Infosecurity News

  1. Euro Authorities Warn World Cup Fans Over Qatari Apps

    Security and privacy concerns mount for those attending matches

  2. Most Neurodiverse Women in Tech Feel Unsupported: Study

    Report suggests high demand for talent from security sector employers

  3. LockBit Remains Most Prolific Ransomware in Q3

    Phobos is a close second, according to Trellix

  4. Billbug Targets Government Agencies in Multiple Asian Countries

    According to Symantec, the targeting of a certificate authority was notable

  5. Remote Code Execution Discovered in Spotify's Backstage

    Spotify ranked the vulnerability as critical, with a CVSS score of 9.8

  6. Lazarus Backdoor DTrack Evolves to Target Europe and Latin America

    DTrack has not changed substantially, but Lazarus made some “interesting” modifications

  7. China-Based Campaign Uses 42,000 Phishing Domains

    Operation designed to spread malware and generate ad revenue

  8. Police Celebrate Arrest of 59 Suspected Scammers

    Month-long European operation focused on online fraudsters

  9. Google to Pay $392m in Landmark Privacy Case

    Multi-state settlement is largest in US history

  10. GitHub Now Supports Private Vulnerability Reporting For Public Repositories

    The feature needs to be manually enabled by repository maintainers

  11. NSA Guide Helps Firms Protect Against Memory Safety Vulnerabilities

    The document describes situations where cyber actors steal sensitive information and other negative impacts

  12. Australia Considers Ban on Ransomware Payments After Medibank Breach

    Home affairs minister Clare O'Neil made the announcement on ABC television on Sunday

  13. Mass Email Extortion Campaign Claims Server Hack

    Threat actors claim they’ll destroy victims' reputation if they don't pay

  14. UK Shoppers Lost £15m+ to Scammers Last Winter

    Cyber experts urge consumers to improve online safety

  15. Ukrainian CERT Discloses New Data-Wiping Campaign

    Somnia malware hijacks Telegram and VPN accounts

  16. CISA Releases SSVC Guide to Help Companies Prioritize Vulnerabilities

    Remediation efforts are prioritized based on exploitation status, safety impact and prevalence criteria

  17. Man Arrested in Ontario For Alleged LockBit Ransomware Involvement

    Mikhail Vasiliev was apprehended in Canada and is in custody awaiting extradition to the US

  18. Twitter C-Level Resignations Continue As Blue Program Creates New Cyber-Risks

    They left quoting concerns about the rollout of new features without an FTC consent decree

  19. #IRISSCON: Social Engineering Testers Warned Not to Cross Ethical and Legal Boundaries

    Sharon Conheady discusses the ethical and legal dilemmas often faced by social engineering testers

  20. CISA Says Midterm Voting Uncompromised By Cyber-attacks

    Election workers will continue to work in the days ahead to certify the election results

Why Not Watch?

  1. Risk-Based IT Compliance: The Case for Business-Driven Cyber Risk Quantification

  2. Mastering AI Security With ISACA’s New AAISM Certification

  3. Modernizing GRC: From Checkbox to Strategic Advantage

  4. Exposing AI’s Blind Spots: Security vs Safety in the Age of Gen AI

What’s Hot on Infosecurity Magazine?