Infosecurity News

  1. Industry Coalition Urges Congress to Hold off on SBOM Requirements for Defense Contractors

    The coalition outlined the need to refine SBOM requirements before making it an obligation for defense contractors

  2. NATO Launches Massive Cyber-Defense Exercise

    Annual Cyber Coalition effort helps nations develop and share best practice

  3. Cuba Ransomware Actors Pocket $60m

    Number of US victims has doubled over the past year

  4. Trojan Steals Facebook Details from Over 300K Victims

    "Schoolyard Bully" has been active since 2018

  5. Hackers Target Colombia's Healthcare System With Ransomware

    The attack disrupted IT operations, websites and scheduling of medical appointments

  6. Spyware Vendor Variston Exploited N-Days in Chrome, Firefox, Windows

    The claims come from Google’s Threat Analysis Group, which published an advisory about the threat

  7. WhatsApp Files on Dark Web Show Millions of Records For Sale

    The list went on sale for four days and is now being distributed for free among dark web users

  8. UK Extends NIS Regulations to IT Managed Service Providers

    The UK strengthens its regulations on Network and Information Systems (NIS) to better prevent software supply chain attacks

  9. Eight Charged with $30m Unemployment Benefits Fraud

    Defendants allegedly used insider to obtain personal information

  10. Researchers Accidentally Crash Cryptomining Botnet

    Akamai reveals how a simple syntax error stopped it sending commands

  11. LastPass Reveals Another Customer Data Breach

    Incident is second this year, although company says passwords are safe

  12. Majority of US Defense Contractors Not Meeting Basic Cybersecurity Requirements

    87% of DoD contractors are failing to meet the basic level of compliance ahead of CMMC coming into force next year

  13. Australian Parliament Passes Privacy Penalty Bill

    The higher penalties and extended powers will become effective after the bill receives royal assent

  14. China-Based Hackers Target Southeast Asia With USB-Based Malware

    UNC4191 operations have affected several entities in Southeast Asia but also in the US, Europe and Asia Pacific Japan

  15. Zero-Day Flaw Discovered in Quarkus Java Framework

    The flaw has a CVSS v3 base score rating of 9.8 and can be found in the Dev UI Config Editor

  16. Businesses Increasing Cyber Spend Without Clear Strategy, Fastly Finds

    As businesses aim to spend more on cybersecurity, Fastly warns that many do so without a clear strategy

  17. Let's Encrypt Issues Three Billionth Certificate

    Free certificate authority serves over 300 million websites

  18. Most Small Biz IaaS Users Seeing Surge in Attacks

    A further 67% were hit by ransomware in past year

  19. New "Icefall" Bugs Include Critical DoS Flaw

    Millions of OT devices may be affected

  20. Oracle Fusion Middleware Vulnerability Actively Exploited in the Wild: CISA

    The bug allows unauthenticated attackers with network access to compromise Oracle Access Manager

Why Not Watch?

  1. Time Is a New Attack Surface: Securing Networks with Trusted Time Synchronization

  2. How To Enhance Security Operations with AI-Powered Defenses

  3. Modernizing GRC: From Checkbox to Strategic Advantage

  4. Audit & Compliance in the Era of AI and Emerging Technology

What’s Hot on Infosecurity Magazine?