Infosecurity News

  1. Budworm Espionage Group Returns, Targets US State Legislature

    Budworm leveraged the Log4j vulnerabilities to compromise the Apache Tomcat service on servers

  2. IP Cameras, VoIP and Video Conferencing Revealed as Riskiest IoT Devices

    Warning to orgnaizations to be aware of risky devices across IT, IoT, OT and IoMT

  3. UK Government Urges Action to Enhance Supply Chain Security

    The NCSC guidance has been issued amid a significant increase in supply chain attacks in recent years

  4. #DTX2022: Cyber Needs to Redress the Defensive-Offensive Balance Following Russia-Ukraine

    The Russia-Ukraine conflict highlights the value of defensive cybersecurity, says Dr Alexi Drew

  5. FormBook Tops Check Point's Most Wanted Malware List For September

    Vidar, an infostealer, has entered the top 10 list in eighth place for the first time

  6. Microsoft October 2022 Patch Tuesday Fixes 84 Flaws, Including Zero-Day

    Thirteen of the 84 vulnerabilities fixed in yesterday’s update are classified as 'Critical'

  7. Singtel's Australian IT Firm Dialog Suffers Data Breach

    The breach affected around 20 clients and 1000 current and/or former Dialog employees

  8. Claroty Found Hardcoded Cryptographic Keys in Siemens PLCs Using RCE

    The vulnerability has been assigned a CVE – Siemens has already updated affected systems and published recommendations for mitigating the risk

  9. Polonium Uses Seven Backdoor Variants to Spy on Israeli Organizations

    Researchers at ESET found evidence of previously undocumented custom tools used by the hackers

  10. #ISC2Congress: US Government is Embracing 'Collective Defense'

    We are all in it together, says the DoE's chief information officer

  11. Google Unifies Recent Acquisitions Under New Cloud Security Offering

    Google embeds in cloud security market with new software suite

  12. Toyota Reveals Data Leak of 300,000 Customers

    The leak was caused by an access key being made publicly available on GitHub for almost five years

  13. A New Wave of PayPal Invoice Scams Using Crypto Disguise

    Trend Micro found evidence of new PayPal scammers impersonating crypto-related businesses

  14. #ISC2Congress: Cybersecurity Pros Must Prepare for Emerging Deepfake Threats

    The security risks posed by deepfake technology are increasing

  15. Calls for Better Microsoft Teams Backup as Confidential Info Sent on the Platform

    Many admitted to sending messages on Teams they should not have

  16. Pro-Russian Group KillNet Claims Responsibility for 14 US Airport DDoS Attacks

    The websites of several major US airports were disrupted on October 10, 2022

  17. Ukraine Enhances Cooperation With EU Cybersecurity Agencies

    Ukraine looks to enhance European integration with ENISA special partner status

  18. Intel Confirms Source Code Leak

    Cyber-criminals could use the leaked source code to help launch attacks

  19. ThermoSecure: Cracking Passwords Using Finger Heat on Keyboards is Now Possible

    A group of researchers have guessed 100% of six-character passwords using this attack

  20. German Cybersecurity Chief Faces Sacking Over Possible Russia Ties

    Schoenbohm accused of having maintained contacts with people involved with Russian security services

Why Not Watch?

  1. Modernizing GRC: From Checkbox to Strategic Advantage

  2. Mastering AI Security With ISACA’s New AAISM Certification

  3. Time Is a New Attack Surface: Securing Networks with Trusted Time Synchronization

  4. How To Enhance Security Operations with AI-Powered Defenses

What’s Hot on Infosecurity Magazine?