Infosecurity News

  1. Lazarus Group Blamed for Atomic Wallet Heist

    Notorious North Korean group pegged for recent campaign

  2. Cyber Extortionists Seek Out Fresh Victims in LatAm and Asia

    Ukraine war may have been catalyst for targeting non-NATO countries

  3. CISA and Partners Publish Guide For Remote Access Security

    Cyber-actors are utilizing these tools for easy and broad access to victim systems

  4. North Korean APT Group Kimsuky Expands Social Engineering Tactics

    SentinelOne said the campaign specifically targets experts in North Korean affairs

  5. "PowerDrop" PowerShell Malware Targets US Aerospace Industry

    Adlumin said the malware combines elements of off-the-shelf threats and APT tactics

  6. Cisco Counterfeiter Pleads Guilty to $100m Scheme

    Dual US/Turkish citizen ran at least 19 companies

  7. FBI Warns of Surge in Deepfake Sextortion Attempts

    Fake imagery is being used to harass and extort victims

  8. CVEs Surge By 25% in 2022 to Another Record High

    Volume of new vulnerabilities has increased three-fold in a decade

  9. Three Vulnerabilities Discovered in Game Dev Tool RenderDoc

    Qualys identified one instance of privilege escalation and two heap-based buffer overflows

  10. Exploitation of Vulnerabilities Have Soared, Unit 42 Report Finds

    The Palo Alto Networks report also suggests Linux malware emerged as a growing concern last year

  11. New ChatGPT Attack Technique Spreads Malicious Packages

    Vulcan Cyber's Voyager18 research team called the technique "AI package hallucination"

  12. BEC Volumes and Ransomware Costs Double in a Year

    Annual Verizon report reveals humans are still a major source of risk

  13. Kaspersky Releases Tool to Detect Zero-Click iOS Attacks

    Fallout from Operation Triangulation continues

  14. Clop Ransom Gang Breaches Big Names Via MOVEit Flaw

    Boots, BA, the BBC and more have data compromised

  15. Satacom Malware Campaign Steals Crypto Via Stealthy Browser Extension

    The extension employs various JavaScript scripts to manipulate users' browsers

  16. Critical Zero-Day Flaw Exploited in MOVEit Transfer

    The vulnerability (CVE-2023-34362) can grant escalated privileges and unauthorized access

  17. Spanish Bank Globalcaja Hit By Ransomware Attack

    The firm said the attack occurred last Thursday and prompted it to activate its security protocols

  18. UK Closes CCP Cyber Certification Scheme

    Certified Cyber Professional will be replaced by new chartered scheme

  19. North Korea Makes 50% of Income from Cyber-Attacks: Report

    US assessment highlights significance of offensive capabilities

  20. Atomic Wallet Customers Lose Over $35m in Crypto Attacks

    Digital wallet provider still investigating cause of incidents

Why Not Watch?

  1. Audit & Compliance in the Era of AI and Emerging Technology

  2. How To Enhance Security Operations with AI-Powered Defenses

  3. Five Non-Negotiable Strategies to Get Identity Security Right in 2026

  4. Mastering AI Security With ISACA’s New AAISM Certification

What’s Hot on Infosecurity Magazine?