Infosecurity News

  1. Phishing Sites and Apps Use ChatGPT as Lure

    Campaigns designed to steal card information and install malware

  2. Open Source Flaws Found in 84% of Codebases

    The figures come from Synopsys’ new Open Source Security and Risk Analysis report

  3. Hydrochasma Group Targets Asian Medical and Shipping Sectors

    The hackers appear to have a possible interest in industries connected with COVID-19 treatments

  4. Npm Packages Used to Distribute Phishing Links

    The malicious packages were reportedly created using automated processes

  5. Putin Speech Interrupted by DDoS Attack

    Outage impacts Russian state media websites

  6. Time Taken to Deploy Ransomware Drops 94%

    Extortion found to be most common impact from cyber-attacks in 2022

  7. Call of Duty Developer Confirms Phishing Attempt but Not Breach

    Security researchers say hackers successfully exfiltrated content

  8. New Privilege Escalation Bug Class Found on macOS and iOS

    The new class of privilege escalation bugs is based on the ForcedEntry attack

  9. Hackers Exploit Privilege Escalation Flaw on Windows Backup Service

    The flaw is triggered using the Race Condition between temporary file creation and deletion

  10. Researchers Uncover New Information Stealer 'Stealc'

    Stealc is a fully featured stealer, whose development relied on Vidar, Raccoon, Mars and Redline

  11. City Fund Managers Jailed for $8m Fraud

    Trio get 12 years behind bars

  12. Ransomware Gang Seeks to Exploit Victims' Insurance Coverage

    Ransomware group tries to demonize carriers in negotiations

  13. Fifth of Brits Have Fallen Victim to Online Scammers

    Many don’t have any security controls in place, says F-Secure

  14. Samsung Launches Message Guard to Protect Users From Cyber-Threats

    The feature provides a sandbox layer isolating some image files from the rest of the device

  15. GoDaddy Announces Source Code Stolen and Malware Installed in Breach

    An unauthorized party caused the intermittent redirection of customer websites

  16. Frebniis Malware Exploits Microsoft IIS Feature

    The malware was used by a previously unknown threat actor against targets in Taiwan

  17. FBI "Contains" Cyber-Incident on its Network

    Question marks remain over what happened at New York field office

  18. Norway Seizes Millions in North Korean Crypto

    Funds were taken in attack on Ronin Network

  19. Police Bust $41m Email Scam Gang

    Criminal network comprises French and Israeli gangsters

  20. Cloud Infrastructure Used By WIP26 For Espionage Attacks on Telcos

    The threat actor initiated infection chains by targeting employees through WhatsApp messages

Why Not Watch?

  1. Securing M365 Data and Identity Systems Against Modern Adversaries

  2. The Cloud Risk Nobody Talks About: Why Resilience‑Focused Cloud Design Is Your Best Defense Against Modern Attacks

  3. How To Enhance Security Operations with AI-Powered Defenses

  4. How to Maintain the Intelligence Edge in a Disrupted Threat Landscape

What’s Hot on Infosecurity Magazine?