Infosecurity News

  1. DGA Behavior Shifts Raise Cybersecurity Concerns

    Akamai found domain shifts of 50 days from expected dates, suggesting hacker-driven confusion

  2. Zero-Day Flaw Exposes Atlas VPN User IPs

    The exploit code, shared by a researcher on Reddit, demonstrates the issue

  3. UK and US Sanction 11 Russians Tied to Trickbot/Conti Ransomware

    These new sanctions follow a first wave in February 2023, where seven Russians involved with Trickbot and Conti were also sanctioned

  4. IBM Reports Patient Data Breach at Johnson & Johnson Subsidiary

    The attackers may have accessed sensitive patient information, such as health insurance and medication details

  5. Chinese Hacker Steals Microsoft Signing Key, Spies on US Government

    The threat actor used the stolen key to breach 25 organizations, including US government agencies

  6. Think Tank Urges Labour to Promote “Securonomics” Agenda

    Progressive Britain wants the party to borrow from US security strategy

  7. Hundreds of Scam Pages Uncovered in Major Investment Fraud Campaign

    Users are first targeted by Facebook adverts

  8. UK Government Backs Down on Anti-Encryption Stance

    Statement to Lords heralds delay to on-device message scanning

  9. MITRE and CISA Release OT Attack Emulation Tool

    The open source tool will enable cyber teams to consistently test and boost the defenses of ICS environments

  10. Russia-Backed APT28 Tried to Attack a Ukrainian Critical Power Facility

    The attack has been carried out using legitimate services and standard software functions, CERT-UA observed

  11. High-Severity Vulnerability Discovered in Popular CMS

    The unpatched bug in PHPFusion could result in the theft of sensitive data, Synopsys researchers warn

  12. UK Boards Are Growing Less Concerned About Cyber-Risk

    Their global peers feel the opposite, according to Proofpoint study

  13. Experts Uncover Underground Phishing “Empire” W3LL

    Secretive group targets specifically Microsoft 365 accounts

  14. Crypto Casino Stake.com Back Online After $40m Heist

    Hot wallets were compromised at firm

  15. Mend.io SAML Vulnerability Exposed

    SAML flaw in enabled rogue customers to access others’ SaaS data

  16. Airlines Battle Surge in Loyalty Program Fraud

    Group-IB said 2022 saw 30% more loyalty fraud, impacting 75+ airlines and involving 2000 malicious sources

  17. UK Electoral Commission Fails Cybersecurity Test Amid Data Breach

    Auditors cited outdated software and unsupported iPhones as key reasons for the failed test

  18. More Schools Hit By Cyber-Attacks Before Term Begins

    Highgate Wood School forced to delay new term for six days

  19. UK National Cyber Security Centre Gets a New CTO

    Industry veteran Ollie Whitehouse is confirmed

  20. Freecycle Breach May Have Hit Millions of Users

    Non-profit urges all users to reset passwords

Why Not Watch?

  1. Five Non-Negotiable Strategies to Get Identity Security Right in 2026

  2. Securing M365 Data and Identity Systems Against Modern Adversaries

  3. How To Enhance Security Operations with AI-Powered Defenses

  4. Time Is a New Attack Surface: Securing Networks with Trusted Time Synchronization

What’s Hot on Infosecurity Magazine?