Infosecurity News

  1. Microsoft Patches 150 Flaws Including Two Zero-Days

    April’s Patch Tuesday saw fixes for 150 CVEs, including two being actively exploited in the wild

  2. Half of UK Businesses Hit by Cyber-Incident in Past Year, UK Government Finds

    The UK Government’s latest Cyber Security Breaches Survey found a large increase in the proportion of businesses impacted by a cyber-attack or breach in the past 12 months

  3. Hackers Use Malware to Hunt Software Vulnerabilities

    Palo Alto Networks observed growing malware-initiated vulnerability scanning activity

  4. Change Healthcare Hit By Cyber Extortion Again

    RansomHub has surfaced threatening to expose stolen data unless another ransom is paid

  5. Research Unearths RUBYCARP’s Multi-Miner Assault on Crypto

    Sysdig stated that, by deploying multiple miners, the group decreased attack time and detection risk

  6. Foreign Interference Drives Record Surge in IP Theft

    DTEX claims industrial espionage and IP theft are at an all-time high thanks to malicious insiders

  7. Over 90,000 D-Link NAS Devices Are Under Attack

    Threat actors are targeting a high severity vulnerability in close to 100,000 legacy D-Link devices

  8. Why Identity Management is Key in a Cyber Resilience Strategy

    For the fourth edition of Identity Management Day, the Identity Defined Security Alliance shared staggering numbers on the boom of identity-related cyber incidents

  9. US Federal Data Privacy Law Introduced by Legislators

    Two US lawmakers have published a draft federal data privacy law, dubbed the American Privacy Rights Act, which aims to provide protections for the personal information of all US citizens

  10. Byakugan Infostealer Capabilities Revealed

    Fortinet said the malware functions identified include screen monitoring, screen capturing, cryptomining and more

  11. New Malware “Latrodectus” Linked to IcedID

    The malware, discovered by Proofpoint and Team Cymru, was mainly utilized by initial access brokers

  12. Famous YouTube Channels Hacked to Distribute Infostealers

    The AhnLab Security Intelligence Center discovered new infostealer distribution campaigns leveraging legitimate YouTube channels

  13. UK Retailers Lost £11.3bn to Fraud in 2023

    Research from Ayden and the CEBR found that 35% of UK retailers fell victim to fraudulent activity, cyber-attacks or data leaks over the past 12 months

  14. Hospital IT Helpdesks Targeted By Voice Fraudsters, Warns HHS

    Threat actors are socially engineering healthcare IT helpdesk staff to steal money, the government has warned

  15. Veterinary Giant CVS Reveals Major Cyber-Attack

    Veterinary services provider CVS Group today notified markets of a security breach last week

  16. Chinese Threat Actors Deploy New TTPs to Exploit Ivanti Vulnerabilities

    Mandiant research details how Chinese espionage groups are deploying new tools post-exploitation of recently patched Ivanti vulnerabilities

  17. Wiz Discovers Flaws in GenAI Models Enabling Customer Data Theft

    Wiz researchers found architecture flaws in generative AI models available on the AI hub Hugging Face

  18. China Using AI-Generated Content to Sow Division in US, Microsoft Finds

    A Microsoft report found that China-affiliated actors are publishing AI-generated content on social media to amplify controversial domestic issues in the US

  19. LockBit Scrambles After Takedown, Repopulates Leak Site with Old Breaches

    A Trend Micro report shows a clear drop in the number of actual infections associated with the LockBit ransomware following Operation Cronos

  20. Jackson County IT Systems Hit By Ransomware Attack

    A state of emergency was declared, caused by operational inconsistencies across digital infrastructure

What’s Hot on Infosecurity Magazine?