Infosecurity News

  1. UK at High Risk of Catastrophic Ransomware Attack, Government Ill-Prepared

    A UK parliament report found that large swathes of critical national infrastructure are vulnerable to ransomware

  2. Microsoft Fixes 34 CVEs and One Zero-Day in December Patch Tuesday

    Microsoft has released updates for dozens of vulnerabilities including one zero-day flaw

  3. UK Ministry of Defence Fined For Afghan Data Breach

    The ICO has fined the Ministry of Defence after an email data breach put lives in danger

  4. Ukraine Claims it “Paralyzed” Russia’s Tax System

    Ukrainian Ministry of Defense says cyber-attack wiped Russian tax system servers

  5. Widespread Security Flaws Blamed for Northern Ireland Police Data Breach

    An independent review of the August 2023 PSNI data breach found major security failings in the police department’s IT systems

  6. Ukraine's Largest Phone Operator Hack Tied to War With Russia

    Kyivstar announced its mobile network had temporarily been shut down due to a major cyber-attack on its systems

  7. Threat Actor Targets Recruiters With Malware

    Recruiters are urged to educate staff about a surge in phishing attacks from threat group TA4557

  8. Backup Migration WordPress Plugin Flaw Impacts 90,000 Sites

    Users of popular WordPress plugin Backup Migration are urged to patch a new critical vulnerability

  9. Apache Warns of Critical Vulnerability in Struts 2

    Users are urged to patch critical vulnerability in Apache Struts 2 immediately

  10. Lazarus Group Targets Log4Shell Flaw Via Telegram Bots

    Cisco Talos said Operation Blacksmith leveraged the flaw in publicly facing VMWare Horizon servers

  11. Europol Raises Alarm on Criminal Misuse of Bluetooth Trackers

    The majority of reported cases involved cocaine smuggling

  12. EU Reaches Agreement on AI Act Amid Three-Day Negotiations

    The landmark bill will regulate the use of generative AI models like ChatGPT and AI systems used by governments and law enforcement

  13. ALPHV/BlackCat Site Downed After Suspected Police Action

    Notorious ransomware collective ALPHV/BlackCat may have been disrupted by law enforcement

  14. Police Arrest Hundreds of Human Traffickers Linked to Cyber Fraud

    Interpol operation leads to arrest of hundreds on suspicion of human trafficking and fraud

  15. Two-Fifths of Log4j Apps Use Vulnerable Versions

    Two years after a critical vulnerability was found in utility Log4j, 38% of apps still use buggy versions

  16. ICO Warns of Fines for “Nefarious” AI Use

    UK privacy regulator, the information commissioner, says illegal use of AI will be punished with fines

  17. Geopolitics to Blame For DoS Surge in Europe, Says ENISA

    European security agency claims “novel and massive” DDoS threat is driven by political motivation

  18. Ransomware Surge is Driving UK Inflation, Says Veeam

    Veeam research reveals that corporate victims of ransomware are more likely to increase prices and fire staff

  19. New Report: Over 40% of Google Drive Files Contain Sensitive Info

    The Metomic research also suggested 34.2% of the files were shared with external contacts

  20. UK Government Warns of Russian Cyber Campaigns Against Democracy

    The NCSC identified the threat group responsible as Star Blizzard, linked to Russia’s FSB Center 18

Why Not Watch?

  1. Mastering AI Security With ISACA’s New AAISM Certification

  2. Exposing AI’s Blind Spots: Security vs Safety in the Age of Gen AI

  3. How Mid-Market Businesses Can Leverage Microsoft Security for Proactive Defenses

  4. Revisiting CIA: Developing Your Security Strategy in the SaaS Shared Reality

What’s Hot on Infosecurity Magazine?