Infosecurity News

  1. Flaw Exposes WP Migration Plugin to Hacks

    The vulnerable code was identified by the security research team at PatchStack

  2. Chinese APT Group GREF Use BadBazaar in Android Espionage

    ESET said BadBazaar was available via the Google Play Store, Samsung Galaxy Store and various app sites

  3. Chinese Hackers Target US, Other Govts With Barracuda Flaw

    The campaign deployed many malware families, including Skipjack, DepthCharge, Foxglove and Foxtrot

  4. FBI-Led Operation Duck Hunt Shuts Down QakBot Malware

    With Operation Duck Hunt, the FBI took control of the botnet, allowed victims to uninstall the malware loader and seized $8.6m in cryptocurrency

  5. OpenAI Promises Enterprise-Grade Security with ChatGPT for Business

    OpenAI has launched ChatGPT Enterprise highlighting high-profile customers including Klarna, PwC and The Estee Lauder Companies

  6. NCSC Issues Cyber Warning Over AI Chatbots

    The UK cyber agency highlights the lack of understanding of LLMs among industry and academia

  7. LockBit 3.0 Ransomware Variants Surge Post Builder Leak

    Kaspersky explained that LockBit 3.0, also known as LockBit Black, first emerged in June 2022

  8. New Ransomware Campaign Targets Citrix NetScaler Flaw

    Sophos X-Ops suspects the involvement of a well-known ransomware threat actor known as STAC4663

  9. Report Reveals Growing Disparity in Cyber Insurance Landscape

    Delinea’s report shows gap grows as firms struggle for cyber insurance, longer policy wait times

  10. Microsoft Warns of Adversary-in-the-Middle Uptick on Phishing Platforms

    Existing phishing-as-a-service platforms are increasingly incorporating adversary-in-the-middle capabilities

  11. Four in Five Cyber-Attacks Powered by Just Three Malware Loaders

    ReliaQuest found that 80% of cyber intrusion campaigns used either QakBot, SocGholish or Raspberry Robin

  12. Privacy Regulator Warns of Surge in “Text Pest” Cases

    Nearly one in three young adults has had their personal information misused

  13. Researchers Discover Reply URL Takeover Issue in Azure

    Vulnerability could be exploited to gain elevated privileges

  14. FBI: Barracuda Appliances Still Being Exploited By China

    Feds warn that patching will not rid system of APT group

  15. Lazarus Group Targets Internet Infrastructure and Healthcare with 'QuiteRAT' Malware

    QuiteRAT, the North-Korea-Backed group’s new malware, exploits a 2022 ManageEngine ServiceDesk vulnerability

  16. Creative QakBot Attack Tactics Challenge Security Defenses

    Threat actors use unique infection chains to deploy QakBot malware

  17. FBI Flags $40M Crypto Cash-Out Plot By North Korean Hackers

    Between Monday and Tuesday, the FBI has traced approximately 1580 stolen Bitcoins

  18. Data of 2.6 Million Duolingo Users Leaked on Hacking Forum

    The compromised data includes names, usernames, email addresses and internal service-related details

  19. New Study Sheds Light on Adhubllka Ransomware Network

    Netenrich suggested LOLKEK, BIT, OBZ, U2K and TZW ransomware strains share significant similarities

  20. NIST Publishes Draft Post-Quantum Cryptography Standards

    The draft standards are expected to become the global benchmark for quantum-resistant cybersecurity across the world in 2024

Why Not Watch?

  1. Exposing AI’s Blind Spots: Security vs Safety in the Age of Gen AI

  2. Audit & Compliance in the Era of AI and Emerging Technology

  3. Mastering AI Security With ISACA’s New AAISM Certification

  4. Modernizing GRC: From Checkbox to Strategic Advantage

What’s Hot on Infosecurity Magazine?