Infosecurity News

  1. Zero-Day Flaw Exposes Atlas VPN User IPs

    The exploit code, shared by a researcher on Reddit, demonstrates the issue

  2. UK and US Sanction 11 Russians Tied to Trickbot/Conti Ransomware

    These new sanctions follow a first wave in February 2023, where seven Russians involved with Trickbot and Conti were also sanctioned

  3. IBM Reports Patient Data Breach at Johnson & Johnson Subsidiary

    The attackers may have accessed sensitive patient information, such as health insurance and medication details

  4. Chinese Hacker Steals Microsoft Signing Key, Spies on US Government

    The threat actor used the stolen key to breach 25 organizations, including US government agencies

  5. Think Tank Urges Labour to Promote “Securonomics” Agenda

    Progressive Britain wants the party to borrow from US security strategy

  6. Hundreds of Scam Pages Uncovered in Major Investment Fraud Campaign

    Users are first targeted by Facebook adverts

  7. UK Government Backs Down on Anti-Encryption Stance

    Statement to Lords heralds delay to on-device message scanning

  8. MITRE and CISA Release OT Attack Emulation Tool

    The open source tool will enable cyber teams to consistently test and boost the defenses of ICS environments

  9. Russia-Backed APT28 Tried to Attack a Ukrainian Critical Power Facility

    The attack has been carried out using legitimate services and standard software functions, CERT-UA observed

  10. High-Severity Vulnerability Discovered in Popular CMS

    The unpatched bug in PHPFusion could result in the theft of sensitive data, Synopsys researchers warn

  11. UK Boards Are Growing Less Concerned About Cyber-Risk

    Their global peers feel the opposite, according to Proofpoint study

  12. Experts Uncover Underground Phishing “Empire” W3LL

    Secretive group targets specifically Microsoft 365 accounts

  13. Crypto Casino Stake.com Back Online After $40m Heist

    Hot wallets were compromised at firm

  14. Mend.io SAML Vulnerability Exposed

    SAML flaw in enabled rogue customers to access others’ SaaS data

  15. Airlines Battle Surge in Loyalty Program Fraud

    Group-IB said 2022 saw 30% more loyalty fraud, impacting 75+ airlines and involving 2000 malicious sources

  16. UK Electoral Commission Fails Cybersecurity Test Amid Data Breach

    Auditors cited outdated software and unsupported iPhones as key reasons for the failed test

  17. More Schools Hit By Cyber-Attacks Before Term Begins

    Highgate Wood School forced to delay new term for six days

  18. UK National Cyber Security Centre Gets a New CTO

    Industry veteran Ollie Whitehouse is confirmed

  19. Freecycle Breach May Have Hit Millions of Users

    Non-profit urges all users to reset passwords

  20. Python Package Index Targeted Again By VMConnect

    ReversingLabs uncovered three additional malevolent packages believed to be part of the campaign

Why Not Watch?

  1. Mastering AI Security With ISACA’s New AAISM Certification

  2. Exposing AI’s Blind Spots: Security vs Safety in the Age of Gen AI

  3. OT Security Ecosystem for Targeted Risk Reduction and Reporting

  4. Modernizing GRC: From Checkbox to Strategic Advantage

What’s Hot on Infosecurity Magazine?