Infosecurity News

  1. UK Privacy Tsar Defends Controversial Enforcement Strategy

    Information commissioner wants to avoid "money-go-round" of government fines

  2. Dozens of Russian Groups Steal 50 Million User Passwords

    Info-stealing malware infected nearly one million devices in 2022

  3. Ducktail Hacker Group Evolves, Targets Facebook Business Accounts

    Activity observed since early September featured new avenues to spear-phish targets

  4. US Takes Down Domains Used in 'Pig Butchering' Cryptocurrency Scheme

    The US Attorney's Office for the Eastern District of Virginia made the announcement on Monday

  5. Firms Spend $1197 Per Employee Yearly to Address Cyber-Attacks

    The data excludes compliance fines, ransomware costs and losses from non-operational processes

  6. Estonian Duo Arrested for Masterminding $575m Ponzi Scheme

    US authorities unseal 18-count indictment

  7. Experts Warn Threat Actors May Abuse Red Team Tool Nighthawk

    C2 framework could be the next Cobalt Strike, says Proofpoint

  8. Credential Stuffers Steal $300K from DraftKings Customers

    Complaints about poor customer service flood Twitter

  9. Google Wins Legal Battle Against Glupteba Botnet

    The tech giant said the court's ruling against the botnet operators set a crucial legal precedent

  10. Thousands of Algolia API Keys Could Expose Users' Data

    The majority were from shopping, education, lifestyle, business and medical firms

  11. Luna Moth Phishing Extortion Campaign Targets Businesses in Multiple Sectors

    It leverages extortion without encryption and has cost victims hundreds of thousands of dollars

  12. Private Equity Exposed by Cyber-Hygiene Shortcomings

    Fifth of portfolio companies feature "zero tolerance findings"

  13. New AXLocker Ransomware Steals Victims' Discord Tokens

    Researchers also discover two additional new variants

  14. Ten Charged in $11m Healthcare BEC Plots

    Several of the men diverted funds intended for hospitals

  15. CISA, NSA, ODNI Publish Software Supply Chain Guidelines For Customers

    The come after the August release of guidance for developers and the October one for suppliers

  16. Shoppers Warned Stay Alert this Black Friday as Hackers Renew Efforts

    Cyber-criminals are exploiting the busy period during both purchase and delivery stages

  17. Instagram Credential Phishing Attacks Bypass Microsoft Email Security

    The attack bypassed both SPF and DMARC email authentication checks

  18. Emerging Threat Actor DEV-0569 Expands Its Toolkit to Deliver Royal Ransomware

    As well as malvertising and phishing links, the new threat actor is now also using contact forms to deliver its payloads, found Microsoft

  19. Netflix Phishing Emails Surge 78%

    Social engineers are using Unicode techniques to bypass filters

  20. Russian Duo Indicted Over E-Book Piracy

    St Petersburg couple were arrested in Argentina

Why Not Watch?

  1. How To Enhance Security Operations with AI-Powered Defenses

  2. The Intelligence Edge: Clarity, Context and the Human Advantage in Modern CTI

  3. Why Your Organisation Needs Trusted Time Synchronisation

  4. Audit & Compliance in the Era of AI and Emerging Technology

What’s Hot on Infosecurity Magazine?