Infosecurity News

  1. Customer and Employee Data the Top Prize for Hackers – Imperva

    Customer and employee data accounts for almost half all stolen data while credit cards and password see a decline

  2. Applications Five Years or Older Likely to have Security Flaws

    Veracode’s 2023 State of Software Security Report is focused on flaw introduction

  3. Over 100 CVEs Addressed in First Patch Tuesday of 2023

    Microsoft's January Patch Tuesday resolved over 100 CVEs, including an actively exploited zero day

  4. US Supreme Court Allows WhatsApp to Sue NSO Group

    WhatsApp can now sue for damages ensued by the installation of the Pegasus spyware

  5. Researchers Find Security Flaw in JsonWebToken Library Used By 20,000+ Projects

    An attacker could perform RCE on a server verifying a maliciously crafted JWT request

  6. GitHub Adds Features to Automate Vulnerability Code Scanning

    Called “default setup,” the novel capability simplifies starting code scanning on repositories

  7. UK Charities Offered Free Cyber Essentials Support

    The NCSC’s new Funded Cyber Essentials Programme will support SMEs as well as charities

  8. Ukraine: Russian Cyber-Attacks Should Be Considered War Crimes

    A Ukrainian official revealed that evidence of Russian cyber-attacks are being gathered to support potential war crime prosecutions

  9. Freejacking Campaign By PurpleUrchin Bypasses Captchas

    The threat actors also deployed more aggressive techniques for mining CPU resources

  10. ChatGPT Used to Develop New Malicious Tools

    These include infostealers, multi-layer encryption tools and dark web marketplace scripts

  11. Dark Web Actors Fight For Drug Trafficking and Illegal Pharmacy Supremacy

    Following the takedown of the Hydra Marketplace in 2022, 10 darknet markets rose to fill the void

  12. Global Cyber-Attack Volume Surges 38% in 2022

    Last year was also worst on record for UK businesses

  13. Threat Actors Spread RAT Via Pokemon NFT Card Site

    Phishing page lures unsuspecting users into installing remote access malware

  14. FCC Wants to Accelerate Breach Reporting for Telcos

    Proposals designed to strengthen consumer protections

  15. WhatsApp Unveils Proxy Support to Tackle Internet Censorship

    The Meta-owned firm also compiled a guide designed to help users set up their own proxy servers

  16. Blind Eagle Hacking Group Targets South America With New Tools

    Security experts from Check Point Research unveiled the findings in a new advisory

  17. US Family Planning Non-Profit MFHS Confirms Ransomware Attack

    The non-profit said its systems were compromised between August 2021 and April 2022

  18. UK Schools Hit by Mass Leak of Confidential Data

    Confidential data including child passport scans and staff pay scales have been leaked following cyber-attacks in 2022

  19. Personal Storage Table Files Accessed in Rackspace Attack

    Incident struck in early December 2022

  20. Security Industry Hits Back with MegaCortex Decryptor

    Another ransomware variant bites the dust

Why Not Watch?

  1. Securing M365 Data and Identity Systems Against Modern Adversaries

  2. How to Maintain the Intelligence Edge in a Disrupted Threat Landscape

  3. How Trusted Time Strengthens Network Security

  4. The Cloud Risk Nobody Talks About: Why Resilience‑Focused Cloud Design Is Your Best Defense Against Modern Attacks

What’s Hot on Infosecurity Magazine?