Warns HHS

    Threat actors are socially engineering healthcare IT helpdesk staff to steal money, the government has warned

  19. Veterinary Giant CVS Reveals Major Cyber-Attack

    Veterinary services provider CVS Group today notified markets of a security breach last week

  20. Chinese Threat Actors Deploy New TTPs to Exploit Ivanti Vulnerabilities

    Mandiant research details how Chinese espionage groups are deploying new tools post-exploitation of recently patched Ivanti vulnerabilities

Why Not Watch?

  1. Mastering AI Security With ISACA’s New AAISM Certification

  2. Audit & Compliance in the Era of AI and Emerging Technology

  3. Exposing AI’s Blind Spots: Security vs Safety in the Age of Gen AI

  4. Risk-Based IT Compliance: The Case for Business-Driven Cyber Risk Quantification

What’s Hot on Infosecurity Magazine?