Infosecurity News

  1. Cloud Complexity Means Bugs Are Missed in Testing

    Most CISOs think vulnerability management is getting harder

  2. American Bar Association Breach Hits 1.5 Million Members

    Website usernames and passwords stolen in March raid

  3. 3CX Hackers Also Compromised Critical Infrastructure Firms

    Symantec warns North Korean actors may return for further exploitation

  4. CFPB Employee Sends 256,000 Consumers' Data to Personal Email

    Congressman Bill Huizenga addressed the claims in a letter to CFPB director, Rohit Chopra

  5. Evil Extractor Targets Windows Devices to Steal Sensitive Data

    New malware operates through several modules that rely on a File Transfer Protocol service

  6. Trojanized Installers Used to Distribute Bumblebee Malware

    Secureworks’ Counter Threat Unit analyzed the findings in a report published on Thursday

  7. #CYBERUK23: Five Takeaways From the NCSC Conference on the UK's Cyber Strategy

    More collaboration, both with the private sector and international allies, is at the top of the list in the UK’s cyber playbook

  8. Government Agencies Release Blueprint for Secure Smart Cities

    NCSC and CISA want to balance connectivity with resilience

  9. China Developing Anti-Satellite Weapons - Report

    Pentagon leak reveals US concerns over technology push

  10. Capita: Data Was Taken in March Cyber Incident

    IT outsourcer claims customer, employee and supplier info may be at risk

  11. Two Connected Software Supply Chain Attacks Lead to 3CX Compromise

    Mandiant said this would be the first instance of a software supply chain attack leading to another

  12. Daggerfly APT Targets African Telecoms Firm With New MgBot Malware

    Symantec described the findings today, saying the ongoing campaign likely started in November 2022

  13. ChatGPT-Related Malicious URLs on the Rise

    Newly registered and squatting domains related to ChatGPT grew by 910% between November and April

  14. #CYBERUK23: UK Strengthens Cybersecurity Audits for Government Agencies

    GovAssure will mandate all UK government departments to go through annual independent, more robust security audits

  15. Recycled Network Devices Exposing Corporate Secrets

    ESET warns of breach risk from kit that is not properly decommissioned

  16. #CYBERUK23: Russian Cyber Offensive Exhibits ‘Unprecedented’ Speed and Agility

    Russia’s cyber operations since the invasion of Ukraine have been deployed with remarkable speed and flexibility, a new NCSC report shows

  17. Critical Infrastructure Firms Concerned Over Insider Threat

    Financial services sector is particularly badly impacted

  18. Small Business Interest in Cyber-Hygiene is Waning

    UK government survey finds they are prioritizing other things

  19. Iranian Nation-State Actor "Mint Sandstorm" Weaponizes N-day Flaws

    Since 2023, Microsoft observed a decrease in the time required for the group to adopt public POCs

  20. #CYBERUK23: Threat Posed by 'Irresponsible' Use of Commercial Hacking Tools Increasing, NCSC Warns

    Spyware and hackers-for-hire will almost certainly expand in the next five years, warned the British cybersecurity agency

Why Not Watch?

  1. Audit & Compliance in the Era of AI and Emerging Technology

  2. Five Non-Negotiable Strategies to Get Identity Security Right in 2026

  3. Why Your Organisation Needs Trusted Time Synchronisation

  4. The Intelligence Edge: Clarity, Context and the Human Advantage in Modern CTI

What’s Hot on Infosecurity Magazine?