Infosecurity News
Researchers Uncover New “Conversation Overflow” Tactics
SlashNext said the method deceives ML systems to deliver phishing messages into victims’ inboxes
Research Shows IT and Construction Sectors Hardest Hit By Ransomware
The Ontinue report draws from an extensive analysis of data collected from 600,000 endpoints
NCSC Publishes Security Guidance For Cloud-Hosted SCADA
The UK’s National Cyber Security Centre wants to help organizations migrate their SCADA systems to the cloud
Prolific Chinese Threat Campaign Targets 100+ Victims
Trend Micro uncovers Chinese cyber-espionage campaign Earth Krahang
Moldovan Behind E-Root Marketplace Gets US Federal Prison Term
Sandu Boris Diaconu was involved in conspiracy to commit access device and computer fraud
FCC Agrees to Cyber Trust Mark for IoT Products
The voluntary FCC program will allow smart device manufacturers to demonstrate to consumers that their product has met robust cybersecurity standards
Over 50,000 Vulnerabilities Discovered in DoD Systems Through Bug Bounty Program
Seven years into its ethical hacking program, the Pentagon received its 50,000th vulnerability report on March 15
Three New Critical Vulnerabilities Uncovered in Argo
The flaws, identified by KTrust, enable attackers to bypass rate limits and brute force protection mechanisms
Microsoft: 87% of UK Organizations Vulnerable to Costly Cyber-Attacks
A Microsoft report found that 87% of UK organizations are either vulnerable or at high-risk of cyber-attacks, and urged investment in AI as a security tool
NHS Dumfries and Galloway Warns of “Significant” Data Theft
Scottish NHS trust reveals patient and staff data may have been taken in security breach
IMF Investigates Serious Cybersecurity Breach
The International Monetary Fund says it is still looking into a recent compromise of multiple email accounts
NIST National Vulnerability Database Disruption Sees CVE Enrichment on Hold
Vulnerability data has stopped being added to the most widely used software vulnerability database for over a month, putting organizations at risk – and nobody knows why
HSE Misconfiguration Exposed Over a Million Irish Citizens’ Vaccine Status
An AppOmni researcher detailed a misconfiguration in the HSE COVID Vaccination Portal, exposing the health and personal data of over a million Irish citizens
TikTok Faces US Ban as House Votes to Compel ByteDance to Sell
The vote saw 352 members of Congress supporting the bill while only 65 opposed it
New Report Suggests Surge in SaaS Assets, Employee Data Sharing
DoControl said one in six employees was found to have shared company data via personal email
French Employment Agency Data Breach Could Affect 43 Million People
France’s employment agency suffered a massive breach, exposing the data of users who registered over the past 20 years
US Government to Investigate Change Healthcare Ransomware Attack
The US government will investigate whether protected healthcare information was breached in the Change Healthcare ransomware attack, and if the firm complied with HIPAA rules
Google Paid $10m in Bug Bounties to Security Researchers in 2023
Google revealed it paid $10m in bug bounty payments to more than 600 researchers in 2023, with the highest single payment being £113,337
Fortinet Patches Critical Bug in FortiClient EMS
Fortinet has released security updates to fix several critical vulnerabilities in its products
Meta Sues Former VP After Defection to AI Startup
Meta is suing one of its former executives for stealing sensitive documents before leaving the company
