Infosecurity News

  1. #CYBERUK23: UK Strengthens Cybersecurity Audits for Government Agencies

    GovAssure will mandate all UK government departments to go through annual independent, more robust security audits

  2. Recycled Network Devices Exposing Corporate Secrets

    ESET warns of breach risk from kit that is not properly decommissioned

  3. #CYBERUK23: Russian Cyber Offensive Exhibits ‘Unprecedented’ Speed and Agility

    Russia’s cyber operations since the invasion of Ukraine have been deployed with remarkable speed and flexibility, a new NCSC report shows

  4. Critical Infrastructure Firms Concerned Over Insider Threat

    Financial services sector is particularly badly impacted

  5. Small Business Interest in Cyber-Hygiene is Waning

    UK government survey finds they are prioritizing other things

  6. Iranian Nation-State Actor "Mint Sandstorm" Weaponizes N-day Flaws

    Since 2023, Microsoft observed a decrease in the time required for the group to adopt public POCs

  7. #CYBERUK23: Threat Posed by 'Irresponsible' Use of Commercial Hacking Tools Increasing, NCSC Warns

    Spyware and hackers-for-hire will almost certainly expand in the next five years, warned the British cybersecurity agency

  8. Raspberry Robin Adopts Unique Evasion Techniques

    Security researchers at Check Point published a new advisory on Tuesday describing the new malware

  9. Nurse Call Systems, Infusion Pumps Riskiest Connected Medical Devices

    The findings come from a new report by asset visibility and security company Armis

  10. #CYBERUK23: NCSC Urges International Collaboration to Build Cyber Resilience

    The NCSC’s CEO, Lindy Cameron, urges the UK to cooperate more with its allies in combating cyber threats

  11. Police Escape $1.2m Fine For Secretly Recording Phone Calls

    Surrey and Sussex police forces reprimanded after recording 200,000 calls

  12. Triple-digit Increase in API and App Attacks on Tech and Retail

    Web attacks also surge in financial services, although not in UK

  13. NCSC Warns of Destructive Russian Attacks on Critical Infrastructure

    Alert follows advisory about Kremlin hackers targeting Cisco routers

  14. Goldoson Malware Found in Dozens of Google Play Store Apps

    The malicious software library can collect installed app lists, Wi-Fi and Bluetooth data, and more

  15. MuddyWater Uses SimpleHelp to Target Critical Infrastructure Firms

    A new advisory by Group-IB suggests the software used as part of these attacks is not compromised

  16. NSO Group's Pegasus Spyware Found on High-Risk iPhones

    The findings by Jamf suggest the observed attacks are highly targeted

  17. Cyber Intrusion Detection Time at an All-Time Low

    Mandiant’s latest M-Trends report shows that organizations only needed a median time of 16 days to detect an intrusion in 2022 – the lowest dwell time ever recorded by the firm

  18. WhatsApp, Signal Claim Online Safety Bill Threatens User Privacy and Safety

    The UK Government OSB undermines end-to-end encrypted communications and must be reconsidered according to an open letter signed by Signal and WhatsApp

  19. Cloud Security Alerts Take Six Days to Resolve

    Palo Alto report warns of an expanding cloud attack surface

  20. Conversational Attacks Fastest Growing Mobile Threat

    Pig butchering and similar scams could soon be AI-driven

Why Not Watch?

  1. Five Non-Negotiable Strategies to Get Identity Security Right in 2026

  2. Exposing AI’s Blind Spots: Security vs Safety in the Age of Gen AI

  3. Revisiting CIA: Developing Your Security Strategy in the SaaS Shared Reality

  4. Audit & Compliance in the Era of AI and Emerging Technology

What’s Hot on Infosecurity Magazine?