Infosecurity News

  1. Platforms Flooded with 144,000 Phishing Packages

    NuGet, PyPi and npm inundated with malicious packages

  2. Signed Microsoft Drivers Used in Attacks Against Businesses

    In some cases, the threat actor's intent was to ultimately provide SIM-swapping services

  3. AgentTesla Remains Most Prolific Malware in November, Emotet and Qbot Grow

    These are some of the key findings from the latest Check Point Research Most Wanted report

  4. Apple Fixes Actively Exploited iPhone Zero-Day Vulnerability

    The vulnerability could allow remote code execution (RCE) on a victim's device

  5. New Google Tool Helps Devs Root Out Open Source Bugs

    Free OSV-Scanner searches transitive dependencies

  6. Loan Fee Fraud Surges by a Fifth as Christmas Approaches

    FCA warns of pressure tactics as cost of living bites

  7. Two Zero-Days Fixed in December Patch Tuesday

    Close to 50 CVEs addressed this month

  8. Twitter Addresses November Data Leak Claims

    No passwords were reportedly exposed, but Twitter prompted users to enable 2FA to protect accounts

  9. California Hit By Cyber-Attack, LockBit Claims Responsibility

    At the time of writing, the California Budget website remains offline

  10. Uber Hit By New Data Breach After Attack on Third-Party Vendor

    Company information was stolen from third-party vendor Teqtivity and posted on a dark web forum

  11. Experts Warn ChatGPT Could Democratize Cybercrime

    Researchers claim AI bot can write malware and craft phishing emails

  12. Aussie Data Breaches Surge 489% in Q4 2022

    Country bucks the global trend thanks to high-profile incidents

  13. Security Overlooked in Rush to Hybrid Working

    Apogee study finds just 14% consider it a priority

  14. HSE Cyber-Attack Costs Ireland $83m So Far

    A total of roughly 100,000 people had their personal data stolen during the cyber-attack

  15. Chaos RAT Used to Enhance Linux Cryptomining Attacks

    The main downloader script and further payloads were hosted in different locations

  16. Royal Ransomware Targets US Healthcare

    Requested ransom payment demands ranged from $250,000 to over $2m

  17. Transitive Dependencies Account for 95% of Bugs

    Endor Labs warns of dangerous complexities in open source

  18. North Korean Hackers Impersonate Researchers to Steal Intel

    Report associates new intelligence-gathering tactic with Kimsuky group

  19. Researchers Find 63 Zero-Day Bugs at Latest Pwn2Own

    Competition awards winning participants nearly $1m

  20. Truebot Malware Activity Increases With Possible Evil Corp Connections

    The campaigns observed by Cisco Talos have resulted in the creation of two botnets

Why Not Watch?

  1. Mastering AI Security With ISACA’s New AAISM Certification

  2. Five Non-Negotiable Strategies to Get Identity Security Right in 2026

  3. Audit & Compliance in the Era of AI and Emerging Technology

  4. Securing M365 Data and Identity Systems Against Modern Adversaries

What’s Hot on Infosecurity Magazine?