Infosecurity News

  1. Amazon Issues Lawsuits Targeting Fake Review Brokers

    E-commerce giant looks to improve customer trust in its marketplace

  2. NSA and CISA Release Guidelines to Secure CI/CD Environments

    The guidelines highlight three key threat scenarios and recommends mitigations for each

  3. MIT Publishes Framework to Evaluate Cybersecurity Methods

    It assesses information hackers could get from a victim program protected by an obfuscation scheme

  4. Charming Kitten’s PowerStar Malware Evolves with Advanced Techniques

    Volexity said the updated malware uses IPFS, public cloud hosting for decryption and configuration

  5. LockBit Dominates Ransomware World, New Report Finds

    LockBit becomes one of the first major ransomware operations to specifically target macOS

  6. VPN and RDP Exploitation the Most Common Attack Technique

    Initial access brokers still play a key role in threat supply chain

  7. Japan in the Crosshairs of Many State-Sponsored Threat Actors New Report Finds

    Rapid7 found that Vietnamese APTs have also been targeting Japanese organizations, especially competitors of Vietnam’s budding automotive industry

  8. US Prosecutors Line Up Charges in $2.5bn Healthcare Fraud Cases

    Nearly 80 individuals accused of participating in multiple schemes

  9. Manifest Confusion Threat Undermines Trust in Entire Npm Registry

    Former manager takes registry to task for slow response

  10. Suncor Energy Responds to Cybersecurity Incident

    Over 1500 Petro-Canada gas stations are unable to accept credit card payments

  11. ThirdEye Infostealer Poses New Threat to Windows Users

    FortiGuard explained that ThirdEye can harvest BIOS and hardware data

  12. Andariel’s Mistakes Uncover New Malware in Lazarus Group Campaign

    Kaspersky analyzes the group’s tactics and reveals the emergence of a new threat called EarlyRat

  13. Mobile Malware and Phishing Surge in 2022

    Zimperium records large increase in share of compromised devices

  14. EncroChat Bust Leads to 6500 Arrests in Three Years

    Encrypted comms platform was used by organized criminals

  15. Experts Unconvinced by Upskill in UK Cyber Program

    Its 3600 applicants will barely make a dent in overall skills shortages

  16. Anatsa Banking Trojan Targets Banks in US, UK and DACH Region

    ThreatFabric said the ongoing campaign started in March and has witnessed over 30,000 installations

  17. Third-Party Vendor Hack Exposes Data at American, Southwest Airlines

    American Airlines reported 5745 pilots and applicants affected, Southwest Airlines reported 3009

  18. Study Reveals Alarming Gap in SIEM Detection of Adversary Techniques

    CardinalOps examined 4000 detection rules, one million log sources and many unique log source types

  19. Submarine Cables at Growing Risk of Cyber-Attacks

    A report from Recorded Future highlights how digital cable management systems are vulnerable to nation-state attacks

  20. Over Half of UK Banks Are Exposing Customers to Email Fraud

    Recommended DMARC policy only implemented by a minority

Why Not Watch?

  1. Securing M365 Data and Identity Systems Against Modern Adversaries

  2. Five Non-Negotiable Strategies to Get Identity Security Right in 2026

  3. How to Recover From a Cyber-Attack: A Step-by-Step Playbook

  4. Why Your Organisation Needs Trusted Time Synchronisation

What’s Hot on Infosecurity Magazine?