Infosecurity News

  1. BEC Group Uses Open Source Tactics in Hundreds of Attacks

    Firebrick Ostrich has impersonated over 150 organizations

  2. Thriving Dark Web Trade in Fake Security Certifications

    Exam cheats, course leaks and fake certs offer career shortcuts

  3. Nearly 30,000 QNAP Devices Exposed Via New Bug

    Vulnerability could be exploited by ransomware groups

  4. GitHub Confirms Signing Certificates Stolen in Cyber-Attack, Revokes Them

    Revoking these certificates will invalidate some versions of GitHub Desktop for Mac and Atom

  5. DocuSign Brand Impersonation Attack Bypasses Security Measures, Targets Over 10,000

    Victims were redirected to a fake landing page to exfiltrate their Proofpoint credentials

  6. Financial Services Targeted in 28% of UK Cyber-Attacks Last Year

    API attacks, bad bots and DDoS attacks were the industry's main security challenges

  7. Killnet Attackers DDoS US and Dutch Hospitals

    Retaliatory Russian attacks latest response to geopolitical moves

  8. Two US Doctors Convicted of $30m Medicare Fraud

    Claims submitted for medical equipment not needed by patients

  9. QNAP: Patch Critical Remote Code Injection Bug

    Vulnerability affects QTS and QuTS Hero firmware

  10. JD Sports Confirms Breach Affected 10 Million Customers

    The cyber-attack hit the company between November 2018 and October 2020

  11. Hackers Use TrickGate Software to Deploy Emotet, REvil, Other Malware

    Threat actors used TrickGate to conduct between 40 and 650 attacks per week in the last two years

  12. Devs on Dark Web Forums Paid Up to $20,000 For Illicit Activities

    The data comes from 155 dark web forums analyzed between January 2020 and June 2022

  13. Fake Money Apps Garner Millions of Android Downloads

    Over 20 million users install apps from Google Play

  14. New Yorker Gets Four Years for $9m COVID Fraud Scheme

    Woman recruited multiple co-conspirators to help her

  15. Five Data Wipers Attack Ukrainian News Agency

    Russia's Sandworm group suspected of destructive attack

  16. Multiple Vulnerabilities Found In Healthcare Software OpenEMR

    Two of these vulnerabilities combined could lead to unauthenticated remote code execution

  17. Black Basta Deploys PlugX Malware in USB Devices With New Technique

    The variant is “wormable” and can infect USB devices to hide itself from the Windows OS

  18. New 'Pig Butchering' Scam in West Africa Impersonates US Financial Advisors

    DomainTools said most of these attacks exploited professional network services such as LinkedIn

  19. Security is Key to Business Transformation, Say IT Chiefs

    Two-fifths see it as a critical innovation driver

  20. Global Action "Dismantles" Hive Ransomware Group

    FBI distributes hundreds of decryption keys to victims

Why Not Watch?

  1. How Trusted Time Strengthens Network Security

  2. How to Maintain the Intelligence Edge in a Disrupted Threat Landscape

  3. The Cloud Risk Nobody Talks About: Why Resilience‑Focused Cloud Design Is Your Best Defense Against Modern Attacks

  4. How To Enhance Security Operations with AI-Powered Defenses

What’s Hot on Infosecurity Magazine?