Infosecurity News

  1. Board Members Struggling to Understand Cyber Risks

    The report found that many boards struggle to challenge what they hear about cybersecurity from their organization’s CISO

  2. Ransomware Attack Wipes Out Sri Lankan Government Data

    The government’s email system has suffered from a massive ransomware attack in August

  3. IT Systems Encrypted After UK School Hit By Ransomware

    Maidstone’s St Augustine Academy is latest victim

  4. AP Stylebook Breach May Have Hit Hundreds of Journalists

    Victims were targeted by follow-on phishing attacks

  5. Evil Telegram Mods Removed From Google Play

    Researchers warn of spyware hidden in legitimate-looking apps

  6. China Unleashes AI-Powered Image Generation For Influence Operations

    The findings come from a new report released by Microsoft Threat Analysis Center on Thursday

  7. Cyber-criminals Exploit GPUs in Graphic Design Software

    Cisco Talos reported that the campaign has been active since at least November 2021

  8. Google TAG Exposes North Korean Campaign Targeting Researchers

    The team has discovered the exploitation of at least one zero-day flaw in the last few weeks

  9. Russian Man Handed Nine-Year Sentence for Hacking Scheme

    Vladislav Klyushin hacked into US filing agents to discover non-public information about hundreds of companies on the US stock exchange

  10. Regulator to Investigate Fertility App Security Concerns

    ICO reveals over half of women are worried about their data

  11. CISA Adds Critical RocketMQ Bug to Must-Patch List

    Apache flaw can enable remote command execution

  12. Apple Patches Two Zero-Days Exploited in Pegasus Attacks

    Users of iOS devices urged to enable lockdown mode

  13. API Vulnerabilities: 74% of Organizations Report Multiple Breaches

    The Traceable report is based on insights from 1629 cybersecurity experts across the US, UK and EU

  14. DGA Behavior Shifts Raise Cybersecurity Concerns

    Akamai found domain shifts of 50 days from expected dates, suggesting hacker-driven confusion

  15. Zero-Day Flaw Exposes Atlas VPN User IPs

    The exploit code, shared by a researcher on Reddit, demonstrates the issue

  16. UK and US Sanction 11 Russians Tied to Trickbot/Conti Ransomware

    These new sanctions follow a first wave in February 2023, where seven Russians involved with Trickbot and Conti were also sanctioned

  17. IBM Reports Patient Data Breach at Johnson & Johnson Subsidiary

    The attackers may have accessed sensitive patient information, such as health insurance and medication details

  18. Chinese Hacker Steals Microsoft Signing Key, Spies on US Government

    The threat actor used the stolen key to breach 25 organizations, including US government agencies

  19. Think Tank Urges Labour to Promote “Securonomics” Agenda

    Progressive Britain wants the party to borrow from US security strategy

  20. Hundreds of Scam Pages Uncovered in Major Investment Fraud Campaign

    Users are first targeted by Facebook adverts

Why Not Watch?

  1. Revisiting CIA: Developing Your Security Strategy in the SaaS Shared Reality

  2. Time Is a New Attack Surface: Securing Networks with Trusted Time Synchronization

  3. Audit & Compliance in the Era of AI and Emerging Technology

  4. Mastering AI Security With ISACA’s New AAISM Certification

What’s Hot on Infosecurity Magazine?