Infosecurity News

  1. American Bar Association Breach Hits 1.5 Million Members

    Website usernames and passwords stolen in March raid

  2. 3CX Hackers Also Compromised Critical Infrastructure Firms

    Symantec warns North Korean actors may return for further exploitation

  3. CFPB Employee Sends 256,000 Consumers' Data to Personal Email

    Congressman Bill Huizenga addressed the claims in a letter to CFPB director, Rohit Chopra

  4. Evil Extractor Targets Windows Devices to Steal Sensitive Data

    New malware operates through several modules that rely on a File Transfer Protocol service

  5. Trojanized Installers Used to Distribute Bumblebee Malware

    Secureworks’ Counter Threat Unit analyzed the findings in a report published on Thursday

  6. #CYBERUK23: Five Takeaways From the NCSC Conference on the UK's Cyber Strategy

    More collaboration, both with the private sector and international allies, is at the top of the list in the UK’s cyber playbook

  7. Government Agencies Release Blueprint for Secure Smart Cities

    NCSC and CISA want to balance connectivity with resilience

  8. China Developing Anti-Satellite Weapons - Report

    Pentagon leak reveals US concerns over technology push

  9. Capita: Data Was Taken in March Cyber Incident

    IT outsourcer claims customer, employee and supplier info may be at risk

  10. Two Connected Software Supply Chain Attacks Lead to 3CX Compromise

    Mandiant said this would be the first instance of a software supply chain attack leading to another

  11. Daggerfly APT Targets African Telecoms Firm With New MgBot Malware

    Symantec described the findings today, saying the ongoing campaign likely started in November 2022

  12. ChatGPT-Related Malicious URLs on the Rise

    Newly registered and squatting domains related to ChatGPT grew by 910% between November and April

  13. #CYBERUK23: UK Strengthens Cybersecurity Audits for Government Agencies

    GovAssure will mandate all UK government departments to go through annual independent, more robust security audits

  14. Recycled Network Devices Exposing Corporate Secrets

    ESET warns of breach risk from kit that is not properly decommissioned

  15. #CYBERUK23: Russian Cyber Offensive Exhibits ‘Unprecedented’ Speed and Agility

    Russia’s cyber operations since the invasion of Ukraine have been deployed with remarkable speed and flexibility, a new NCSC report shows

  16. Critical Infrastructure Firms Concerned Over Insider Threat

    Financial services sector is particularly badly impacted

  17. Small Business Interest in Cyber-Hygiene is Waning

    UK government survey finds they are prioritizing other things

  18. Iranian Nation-State Actor "Mint Sandstorm" Weaponizes N-day Flaws

    Since 2023, Microsoft observed a decrease in the time required for the group to adopt public POCs

  19. #CYBERUK23: Threat Posed by 'Irresponsible' Use of Commercial Hacking Tools Increasing, NCSC Warns

    Spyware and hackers-for-hire will almost certainly expand in the next five years, warned the British cybersecurity agency

  20. Raspberry Robin Adopts Unique Evasion Techniques

    Security researchers at Check Point published a new advisory on Tuesday describing the new malware

Why Not Watch?

  1. Behind the Curtain of Microsoft 365 Cybersecurity: Lessons from Overlooked Resilience Gaps

  2. How To Enhance Security Operations with AI-Powered Defenses

  3. How Trusted Time Strengthens Network Security

  4. Why Resilience‑Focused Cloud Design Is Your Best Defense Against Modern Attacks

What’s Hot on Infosecurity Magazine?