Infosecurity News

  1. Billbug Targets Government Agencies in Multiple Asian Countries

    According to Symantec, the targeting of a certificate authority was notable

  2. Remote Code Execution Discovered in Spotify's Backstage

    Spotify ranked the vulnerability as critical, with a CVSS score of 9.8

  3. Lazarus Backdoor DTrack Evolves to Target Europe and Latin America

    DTrack has not changed substantially, but Lazarus made some “interesting” modifications

  4. China-Based Campaign Uses 42,000 Phishing Domains

    Operation designed to spread malware and generate ad revenue

  5. Police Celebrate Arrest of 59 Suspected Scammers

    Month-long European operation focused on online fraudsters

  6. Google to Pay $392m in Landmark Privacy Case

    Multi-state settlement is largest in US history

  7. GitHub Now Supports Private Vulnerability Reporting For Public Repositories

    The feature needs to be manually enabled by repository maintainers

  8. NSA Guide Helps Firms Protect Against Memory Safety Vulnerabilities

    The document describes situations where cyber actors steal sensitive information and other negative impacts

  9. Australia Considers Ban on Ransomware Payments After Medibank Breach

    Home affairs minister Clare O'Neil made the announcement on ABC television on Sunday

  10. Mass Email Extortion Campaign Claims Server Hack

    Threat actors claim they’ll destroy victims' reputation if they don't pay

  11. UK Shoppers Lost £15m+ to Scammers Last Winter

    Cyber experts urge consumers to improve online safety

  12. Ukrainian CERT Discloses New Data-Wiping Campaign

    Somnia malware hijacks Telegram and VPN accounts

  13. CISA Releases SSVC Guide to Help Companies Prioritize Vulnerabilities

    Remediation efforts are prioritized based on exploitation status, safety impact and prevalence criteria

  14. Man Arrested in Ontario For Alleged LockBit Ransomware Involvement

    Mikhail Vasiliev was apprehended in Canada and is in custody awaiting extradition to the US

  15. Twitter C-Level Resignations Continue As Blue Program Creates New Cyber-Risks

    They left quoting concerns about the rollout of new features without an FTC consent decree

  16. #IRISSCON: Social Engineering Testers Warned Not to Cross Ethical and Legal Boundaries

    Sharon Conheady discusses the ethical and legal dilemmas often faced by social engineering testers

  17. CISA Says Midterm Voting Uncompromised By Cyber-attacks

    Election workers will continue to work in the days ahead to certify the election results

  18. Ukrainian Cyber Cops Bust $200m Fraud Ring

    Two-year pan-European operation ends in arrests

  19. Only 30% of Cyber-Insurance Holders Say Ransomware is Covered

    Insurers are cutting back on coverage as claims surge

  20. Qatar World Cup Firms Urged to Upgrade Cyber-Threat Model

    Digital Shadows warns of elevated risk from scammers and threat actors

Why Not Watch?

  1. Behind the Curtain of Microsoft 365 Cybersecurity: Lessons from Overlooked Resilience Gaps

  2. How to Recover From a Cyber-Attack: A Step-by-Step Playbook

  3. How Trusted Time Strengthens Network Security

  4. The Cloud Risk Nobody Talks About: Why Resilience‑Focused Cloud Design Is Your Best Defense Against Modern Attacks

What’s Hot on Infosecurity Magazine?