Infosecurity News

  1. New Study Highlights Critical Infrastructure's Resilience

    They exhibited a 20% higher threat detection behavior than the industry average

  2. Zyxel Vulnerability Exploited by DDoS Botnets on Linux Systems

    Fortinet discovered Multiple DDoS botnets, including Dark.IoT, a variant based on Mirai

  3. Microsoft Strengthens Cloud Logging Against Nation-State Threats

    The company said they collaborated closely with CISA to expand cloud logging

  4. Old Roblox Data Leak Resurfaces, 4000 Users' Personal Information Exposed

    Malicious actors have recently used an allegedly old data leak affecting Roblox developers

  5. Half of AI Open Source Projects Reference Buggy Packages

    Study also finds LLMs are poor at detecting malicious code

  6. CNI Firms: Climate Tech is Increasing Cyber Risk

    UK’s critical infrastructure sector concerned over expanding attack surface

  7. Estee Lauder Breached by Two Ransomware Groups

    Cosmetics giant confirms data was taken

  8. Chinese APT41 Linked to WyrmSpy and DragonEgg Surveillanceware

    Lookout attributed WyrmSpy and DragonEgg to APT41 due to overlapping Android signing certificates

  9. Critical API Security Gaps Found in Financial Services

    The Salt Security report also notes a 244% surge in unique attackers between H1 and H2 2022

  10. How Cyber Threat Intelligence Practitioners Should Leverage Automation and AI

    The Cyber Threat Intelligence Summit discussed how automation and generative AI could help CTI practitioners tackle the overload of data they have to process

  11. Biden-Harris Administration Unveils Smart Device Cyber Program

    The criteria for certification are set to be based on cybersecurity guidelines published by NIST

  12. Industry Experts Urge CISA to Update Secure by Design Guidance

    A letter authored by industry experts says that CISA should include specific details on how to implement security-by-design through threat modeling

  13. Scam Job Offers Target Uni Students

    Threat actors exploit high cost of living

  14. NCA: Nation States Using Cybercrime Groups as Proxies

    Crime agency chief warns of surging online threat

  15. Norwegian Giant Tomra Suffers “Extensive” Attack

    Employees forced to work from home after IT outage

  16. New Vulnerabilities Found in Adobe ColdFusion

    Rapid7 has observed that some vulnerabilities in Adobe ColdFusion were still being exploited several days after the patches were published

  17. CISA Unveils Guide to Aid Firms Transition to Cloud Security

    It mentions the CSET, SCuBAGear, Untitled Goose Tool, Decider and Memory Forensic on Cloud

  18. drIBAN Fraud Operations Target Corporate Banking Customers

    The web injects allow cyber-criminals to manipulate legitimate web pages' content in real time

  19. JumpCloud Confirms Data Breach By Nation-State Actor

    The attack vector was identified as data injection into the firm's commands framework

  20. Suspected Scareware Fraudster Arrested After Decade on the Run

    Ukrainian said to have caused victim losses of $70m

Why Not Watch?

  1. Audit & Compliance in the Era of AI and Emerging Technology

  2. How to Recover From a Cyber-Attack: A Step-by-Step Playbook

  3. The Intelligence Edge: Clarity, Context and the Human Advantage in Modern CTI

  4. Modernizing GRC: From Checkbox to Strategic Advantage

What’s Hot on Infosecurity Magazine?