Infosecurity News

  1. Cloud Vulnerabilities Surge 200% in a Year

    But IBM warns credential compromise is number one initial access vector

  2. New Microsoft Teams Phishing Campaign Targets Corporate Employees

    The new campaign is believed to be perpetrated by Storm-0324, which distributes the payloads of other attackers after achieving initial network compromise

  3. MGM Criticized for Repeated Security Failures

    The malware researchers' collective Vx-underground claimed that ALPHV/BlackCat was behind the attack against the casino giant

  4. Chilling Lack of Cyber Experts in UK Government, Finds Parliamentary Inquiry

    The parliamentary inquiry heard there are “particular shortages” of cybersecurity experts in the civil service, with pay restraints a major factor

  5. Microsoft Fixes Two Zero-Day Bugs Used in Attacks

    Microsoft announces updates for around 60 CVEs

  6. CISA Publishes Plan to Enhance Open Source Security

    New roadmap will cover Fiscal Year 2024-26

  7. UK ICO and NCSC Set to Share Anonymized Threat Intelligence

    Data protection regulator and security agency sign MoU

  8. Windows Systems Targeted in Multi-Stage Malware Attack

    According to Fortinet security expert Cara Lin, the attack begins with a phishing email

  9. Cyber-criminals “Jailbreak” AI Chatbots For Malicious Ends

    SlashNext research shows that most of these tools connect to jailbroken versions of public chatbots

  10. MGM Resorts Hit By Cyber-Attack, Systems Down

    The incident disrupted key company services, impacting website, bookings and in-casino functions

  11. Fighting Individual Ransomware Strains Fruitless, UK Agencies Suggest

    The report highlights the complex supply chain involved in ransomware attacks, requiring a more holistic approach to be taken by governments

  12. Redfly Group Compromises National Power Grid

    Symantec warns of mounting threat to critical infrastructure

  13. US Government Ordered to Urgently Patch Apple Zero-Day Bugs

    Federal agencies have one month to fix BlastPass vulnerabilities

  14. Europol: Financial Crime Makes “Billions” and Impacts “Millions”

    Policing group releases first ever report on the topic

  15. Cuba Ransomware Group Unleashes Undetectable Malware

    Kaspersky found suspicious files in December 2022 which activated the komar65 library known as BUGHATCH

  16. Lazarus Group Targets macOS in Supply Chain Assault

    ESET explained the impact of the supply chain attack translated to a 16.8% increase in Trojan detections

  17. Pentagon Urges Collaboration in Cyber Defense

    Beavers emphasized ongoing modernization initiatives for IT architecture and user experience

  18. Board Members Struggling to Understand Cyber Risks

    The report found that many boards struggle to challenge what they hear about cybersecurity from their organization’s CISO

  19. Ransomware Attack Wipes Out Sri Lankan Government Data

    The government’s email system has suffered from a massive ransomware attack in August

  20. IT Systems Encrypted After UK School Hit By Ransomware

    Maidstone’s St Augustine Academy is latest victim

Why Not Watch?

  1. How to Recover From a Cyber-Attack: A Step-by-Step Playbook

  2. How To Enhance Security Operations with AI-Powered Defenses

  3. Modernizing GRC: From Checkbox to Strategic Advantage

  4. Five Non-Negotiable Strategies to Get Identity Security Right in 2026

What’s Hot on Infosecurity Magazine?