Infosecurity News

  1. New BEC Tactics Enable Fake Asset Purchases

    FBI warns of scammers using Net-30 and Net-60 terms

  2. Latitude Financial Admits Breach Impacted Millions

    Over 14 million records stolen from consumer lender

  3. CISA Unveils Ransomware Notification Initiative

    Provides businesses with early warnings to evict threat actors before they can encrypt data

  4. WooCommerce Patches Critical Plugin Flaw Affecting Half a Million Sites

    The vulnerability could allow an unauthenticated attacker to gain admin privileges and take over a website

  5. GitHub Updates Security Protocol For Operations Over SSH

    The move reportedly did not stem from a compromise of GitHub systems or customer information

  6. UK Parliament Bans TikTok from its Network and Devices

    Further blow for Chinese social media app

  7. IRS Phishing Emails Used to Distribute Emotet

    Monster 500MB attachment hides a nasty surprise

  8. Security Flaws Cost Fifth of Execs Business

    Business leaders still underestimate importance of security to growth

  9. China-Aligned "Operation Tainted Love" Targets Middle East Telecom Providers

    The deployment of custom credential theft malware is the main novelty of the new campaign

  10. SharePoint Phishing Scam Targets 1600 Across US, Europe

    Cyber-criminals used the scam to steal the credentials for various email accounts

  11. New Post-Exploitation Attack Method Found Affecting Okta Passwords

    The flaw derives from the way the Okta system records failed login attempts to instances

  12. UK Government Sets Out Vision for NHS Cybersecurity

    Plans to boost cyber-resilience in the health service by 2030

  13. Malicious ChatGPT Chrome Extension Hijacks Facebook Accounts

    Software was unwittingly downloaded thousands of times

  14. Irish Food Giant Dole Admits Employee Data Breach

    Incident was linked to previously disclosed ransomware attack

  15. BreachForums Shuts Down After Admin's Arrest

    The forum's admin said the move might be temporary and that they will set up a new Telegram group

  16. New Android Banking Trojan 'Nexus' Promoted As MaaS

    Nexus offers overlay attacks and keylogging activities designed to steal victims' credentials

  17. CISA and NSA Enhance Security Framework With New IAM Guide

    Guidance includes best practices for identity governance, environmental hardening, SSO, MFA and IAM auditing

  18. Security Researchers Spot $36m BEC Attack

    Threat actors impersonated target company's vendor

  19. Just 1% of Dot-Org Domains Are Fully DMARC Protected

    Organizations are failing with their anti-phishing measures

  20. Ransomware Attacks Double in Europe's Transport Sector

    ENISA claims most threats are opportunistic

Why Not Watch?

  1. Why Your Organisation Needs Trusted Time Synchronisation

  2. How To Enhance Security Operations with AI-Powered Defenses

  3. Five Non-Negotiable Strategies to Get Identity Security Right in 2026

  4. How to Recover From a Cyber-Attack: A Step-by-Step Playbook

What’s Hot on Infosecurity Magazine?