Infosecurity News

  1. Organizations Warned of New Attack Vector in Amazon Web Services

    Researchers warned that threat actors could potentially exploit Elastic IP transfer and compromise an IP address

  2. UK Privacy Regulator Names and Shames Breached Firms

    ICO publishes detailed list of complaints and investigations

  3. Fortnite Dev to Pay $520m in Record-Breaking Settlement

    FTC reveals gaming firm's privacy violations and design tricks

  4. Ukraine's Delta Military Intel System Hit by Attacks

    Phishing campaign spotted by CERT-UA

  5. Ransomware Groups to Increase Zero-Day Exploit-Based Access Methods in the Future

    Trend Micro’s latest research paper analyzed ways in which ransomware groups could evolve to stay on top of strengthened cyber-protection measures

  6. Meta Takes Down Over 200 Covert Influence Operations Since 2017

    The most common location for influence operations was Russia, according to Meta

  7. Mobile App Users at Risk as API Keys of Email Marketing Services Exposed

    Leaked API keys allow threat actors to perform a variety of unauthorized actions

  8. NIST to Scrap SHA-1 Algorithm by 2030

    The agency said it will stop using SHA-1 in its last remaining specified protocols by December 31 2030

  9. API Vulnerabilities Discovered in LEGO Marketplace

    The vulnerabilities, which are now fixed, could have put sensitive customer data at risk

  10. Agenda Ransomware Switches to Rust to Attack Critical Infrastructure

    Victim companies have a combined revenue of around $550m

  11. Meta's Bug Bounty Program Shows $2m Awarded in 2022

    The total amount since the program's establishment in 2011 is reportedly $16m

  12. Social Blade Confirms Data Breach Exposing PII on the Dark Web

    The company confirmed the data does not include any credit card information

  13. Two-Thirds of Security Pros Have Burnt Out in Past Year

    Excessive workload is the most common contributing factor

  14. Former Twitter Employee Gets 42 Months for Saudi Scheme

    Insider was bribed by the Middle East kingdom

  15. OECD Signs "Landmark" Privacy Agreement

    Club of rich countries wants to improve cross-border data flows

  16. Senate Approves Bill Banning TikTok From US Government Devices

    The bill still needs to receive approval from the US House of Representatives

  17. NSA, CISA Warn Against Threats to 5G Network Slicing

    Improper network slice management may enable attackers to access data from different network slices

  18. Loan Scam Campaign 'MoneyMonger' Exploits Flutter to Hide Malware

    Zimperium said the code was part of an existing campaign previously discovered by K7 Security Labs

  19. Feds Hit DDoS-for-Hire Services with 48 Domain Seizures

    Six also charged in connection with booter services

  20. Over 85% of Attacks Hide in Encrypted Channels

    Zscaler reveals 20% increase in malicious use of encryption

Why Not Watch?

  1. Time Is a New Attack Surface: Securing Networks with Trusted Time Synchronization

  2. How To Enhance Security Operations with AI-Powered Defenses

  3. Audit & Compliance in the Era of AI and Emerging Technology

  4. Five Non-Negotiable Strategies to Get Identity Security Right in 2026

What’s Hot on Infosecurity Magazine?