Infosecurity News
US Senators Propose Cybersecurity Agriculture Bill
The Farm and Food Cybersecurity Act has cross-party support and aims enhance the US agriculture sector’s cyber defenses
Sysdig Report Exposes 91% Failure in Runtime Scans
The research also revealed 69% of enterprises have yet to integrate AI into cloud environments
US Sanctions Egyptian IT Experts Aiding ISIS in Cybersecurity
The US said the two Egyptian nationals provided cybersecurity training and support to ISIS leadership and supporters, as well as helping enable the group to use cryptocurrency
Citibank Sued For Failing to Protect Fraud Victims
New York attorney general launches legal case against Citi for failing to reimburse or protect fraud victims
City Cyber Taskforce Launches to Secure Corporate Finance
A new initiative led by the ICAEW and NCSC launches today to improve cybersecurity during deals and investments
Schneider Electric Confirms Data Accessed in Ransomware Attack
Energy firm Schneider Electric said a ransomware incident, reportedly perpetrated by the Cactus group, has led to data being accessed from its Sustainability Business division
Orange España Breach: Dark Web Flooded With Operator Credentials
Resecurity discovered over 1572 compromised customers from RIPE, APNIC, AFRINIC and LACNIC
Alpha Ransomware Group Launches Data Leak Site on the Dark Web
Netenrich analyzed the ransom note pattern saying the group is refining their messages to victims
Rust Payloads Exploiting Ivanti Zero-Days Linked to Sophisticated Sliver Toolkit
After analyzing the 12 Rust payloads exploiting Ivanti ConnectSecure vulnerabilities, Synacktiv found they all enabled a sophisticated post-exploitation toolkit
Ransomware Incidents Hit Record High, But Law Enforcement Takedowns Slow Growth
New data from Corvus found that ransomware incidents rose by 68% in 2023 compared to 2022, but law enforcement takedowns led to a fall in Q4
FBI: Scammers Are Sending Couriers to Collect Cash From Victims
The FBI is warning the public not to fall for scams where they are urged to liquidate assets and hand them to couriers for ‘safekeeping’
UK House of Lords Calls For Legislation on Facial Recognition Tech
The House of Lords has questioned the legal basis for police use of facial recognition and wants parliament to legislate
Phobos Ransomware Family Expands With New FAUST Variant
FortiGuard said the variant was found in an Office document using a VBA script
US Senator Exposes NSA Purchase of Americans’ Internet Records
The call follows an FTC order saying data brokers must secure consent before selling user data
Nigerian 'Yahoo Boys' Behind Social Media Sextortion Surge in the US
Nigeria-based cybercriminals known as Yahoo Boys are the main drivers of a financial sextortion increase on TikTok, Instagram and Snapchat, targeting English-speaking teenagers
Microsoft Provides Defense Guidance After Nation-State Compromise
Microsoft said the Russian nation-state group Midnight Blizzard obfuscated its attack through the use of an OAuth application
Dark Web Drugs Vendor Forfeits $150m After Guilty Plea
Drug trafficker Banmeet Singh made $150m in cryptocurrency from dark web sales
CI/CD at Risk as Exploits Released For Critical Jenkins Bug
Customers are urged to patch now after exploits are released for critical vulnerability in Jenkins
Ukraine Arrests Hacker for Assisting Russian Missile Strikes
Ukraine’s security services said that the IT specialist from Kharkiv targeted government websites and provided intelligence to Russia to carry out missile strikes
New Leaks Expose Web of Iranian Intelligence and Cyber Companies
Recorded Future analyzed leaks describing the close relationship between the Iranian government and Iran-aligned APT groups
