Infosecurity News
NCSC Publishes Practical Security Guidance For SMBs
The UK’s National Cyber Security Centre has launched a new online security guide to help smaller organizations better manage risk
Two Ivanti Zero-Days Actively Exploited in the Wild
Ivanti has released mitigation steps after reports of active exploitation of Connect Secure and Policy Secure vulnerabilities
Malware Takedowns Show Progress, But Fight Against Cybercrime Not Over
Law enforcement operations on cybercriminal infrastructure have proven efficient at hindering malware activity but are far from being a silver bullet, according to Recorded Future
Cyber Insecurity and Misinformation Top WEF Global Risk List
Cyber-attacks and misinformation top WEF's list of global risks, with cybercrime poised to exploit tech advancements and AI dominance raising concerns about vulnerability
Only 4% of US States Fully Prepared for Cyber-Attacks Targeting Elections
The Arctic Wolf report found that 14.3% of officials believe their state is not prepared at all to deal with election-targeted cyber incidents, including phishing and disinformation campaigns
Cyber Insurance Market to be Worth Over $90bn by 2033
Market.Us found that the global cyber insurance market will be worth $90.6bn by 2033, driven by increasing cyber-threats and growing regulations
Ukrainian “Blackjack” Hackers Take Out Russian ISP
State-backed Ukrainian hacking group Blackjack has launched a destructive attack against a Moscow-based ISP in retaliation for Kyivstar attack
Microsoft Fixes 12 RCE Bugs in January Patch Tuesday
Critical Hyper-V flaw is one of 12 remote code execution vulnerabilities fixed this Patch Tuesday
Flaw in AI Plugin Exposes 50,000 WordPress Sites to Remote Attack
The vulnerability could lead to remote code execution on affected systems
82% of Companies Struggle to Manage Security Exposure
The figure comes from XM Cyber’s 2024 State of Security Posture Report, exploring how organizations approach cybersecurity challenges
Cybersecurity Deals Boom as Investment Dips, Pinpoint Reports
2023 saw an increased number of deals in the cybersecurity industry, but the overall investment in the sector dropped, Pinpoint revealed
New Decryption Key Available for Babuk Tortilla Ransomware Victims
Cisco Talos announced that a decryption key for the Babuk Tortilla ransomware variant is available for victims to download
Nigerian Gets 10 Years For Laundering Scam Funds
A Nigerian national has been sentenced to a decade behind bars for his role in romance and BEC scam
LoanDepot Confirms Ransomware Attack in SEC Filing
Mortgage lender LoanDepot has revealed a ransomware breach resulting in stolen and encrypted data
New Research: Tackling .NET Malware With Harmony Library
New research from Check Point explores the significance of code manipulation in malware analysis
Anti-Hezbollah Groups Hack Beirut Airport Screens
AP said departure and arrival screens displayed a message accusing Hezbollah of jeopardizing Lebanon
Turkish APT Sea Turtle Resurfaces, Spies on Dutch IT Firms
Turkey-aligned espionage group Sea Turtle has been conducting campaigns targeting Dutch telecommunication and media organizations
North Korean Hackers Stole $600m in Crypto in 2023
North Korean hackers remain effective in stealing cryptocurrency despite growing international law enforcement action
Merck Settles With Insurers Over $700m NotPetya Claim
Pharma giant Merck has reached a settlement with cyber-insurers that refused to pay out for “acts of war”
Security Firm Certik’s Account Hijacked to Spread Crypto Drainer
Blockchain security firm Certik had its own social media account hacked to push a crypto scam
