Infosecurity News

  1. New APT Dark Pink Hits Asia-Pacific, Europe With Spear Phishing Tactics

    The group began operations as early as mid-2021, but its activity increased in mid-to-late 2022

  2. Multiple Danish Banks Disrupted By DDoS Cyber-Attack

    The attack also affected IT financial industry solutions developer Bankdata

  3. Sensitive Files From San Francisco Transit Police Allegedly Leaked

    The leaked files include some 120,000 files, with specific allegations of child abuse

  4. Customer and Employee Data the Top Prize for Hackers – Imperva

    Customer and employee data accounts for almost half all stolen data while credit cards and password see a decline

  5. Applications Five Years or Older Likely to have Security Flaws

    Veracode’s 2023 State of Software Security Report is focused on flaw introduction

  6. Over 100 CVEs Addressed in First Patch Tuesday of 2023

    Microsoft's January Patch Tuesday resolved over 100 CVEs, including an actively exploited zero day

  7. US Supreme Court Allows WhatsApp to Sue NSO Group

    WhatsApp can now sue for damages ensued by the installation of the Pegasus spyware

  8. Researchers Find Security Flaw in JsonWebToken Library Used By 20,000+ Projects

    An attacker could perform RCE on a server verifying a maliciously crafted JWT request

  9. GitHub Adds Features to Automate Vulnerability Code Scanning

    Called “default setup,” the novel capability simplifies starting code scanning on repositories

  10. UK Charities Offered Free Cyber Essentials Support

    The NCSC’s new Funded Cyber Essentials Programme will support SMEs as well as charities

  11. Ukraine: Russian Cyber-Attacks Should Be Considered War Crimes

    A Ukrainian official revealed that evidence of Russian cyber-attacks are being gathered to support potential war crime prosecutions

  12. Freejacking Campaign By PurpleUrchin Bypasses Captchas

    The threat actors also deployed more aggressive techniques for mining CPU resources

  13. ChatGPT Used to Develop New Malicious Tools

    These include infostealers, multi-layer encryption tools and dark web marketplace scripts

  14. Dark Web Actors Fight For Drug Trafficking and Illegal Pharmacy Supremacy

    Following the takedown of the Hydra Marketplace in 2022, 10 darknet markets rose to fill the void

  15. Global Cyber-Attack Volume Surges 38% in 2022

    Last year was also worst on record for UK businesses

  16. Threat Actors Spread RAT Via Pokemon NFT Card Site

    Phishing page lures unsuspecting users into installing remote access malware

  17. FCC Wants to Accelerate Breach Reporting for Telcos

    Proposals designed to strengthen consumer protections

  18. WhatsApp Unveils Proxy Support to Tackle Internet Censorship

    The Meta-owned firm also compiled a guide designed to help users set up their own proxy servers

  19. Blind Eagle Hacking Group Targets South America With New Tools

    Security experts from Check Point Research unveiled the findings in a new advisory

  20. US Family Planning Non-Profit MFHS Confirms Ransomware Attack

    The non-profit said its systems were compromised between August 2021 and April 2022

Why Not Watch?

  1. How Mid-Market Businesses Can Leverage Microsoft Security for Proactive Defenses

  2. Five Non-Negotiable Strategies to Get Identity Security Right in 2026

  3. Exposing AI’s Blind Spots: Security vs Safety in the Age of Gen AI

  4. Modernizing GRC: From Checkbox to Strategic Advantage

What’s Hot on Infosecurity Magazine?