Infosecurity News

  1. Quarter of UK SMBs Hit by Ransomware in 2022

    War in Ukraine is making firms more anxious

  2. Twitter: Leak of 200 Million Accounts Not Due to Historic Bug

    Social media firm claims its systems were not compromised

  3. Royal Mail Halts International Deliveries After Cyber-Incident

    It's still unclear whether customer data has been compromised

  4. New APT Dark Pink Hits Asia-Pacific, Europe With Spear Phishing Tactics

    The group began operations as early as mid-2021, but its activity increased in mid-to-late 2022

  5. Multiple Danish Banks Disrupted By DDoS Cyber-Attack

    The attack also affected IT financial industry solutions developer Bankdata

  6. Sensitive Files From San Francisco Transit Police Allegedly Leaked

    The leaked files include some 120,000 files, with specific allegations of child abuse

  7. Customer and Employee Data the Top Prize for Hackers – Imperva

    Customer and employee data accounts for almost half all stolen data while credit cards and password see a decline

  8. Applications Five Years or Older Likely to have Security Flaws

    Veracode’s 2023 State of Software Security Report is focused on flaw introduction

  9. Over 100 CVEs Addressed in First Patch Tuesday of 2023

    Microsoft's January Patch Tuesday resolved over 100 CVEs, including an actively exploited zero day

  10. US Supreme Court Allows WhatsApp to Sue NSO Group

    WhatsApp can now sue for damages ensued by the installation of the Pegasus spyware

  11. Researchers Find Security Flaw in JsonWebToken Library Used By 20,000+ Projects

    An attacker could perform RCE on a server verifying a maliciously crafted JWT request

  12. GitHub Adds Features to Automate Vulnerability Code Scanning

    Called “default setup,” the novel capability simplifies starting code scanning on repositories

  13. UK Charities Offered Free Cyber Essentials Support

    The NCSC’s new Funded Cyber Essentials Programme will support SMEs as well as charities

  14. Ukraine: Russian Cyber-Attacks Should Be Considered War Crimes

    A Ukrainian official revealed that evidence of Russian cyber-attacks are being gathered to support potential war crime prosecutions

  15. Freejacking Campaign By PurpleUrchin Bypasses Captchas

    The threat actors also deployed more aggressive techniques for mining CPU resources

  16. ChatGPT Used to Develop New Malicious Tools

    These include infostealers, multi-layer encryption tools and dark web marketplace scripts

  17. Dark Web Actors Fight For Drug Trafficking and Illegal Pharmacy Supremacy

    Following the takedown of the Hydra Marketplace in 2022, 10 darknet markets rose to fill the void

  18. Global Cyber-Attack Volume Surges 38% in 2022

    Last year was also worst on record for UK businesses

  19. Threat Actors Spread RAT Via Pokemon NFT Card Site

    Phishing page lures unsuspecting users into installing remote access malware

  20. FCC Wants to Accelerate Breach Reporting for Telcos

    Proposals designed to strengthen consumer protections

Why Not Watch?

  1. Audit & Compliance in the Era of AI and Emerging Technology

  2. Securing M365 Data and Identity Systems Against Modern Adversaries

  3. Mastering AI Security With ISACA’s New AAISM Certification

  4. Five Non-Negotiable Strategies to Get Identity Security Right in 2026

What’s Hot on Infosecurity Magazine?