Infosecurity News

  1. Critical API Security Gaps Found in Financial Services

    The Salt Security report also notes a 244% surge in unique attackers between H1 and H2 2022

  2. How Cyber Threat Intelligence Practitioners Should Leverage Automation and AI

    The Cyber Threat Intelligence Summit discussed how automation and generative AI could help CTI practitioners tackle the overload of data they have to process

  3. Biden-Harris Administration Unveils Smart Device Cyber Program

    The criteria for certification are set to be based on cybersecurity guidelines published by NIST

  4. Industry Experts Urge CISA to Update Secure by Design Guidance

    A letter authored by industry experts says that CISA should include specific details on how to implement security-by-design through threat modeling

  5. Scam Job Offers Target Uni Students

    Threat actors exploit high cost of living

  6. NCA: Nation States Using Cybercrime Groups as Proxies

    Crime agency chief warns of surging online threat

  7. Norwegian Giant Tomra Suffers “Extensive” Attack

    Employees forced to work from home after IT outage

  8. New Vulnerabilities Found in Adobe ColdFusion

    Rapid7 has observed that some vulnerabilities in Adobe ColdFusion were still being exploited several days after the patches were published

  9. CISA Unveils Guide to Aid Firms Transition to Cloud Security

    It mentions the CSET, SCuBAGear, Untitled Goose Tool, Decider and Memory Forensic on Cloud

  10. drIBAN Fraud Operations Target Corporate Banking Customers

    The web injects allow cyber-criminals to manipulate legitimate web pages' content in real time

  11. JumpCloud Confirms Data Breach By Nation-State Actor

    The attack vector was identified as data injection into the firm's commands framework

  12. Suspected Scareware Fraudster Arrested After Decade on the Run

    Ukrainian said to have caused victim losses of $70m

  13. WooCommerce Bug Exploited in Targeted WordPress Attacks

    Wordfence claims over 157,000 sites have been hit so far

  14. IT Security Pro Jailed for Attempted Extortion

    Hertfordshire man pleaded guilty in May

  15. BreachForums Admin Pleads Guilty to Hacking Charges

    The guilty plea also covered a separate count of possession of child pornography

  16. Ukraine's CERT-UA Exposes Gamaredon's Rapid Data Theft Methods

    The group utilize malware like GAMMASTEEL to rapidly exfiltrate files within 30-50 minutes

  17. Sorillus RAT and Phishing Attacks Exploit Google Firebase Hosting

    eSentire found the threat after detecting suspicious code in a manufacturing customer's network

  18. EU Urged to Prepare for Quantum Cyber-Attacks

    A discussion paper from the European Policy Centre sets out recommendations for an EU quantum cybersecurity agenda

  19. Russian Charged with Tech Smuggling and Money Laundering

    Man accused of aiding the Kremlin with dual-use tech

  20. Health Tech Vendor to Pay $31m After Kickback Allegations

    NextGen Healthcare was accused of violating False Claims Act

Why Not Watch?

  1. Behind the Curtain of Microsoft 365 Cybersecurity: Lessons from Overlooked Resilience Gaps

  2. How Trusted Time Strengthens Network Security

  3. How to Recover From a Cyber-Attack: A Step-by-Step Playbook

  4. How to Harness Advanced Intelligence Capabilities to Strengthen Cyber Defence

What’s Hot on Infosecurity Magazine?