Infosecurity News

  1. China Unleashes AI-Powered Image Generation For Influence Operations

    The findings come from a new report released by Microsoft Threat Analysis Center on Thursday

  2. Cyber-criminals Exploit GPUs in Graphic Design Software

    Cisco Talos reported that the campaign has been active since at least November 2021

  3. Google TAG Exposes North Korean Campaign Targeting Researchers

    The team has discovered the exploitation of at least one zero-day flaw in the last few weeks

  4. Russian Man Handed Nine-Year Sentence for Hacking Scheme

    Vladislav Klyushin hacked into US filing agents to discover non-public information about hundreds of companies on the US stock exchange

  5. Regulator to Investigate Fertility App Security Concerns

    ICO reveals over half of women are worried about their data

  6. CISA Adds Critical RocketMQ Bug to Must-Patch List

    Apache flaw can enable remote command execution

  7. Apple Patches Two Zero-Days Exploited in Pegasus Attacks

    Users of iOS devices urged to enable lockdown mode

  8. API Vulnerabilities: 74% of Organizations Report Multiple Breaches

    The Traceable report is based on insights from 1629 cybersecurity experts across the US, UK and EU

  9. DGA Behavior Shifts Raise Cybersecurity Concerns

    Akamai found domain shifts of 50 days from expected dates, suggesting hacker-driven confusion

  10. Zero-Day Flaw Exposes Atlas VPN User IPs

    The exploit code, shared by a researcher on Reddit, demonstrates the issue

  11. UK and US Sanction 11 Russians Tied to Trickbot/Conti Ransomware

    These new sanctions follow a first wave in February 2023, where seven Russians involved with Trickbot and Conti were also sanctioned

  12. IBM Reports Patient Data Breach at Johnson & Johnson Subsidiary

    The attackers may have accessed sensitive patient information, such as health insurance and medication details

  13. Chinese Hacker Steals Microsoft Signing Key, Spies on US Government

    The threat actor used the stolen key to breach 25 organizations, including US government agencies

  14. Think Tank Urges Labour to Promote “Securonomics” Agenda

    Progressive Britain wants the party to borrow from US security strategy

  15. Hundreds of Scam Pages Uncovered in Major Investment Fraud Campaign

    Users are first targeted by Facebook adverts

  16. UK Government Backs Down on Anti-Encryption Stance

    Statement to Lords heralds delay to on-device message scanning

  17. MITRE and CISA Release OT Attack Emulation Tool

    The open source tool will enable cyber teams to consistently test and boost the defenses of ICS environments

  18. Russia-Backed APT28 Tried to Attack a Ukrainian Critical Power Facility

    The attack has been carried out using legitimate services and standard software functions, CERT-UA observed

  19. High-Severity Vulnerability Discovered in Popular CMS

    The unpatched bug in PHPFusion could result in the theft of sensitive data, Synopsys researchers warn

  20. UK Boards Are Growing Less Concerned About Cyber-Risk

    Their global peers feel the opposite, according to Proofpoint study

Why Not Watch?

  1. Securing M365 Data and Identity Systems Against Modern Adversaries

  2. How To Enhance Security Operations with AI-Powered Defenses

  3. How to Recover From a Cyber-Attack: A Step-by-Step Playbook

  4. How to Harness Advanced Intelligence Capabilities to Strengthen Cyber Defence

What’s Hot on Infosecurity Magazine?