Infosecurity News

  1. Shein Holding Company Fined $1.9m For Not Disclosing Data Breach

    The data breach saw Zoetop allegedly trying to keep the real impact of the leak quiet

  2. Education Sector Experienced 44% Increase in Cyber-Attacks Over Last Year

    An average of 2297 attacks against organizations were recorded every week

  3. #DTX2022: How to Scam Someone Using Social Media Phishing

    Jake Moore, global cybersecurity advisor at ESET, shared at DTX Europe 2022 how he used a fake social media profile to hack employees of a company

  4. Magniber Ransomware Adopts JavaScript to Attack Individual Users

    Consumers should protect themselves by using least-privilege principles

  5. Report Shows How China Has Been Using Cyber-Attacks Over the Past Decade

    Consultancy firm Booz Allen has published a comprehensive report on Chinese-sponsored threat

  6. Chinese APT WIP19 Targets IT Service Providers and Telcos

    The group is characterized by the use of a stolen digital certificate issued by DEEPSoft

  7. Malicious WhatsApp Mod Spotted Infecting Android Devices

    YoWhatsApp v2.22.11.75 was distributed via ads on Android apps like Snaptube and VidMate

  8. Budworm Espionage Group Returns, Targets US State Legislature

    Budworm leveraged the Log4j vulnerabilities to compromise the Apache Tomcat service on servers

  9. IP Cameras, VoIP and Video Conferencing Revealed as Riskiest IoT Devices

    Warning to orgnaizations to be aware of risky devices across IT, IoT, OT and IoMT

  10. UK Government Urges Action to Enhance Supply Chain Security

    The NCSC guidance has been issued amid a significant increase in supply chain attacks in recent years

  11. #DTX2022: Cyber Needs to Redress the Defensive-Offensive Balance Following Russia-Ukraine

    The Russia-Ukraine conflict highlights the value of defensive cybersecurity, says Dr Alexi Drew

  12. FormBook Tops Check Point's Most Wanted Malware List For September

    Vidar, an infostealer, has entered the top 10 list in eighth place for the first time

  13. Microsoft October 2022 Patch Tuesday Fixes 84 Flaws, Including Zero-Day

    Thirteen of the 84 vulnerabilities fixed in yesterday’s update are classified as 'Critical'

  14. Singtel's Australian IT Firm Dialog Suffers Data Breach

    The breach affected around 20 clients and 1000 current and/or former Dialog employees

  15. Claroty Found Hardcoded Cryptographic Keys in Siemens PLCs Using RCE

    The vulnerability has been assigned a CVE – Siemens has already updated affected systems and published recommendations for mitigating the risk

  16. Polonium Uses Seven Backdoor Variants to Spy on Israeli Organizations

    Researchers at ESET found evidence of previously undocumented custom tools used by the hackers

  17. #ISC2Congress: US Government is Embracing 'Collective Defense'

    We are all in it together, says the DoE's chief information officer

  18. Google Unifies Recent Acquisitions Under New Cloud Security Offering

    Google embeds in cloud security market with new software suite

  19. Toyota Reveals Data Leak of 300,000 Customers

    The leak was caused by an access key being made publicly available on GitHub for almost five years

  20. A New Wave of PayPal Invoice Scams Using Crypto Disguise

    Trend Micro found evidence of new PayPal scammers impersonating crypto-related businesses

Why Not Watch?

  1. Five Non-Negotiable Strategies to Get Identity Security Right in 2026

  2. Securing M365 Data and Identity Systems Against Modern Adversaries

  3. Time Is a New Attack Surface: Securing Networks with Trusted Time Synchronization

  4. Revisiting CIA: Developing Your Security Strategy in the SaaS Shared Reality

What’s Hot on Infosecurity Magazine?