Infosecurity News

  1. Shortcut-based Credential Lures Deliver DLL Implants

    A new campaign has been observed using malicious Windows shortcuts in credential-themed ZIP files to deploy PowerShell script

  2. AI Tops Cybersecurity Investment Priorities, PwC Finds

    PwC found that AI security has become a top investment priority in cyber budgets over the next 12 months, ahead of cloud and network security

  3. New China-Aligned Hackers Hit State and Telecom Sectors

    Phantom Taurus is the latest formally identified cyber-espionage group aligned with Chinese state interest

  4. Campaign Warns Solicitors and House Buyers of Payment Diversion Fraud

    The NCA warns that house buyers could face losses of over £80,000 from a type of BEC called payment diversion fraud

  5. ICO: Imgur’s UK Decision Won’t Prevent Regulatory Fine

    Image-sharing platform Imgur has blocked its services within the UK, following a regulatory notice from the ICO

  6. Smishing Campaigns Exploit Cellular Routers to Target Belgium

    New smishing attacks exploit Milesight routers to send phishing texts targeting Belgian users

  7. New Android RAT Klopatra Targets Financial Data

    New Android RAT Klopatra is targeting financial institutions using advanced evasion techniques

  8. US Cuts Federal Funding for MS-ISAC Cybersecurity Program

    The Trump administration wants CISA to transition to a “new model” for supporting local government agencies’ cyber strategy

  9. Gemini Trifecta Highlights Dangers of Indirect Prompt Injection

    Tenable researchers have discovered three vulnerabilities in Google’s Gemini GenAI tool

  10. Asahi Suspends Operations in Japan After Cyber-Attack

    Japanese brewery giant Asahi revealed that a cyber-attack had caused a “system failure”, with order and shipment operations suspended in Japan

  11. CIISec Members Say Budgets Are Falling Behind Threats

    Most UK cybersecurity professionals tell CIISec that their budgets are stagnating

  12. Dutch Authorities Arrest Teens in Foreign Interference Case

    While the exact suspicion was yet to be revealed it is linked to "foreign interference"

  13. AI-Generated Code Used in Phishing Campaign Blocked by Microsoft

    Microsoft Threat Intelligence stopped an AI-driven credential phishing campaign using SVG files disguised as PDFs

  14. National Cyber Authorities Launch OT Security Guidance

    The Five Eyes countries, Germany and the Netherlands are launching a standard for managing OT security

  15. Two-Thirds of Organizations Have Unfilled Cybersecurity Positions

    Recruitment and retention remain a significant challenge for security teams, amid growing pressures on cyber professionals

  16. SonicWall SSL VPN Attacks Escalate, Bypassing MFA

    Akira ransomware attacks on SonicWall SSL VPN appliances are bypassing its MFA for rapid deployment

  17. Harrods Reveals Supply Chain Breach Impacting Online Customers

    Department store Harrods has notified e-commerce customers of a major data breach

  18. Singapore Threatens Meta With Fines Over Facebook Impersonation Scams

    The Singapore police said Facebook is the top platform for online scams in the country

  19. ArcaneDoor Threat Actor Resurfaces in Continued Attacks Against Cisco Firewalls

    An attack campaign has been identified which exploits vulnerabilities in Cisco Adaptive Security Appliance software

  20. Interpol Cracks Down on Large-Scale African Scamming Networks

    The effort, named Operation Contender 3.0, led to the arrest of 260 suspected cybercriminals

Why Not Watch?

  1. Risk-Based IT Compliance: The Case for Business-Driven Cyber Risk Quantification

  2. Mastering AI Security With ISACA’s New AAISM Certification

  3. Audit & Compliance in the Era of AI and Emerging Technology

  4. OT Security Ecosystem for Targeted Risk Reduction and Reporting

What’s Hot on Infosecurity Magazine?