Infosecurity News
CISA Launches New Cyber Incident Reporting Rules for US Defense Contractors
CISA has revealed the first draft for an update of the Cyber Incident Reporting for Critical Infrastructure (CIRCIA) Act of 2022
US Treasury Urges Financial Sector to Address AI Cybersecurity Threats
The US Treasury report sets out recommendations for financial institutions on addressing immediate AI-related operational risk, cybersecurity and fraud challenges
NIST Unveils New Consortium to Operate National Vulnerability Database
After weeks of speculation, NIST has finally confirmed its intention to establish an industry consortium to develop the NVD in the future
17 Billion Personal Records Exposed in Data Breaches in 2023
Flashpoint recorded a 34.5% rise in reported data breaches in 2023, with ransomware a major driver of this increase
Half of British SMEs Have Lost Data in Past Five Years
Beaming research reveals that nearly half of UK SMEs have lost data since 2019, costing billions
Calls to Incident Response Helpline Double in a Year
A rising volume of calls to the Scottish Cyber and Fraud Centre highlights surging threat levels
NHS Trust Confirms Clinical Data Leaked by “Recognized Ransomware Group”
NHS Dumfries and Galloway confirmed that patient clinical data was leaked following the attack on its systems earlier in March 2024
Google Reports Major Spike in Zero-Day Vulnerabilities
Google detected nearly 100 zero-day vulnerabilities exploited in the wild in 2023
Only 3% of Businesses Resilient Against Modern Cyber Threats
Cisco scored just 3% of organizations as having a ‘mature’ level of readiness to cyber threats, a significant decline from the previous year
Chinese Hackers Target ASEAN Entities in Espionage Campaign
Palo Alto Networks’ Unit 42 observed two Chinese-affiliated APT groups recently conducting cyber espionage campaigns targeting ASEAN organizations
UK Law Enforcers Arrest 400 in Major Fraud Crackdown
British police have swooped on 400 fraud suspects and seized £19m
Only 5% of Boards Have Cybersecurity Expertise, Despite Financial Benefits
The Diligent and Bitsight report found that stronger cybersecurity measures equate to significantly higher financial performance for businesses
Portugal Forces Sam Altman's Worldcoin to Stop Collecting Biometric Data
The cryptocurrency-powered iris-scanning project led by OpenAI CEO Sam Altman must halt collecting data for 90 days in Portugal
US Targets Crypto Firms Aiding Russia Sanctions Evasion
The US Treasury has designated several Russian blockchain and virtual currency firms for sanctions evasion
CISA and FBI Urge Renewed Effort to Eliminate SQL Injection Flaws
The US government wants developers to get serious about tackling SQL injection bugs
New Tycoon 2FA Phishing Kit Raises Cybersecurity Concerns
Discovered by Sekoia in 2023, the kit is associated with Adversary-in-The-Middle (AiTM) attacks
Fake Ozempic Deals on the Rise as Experts Warn of Phishing Scams
Kaspersky's findings revealed phishing pages posing as vendors, enticing users with discounts
UK Blames China for 2021 Hack Targeting Millions of Voters' Data
The UK’s NCSC assesses that China-backed APT31 was “almost certainly” responsible for hacking the email accounts of UK parliamentarians
Police Bust Multimillion-Dollar Holiday Fraud Gang
Law enforcers have arrested nine suspected members of a prolific cyber-fraud gang
Russian Cozy Bear Group Targets German Politicians
Mandiant observes what it claims is the first ever APT29 campaign aimed at political parties
