Infosecurity News

  1. Armenia and Azerbaijan Hackers Use OxtaRAT to Monitor Conflict

    The newest version of OxtaRAT is a polyglot file combining a compiled AutoIT script and an image

  2. UK NCSC Launches Recommendations on Supply Chain Mapping

    The UK National Cybersecurity Centre’s new guidance breaks down the essentials of a good supply chain mapping (SCM) list

  3. Firm Fined £200K For "Exploitative" Call Campaign

    It's OK Ltd made over 1.7 million nuisance calls

  4. Data Leak Hits Thousands of NHS Workers

    Email snafu affects staff at Liverpool University Hospital Foundation Trust

  5. Hackers Fake Emsisoft Certificate to Hide Attack

    Attempt to trick network defenders into allow-listing remote access app

  6. BEC Groups Target Firms With Multilingual Impersonation Attacks

    Combined, the two groups have launched BEC campaigns in at least 13 different languages

  7. City of Oakland Declares State of Emergency After Ransomware Attack

    Core functions are intact, but the city has taken certain non-emergency systems offline

  8. Hackers Leverage PayPal to Send Malicious Invoices

    The phishing email warned users that there had been fraud on the account

  9. Quarter of Crypto Tokens Linked to Pump-and-Dump

    Scammers made an estimated $30m in profits in 2022

  10. Experts Warn of Surge in Multipurpose Malware

    The average malware variant now utilizes 11 TTPs

  11. UK Policing Riddled with Chinese CCTV Cameras

    Security and ethical concerns raised by surveillance commissioner

  12. Google Launches Privacy Sandbox Beta on Android 13 Devices

    It is an initiative designed to limit user data sharing in digital advertising

  13. LockBit and Royal Mail Ransomware Negotiation Leaked

    It shows the threat actor trying to convince Royal Mail to pay the ransom using various techniques

  14. Crypto-Stealing Campaign Deploys MortalKombat Ransomware

    The attacks mainly targeted victims in the US but also in the UK, Turkey, and the Philippines

  15. Threat Analysis: VMware ESXi Attacks Soared in 2022

    Recorded Future analyzed how threat actors have been exploiting VMware ESXi vulnerabilities over the past three years

  16. Microsoft Patches Three Zero-Day Bugs This Month

    February Patch Tuesday contains updates for over 70 CVEs

  17. SAS App and Website Hit as Attacks Target Swedish Firms

    Valentine’s Day outages hit airline and media companies

  18. SideWinder APT Attacks Regional Targets in New Campaign

    Indian threat group conducts hundreds of operations in a short time-span

  19. Lokibot, AgentTesla Grow in January 2023's Most Wanted Malware List

    The infostealer Vidar has returned to the top 10 after an increase in ‘brandjacking’ attacks

  20. Chinese Hackers Infiltrate South American Diplomatic Networks

    The group previously targeted government agencies and think tanks in Asia and Europe

Why Not Watch?

  1. Securing M365 Data and Identity Systems Against Modern Adversaries

  2. Financial Services Under Pressure: Supply Chain Risk, Regulation and Operational Resilience

  3. Behind the Curtain of Microsoft 365 Cybersecurity: Lessons from Overlooked Resilience Gaps

  4. How To Enhance Security Operations with AI-Powered Defenses

What’s Hot on Infosecurity Magazine?