Infosecurity News

  1. Capita: Data Was Taken in March Cyber Incident

    IT outsourcer claims customer, employee and supplier info may be at risk

  2. Two Connected Software Supply Chain Attacks Lead to 3CX Compromise

    Mandiant said this would be the first instance of a software supply chain attack leading to another

  3. Daggerfly APT Targets African Telecoms Firm With New MgBot Malware

    Symantec described the findings today, saying the ongoing campaign likely started in November 2022

  4. ChatGPT-Related Malicious URLs on the Rise

    Newly registered and squatting domains related to ChatGPT grew by 910% between November and April

  5. #CYBERUK23: UK Strengthens Cybersecurity Audits for Government Agencies

    GovAssure will mandate all UK government departments to go through annual independent, more robust security audits

  6. Recycled Network Devices Exposing Corporate Secrets

    ESET warns of breach risk from kit that is not properly decommissioned

  7. #CYBERUK23: Russian Cyber Offensive Exhibits ‘Unprecedented’ Speed and Agility

    Russia’s cyber operations since the invasion of Ukraine have been deployed with remarkable speed and flexibility, a new NCSC report shows

  8. Critical Infrastructure Firms Concerned Over Insider Threat

    Financial services sector is particularly badly impacted

  9. Small Business Interest in Cyber-Hygiene is Waning

    UK government survey finds they are prioritizing other things

  10. Iranian Nation-State Actor "Mint Sandstorm" Weaponizes N-day Flaws

    Since 2023, Microsoft observed a decrease in the time required for the group to adopt public POCs

  11. #CYBERUK23: Threat Posed by 'Irresponsible' Use of Commercial Hacking Tools Increasing, NCSC Warns

    Spyware and hackers-for-hire will almost certainly expand in the next five years, warned the British cybersecurity agency

  12. Raspberry Robin Adopts Unique Evasion Techniques

    Security researchers at Check Point published a new advisory on Tuesday describing the new malware

  13. Nurse Call Systems, Infusion Pumps Riskiest Connected Medical Devices

    The findings come from a new report by asset visibility and security company Armis

  14. #CYBERUK23: NCSC Urges International Collaboration to Build Cyber Resilience

    The NCSC’s CEO, Lindy Cameron, urges the UK to cooperate more with its allies in combating cyber threats

  15. Police Escape $1.2m Fine For Secretly Recording Phone Calls

    Surrey and Sussex police forces reprimanded after recording 200,000 calls

  16. Triple-digit Increase in API and App Attacks on Tech and Retail

    Web attacks also surge in financial services, although not in UK

  17. NCSC Warns of Destructive Russian Attacks on Critical Infrastructure

    Alert follows advisory about Kremlin hackers targeting Cisco routers

  18. Goldoson Malware Found in Dozens of Google Play Store Apps

    The malicious software library can collect installed app lists, Wi-Fi and Bluetooth data, and more

  19. MuddyWater Uses SimpleHelp to Target Critical Infrastructure Firms

    A new advisory by Group-IB suggests the software used as part of these attacks is not compromised

  20. NSO Group's Pegasus Spyware Found on High-Risk iPhones

    The findings by Jamf suggest the observed attacks are highly targeted

Why Not Watch?

  1. Why Resilience‑Focused Cloud Design Is Your Best Defense Against Modern Attacks

  2. Behind the Curtain of Microsoft 365 Cybersecurity: Lessons from Overlooked Resilience Gaps

  3. How Trusted Time Strengthens Network Security

  4. How To Enhance Security Operations with AI-Powered Defenses

What’s Hot on Infosecurity Magazine?