Infosecurity News

  1. Malicious Tor Browser Installers Spread Via Darknet Video on YouTube

    The malicious variant distributed spyware to collect personal data and send it to the hacker

  2. Bug Exploitation Now Top Ransomware Access Vector

    Secureworks also warns of rise of info-stealers

  3. Russian Hackers Take Aim at Kremlin Targets: Report

    National Republican Army wants to overthrow Putin regime

  4. Kardashian Charged by SEC After Crypto Post

    Star failed to disclose payment for promotional content

  5. Ex-NSA Employee Charged For Trying to Sell US Secrets

    Dalke reportedly requested $85,000 in return for additional information in his possession

  6. Phishing Campaigns Target KFC, McDonald's in Saudi Arabia, UAE, Singapore

    Payment details of some of the victims were successfully stolen by the attackers

  7. Lazarus Group Exploits Dell Driver Vulnerability to Bypass Windows Security

    ESET said the vulnerability was exploited at least twice via a specific user-mode module

  8. ICO Fines Four "Predatory" Privacy-Invading Firms

    Marketers made over 820,000 illegal calls

  9. LA Unified School District: Hackers Have Posted Stolen Data Online

    School district is investigating authenticity of the trove

  10. Healthcare Company Owners Get Jail Time for $7m Fraud Scheme

    Duo paid bribes and kickbacks to patient marketers

  11. Hackers Hide Malware in Windows Logo, Target Middle East Governments

    The group continued to use the LookBack backdoor, but also several new types of malware

  12. Hackers Backdoor Pirated Windows OS With Cryptominer and Xtreme RAT

    The behavior of the actors was reportedly identical to what was described by Minerva Labs in 2021

  13. Lazarus-Associated Hackers Weaponize Open-Source Tools Against Several Countries

    The advisory suggests Zinc has targeted media, defense and aerospace, and IT services

  14. Microsoft Confirms Two Exchange Zero-Day Vulnerabilities

    The vulnerabilities were first discovered by Vietnamese cybersecurity firm GTSC

  15. NCSC: UK Organizations Can Learn from Ukraine's Impressive Cyber Defenses

    NCSC CEO, Lindy Cameron, outlines the UK's observations of the cyber dimension of the Russia-Ukraine conflict

  16. Manufacturers Failing to Address Cybersecurity Vulnerabilities Liable Under New European Rules

    The liability rules allow for compensation for damage when manufacturers fail to address cybersecurity vulnerabilities

  17. Researchers Discover Chaos, a Golang Multipurpose Botnet

    The tool was written in Chinese and seemed China-based due to its C2 infrastructure

  18. Government, Union-Themed Lures Used to Deliver Cobalt Strike Payloads

    Cisco Talos discovered the malicious campaign in August 2022

  19. LeakBase: India Swachhata Platform Breached, 16 Million User PII Records Exposed

    Data samples contain email addresses, hashed passwords and user IDs, other PII

  20. Mobile, Cloud and Email Are Top Threat Vectors For 2023

    PwC study finds organizations have a long way to go on security

Why Not Watch?

  1. Exposing AI’s Blind Spots: Security vs Safety in the Age of Gen AI

  2. Revisiting CIA: Developing Your Security Strategy in the SaaS Shared Reality

  3. Audit & Compliance in the Era of AI and Emerging Technology

  4. Five Non-Negotiable Strategies to Get Identity Security Right in 2026

What’s Hot on Infosecurity Magazine?