Infosecurity News

  1. High-Severity Access Control Vulnerability Found in Spring WebFlux

    Tracked as CVE-2023-34034, the flaw has a CVSS score of 9.8

  2. Northern Ireland Police Officers Vulnerable After Data Leak

    The accidental release of PSNI police officers’ names and department has raised huge safety fears

  3. Notorious Phishing-as-a-Service Platform Shuttered

    Suspected Indonesian admin arrested in multi-national operation

  4. Summer Spending Pressure Fuels Loan Fee Fraud Fears

    UK financial regulator in new consumer awareness campaign

  5. Microsoft Patches 80+ Flaws Including Two Zero-Days

    Another busy Patch Tuesday for sysadmins

  6. Tampa General Hospital Sued Over Data Breach

    Plaintiffs claim hospital didn't secure data and worsened the situation by delaying notification

  7. #BHUSA: Ransomware Threat Activity Cluster Uncovered

    The elusive ransomware group, Royal, might be collaborating with Hive and Black Basta

  8. Vietnamese-Origin Ransomware Operation Mimics WannaCry Traits

    Cisco Talos said what sets this operation apart is the novel approach to delivering ransom notes

  9. UK Voters’ Data Exposed in Electoral Commission Cyber-Attack

    The attackers accessed personal data of anyone in the UK who was registered to vote between 2014 and 2022

  10. #BHUSA: Identity Compromise the Cause of Most Breaches

    Pushed to the edges by efficient EDRs, threat actors are forced to use living-off-the-land techniques

  11. North Korean Hackers Compromise Russian Missile Maker

    NPO Mashinostroyeniya is under sanctions for supporting Kremlin war machine

  12. Two-Thirds of UK Sites Vulnerable to Bad Bots

    Those selling goods and classified ads are particularly exposed

  13. Over 200 Million Brits Have Data Compromised in Four Years

    Nearly 100,000 breaches were reported to the ICO between 2019 and 2022

  14. US Primary Care Services Shuttered After Cyber-Attack

    Prospect Medical Holdings took its systems offline on Friday and initiated an investigation

  15. Invisible Ad Fraud Targets Korean Android Users

    McAfee said the library registers device information and drains battery life and mobile data

  16. FBI Warns Against Criminals Posing as NFT Developers

    Users are tricked into connecting their cryptocurrency wallets to malicious smart contracts

  17. Russian Hacktivists Overwhelm Spanish Sites With DDoS

    Attacks come after Prime Minister’s trip to Kyiv

  18. Colorado Education Department Suffers Ransomware Breach

    Past and current staff and students are impacted

  19. Clop Gang Offers Data Downloads Via Torrents

    Latest innovation designed to speed up download process

  20. Stealthy npm Malware Exposes Developer Data

    Phylum said the attack demonstrated a carefully crafted development cycle

Why Not Watch?

  1. Risk-Based IT Compliance: The Case for Business-Driven Cyber Risk Quantification

  2. Exposing AI’s Blind Spots: Security vs Safety in the Age of Gen AI

  3. Revisiting CIA: Developing Your Security Strategy in the SaaS Shared Reality

  4. Audit & Compliance in the Era of AI and Emerging Technology

What’s Hot on Infosecurity Magazine?