Infosecurity News

  1. Expo Framework API Flaw Reveals User Data in Online Services

    The vulnerability was discovered by Salt Security and has a CVSS score of 9.6

  2. NCSC Warns Against Chinese Cyber Attacks on Critical Infrastructure

    The threat actors used sophisticated tactics to evade detection during their malicious activities

  3. SMBs Targeted by State-Aligned Actors for Financial Theft and Supply Chain Attacks

    Proofpoint researchers have found that small and medium-sized businesses are increasingly being targeted by APT actors globally

  4. AI Used to Create Malware, WithSecure Observes

    The cybersecurity firm confirms that it has observed AI being used to generate malware

  5. Lazarus Group Targeting Microsoft Web Servers to Launch Espionage Malware

    Researchers detail the DLL side-loading technique used to deploy malware that facilitates credential theft and lateral movement

  6. US Sanctions North Korean Entities Training Expat IT Workers in Russia, China and Laos

    Illicit North Korean IT workers send the money they made from abroad to fund Kim’s regime, US Treasury Department said

  7. Private Sector Cybersecurity Task Force Called for to Defend Democracies

    Jessica Berlin, an independent consultant, calls for private sector task force to defend democracies

  8. Diversity advocate and renowned practitioner, Becky Pinkard, to be Inaugurated into Infosecurity Europe's Hall of Fame

    Becky will be officially inducted into the Hall of Fame during Infosecurity Europe 2023

  9. Backup Repositories Targeted in 93% of Ransomware Attacks

    Organizations now acknowledge that having clean and recoverable backups is a critical element of a good business continuity plan

  10. 50% of UK CEOs See Cyber as a Bigger Business Risk than the Economy

    The survey also revealed that UK CEOs have a low level of understanding of cyber risks

  11. Google Unveils Bug Bounty Program For Android Apps

    Rewards range from $750 for certain MiTM scenarios to $30,000 for some ACE vulnerabilities

  12. Fata Morgana Watering Hole Attack Targets Shipping, Logistics Firms

    The attack targeted Israeli websites and has been linked to a nation-state actor from Iran

  13. GoldenJackal Targets Diplomatic Entities in Middle East, South Asia

    According to Kaspersky, GoldenJackal has been active since 2019

  14. ESET: Android App 'iRecorder – Screen Recorder' Trojanized with AhRat

    With over 50,000 downloads, the screen recording app was initially legitimate, but the malicious functionality was later implemented

  15. Two-Thirds of IT Leaders Say GDPR Has Reduced Consumer Trust

    Increased awareness of data privacy issues has reduced trust in organizations, according to the survey

  16. China Issues Ban on US Chipmaker Products

    The Chinese Communist Party has told tech operators in China to stop purchasing Micron products

  17. Meta Fined €1.2bn for Violating GDPR

    The record-breaking amount of the fine is the least important part of the story, privacy experts argued

  18. UK Man Sentenced to 13 Years for Running Multi-Million Fraud Website

    Confirmed global losses from iSpoof scams were £100m, with the actual figure believed to be far higher

  19. Microsoft Warns of Increase in Business Email Compromise Attacks

    The company's systems currently detect and investigate an average of 156,000 BEC attacks daily

  20. KeePass Flaw Exposes Master Passwords

    The vulnerability (CVE-2023-32784) was discovered by security researcher Dominik Reichl

Why Not Watch?

  1. How Mid-Market Businesses Can Leverage Microsoft Security for Proactive Defenses

  2. Mastering AI Security With ISACA’s New AAISM Certification

  3. Risk-Based IT Compliance: The Case for Business-Driven Cyber Risk Quantification

  4. Revisiting CIA: Developing Your Security Strategy in the SaaS Shared Reality

What’s Hot on Infosecurity Magazine?