Infosecurity News

  1. New ChatGPT Attack Technique Spreads Malicious Packages

    Vulcan Cyber's Voyager18 research team called the technique "AI package hallucination"

  2. BEC Volumes and Ransomware Costs Double in a Year

    Annual Verizon report reveals humans are still a major source of risk

  3. Kaspersky Releases Tool to Detect Zero-Click iOS Attacks

    Fallout from Operation Triangulation continues

  4. Clop Ransom Gang Breaches Big Names Via MOVEit Flaw

    Boots, BA, the BBC and more have data compromised

  5. Satacom Malware Campaign Steals Crypto Via Stealthy Browser Extension

    The extension employs various JavaScript scripts to manipulate users' browsers

  6. Critical Zero-Day Flaw Exploited in MOVEit Transfer

    The vulnerability (CVE-2023-34362) can grant escalated privileges and unauthorized access

  7. Spanish Bank Globalcaja Hit By Ransomware Attack

    The firm said the attack occurred last Thursday and prompted it to activate its security protocols

  8. UK Closes CCP Cyber Certification Scheme

    Certified Cyber Professional will be replaced by new chartered scheme

  9. North Korea Makes 50% of Income from Cyber-Attacks: Report

    US assessment highlights significance of offensive capabilities

  10. Atomic Wallet Customers Lose Over $35m in Crypto Attacks

    Digital wallet provider still investigating cause of incidents

  11. Enzo Biochem Hit by Ransomware, 2.5 Million Patients' Data Compromised

    The information includes names, test information and 600,000 Social Security numbers

  12. US and Korean Agencies Issue Warning on North Korean Cyber-Attacks

    The advisory identifies several actors: Kimsuky, Thallium, APT43, Velvet Chollima and Black Banshee

  13. Malicious PyPI Packages Use Compiled Python Code to Bypass Detection

    According to ReversingLabs this could be the first supply chain attack capitalizing on PYC files

  14. Insurers Predict $33bn Bill for Catastrophic "Cyber Event"

    One-in-200 year event could stem from cloud, data breach or ransomware

  15. Chinese Phishing Gang "PostalFurious" Expands Campaign

    Latest victims of smishing attacks are UAE residents

  16. Kaspersky Says it is Being Targeted By Zero-Click Exploits

    Possible US campaign began in 2019

  17. Horabot Campaign Targets Spanish-Speaking Users in the Americas

    Cisco Talos said the threat actor behind the campaign is believed to be located in Brazil

  18. Void Rabisu's RomCom Backdoor Reveals Shifting Threat Actor Goals

    Trend Micro said the motives of Void Rabisu seem to have changed since at least October 2022

  19. Potential Backdoor in Gigabyte PCs Exposes Supply Chain Risks

    Eclypsium is working closely with Gigabyte to rectify insecure implementation of its app center

  20. HMRC in New Tax Credits Scam Warning

    Claimants bombarded by phishing emails, phone calls and texts

Why Not Watch?

  1. Audit & Compliance in the Era of AI and Emerging Technology

  2. Mastering AI Security With ISACA’s New AAISM Certification

  3. Five Non-Negotiable Strategies to Get Identity Security Right in 2026

  4. Revisiting CIA: Developing Your Security Strategy in the SaaS Shared Reality

What’s Hot on Infosecurity Magazine?