Infosecurity News

  1. US Healthcare Sector Breaches 342m+ Records Since 2009

    Biggest year so far was 2020

  2. NCSC Shares Guidance to Help Secure Large Construction Projects

    The guide includes input from firms with experience in joint ventures, including major infrastructure contracts such as HS2 and Crossrail

  3. Ex-Security Chief Accuses Twitter of Cybersecurity Negligence

    Peiter Zatko admitted that he “reasonably feared Twitter could suffer an Equifax-level hack”

  4. CISA Adds Palo Alto Networks' PAN-OS Vulnerability to Catalog

    The flaw would allow a network-based unauthenticated threat actor to perform DoS attacks

  5. Air-Gap Attack Exploits Gyroscope Ultrasonic Covert Channel to Leak Data

    Gairoscope is a covert ultrasonic channel that does not require a microphone on the receiving side

  6. Counterfeit Android Devices Revealed to Contain Backdoor Designed to Hack WhatsApp

    At least four different smartphones affected: ‘P48pro’, ‘radmi note 8’, ‘Note30u’ and ‘Mate40’

  7. Media Firms Twice as Vulnerable as Cross-Sector Average

    Nearly a third have internet-facing bugs, says BlueVoyant

  8. Configuration Errors to Blame for 80% of Ransomware

    Microsoft urges better attack surface management

  9. FBI: Beware Residential IPs Hiding Credential Stuffing

    Feds warn of various tactics hackers use to hijack accounts

  10. CEO of Blacklisted Israeli Spyware Maker NSO Steps Down

    The resignation of CEO Shalev Hulio will see COO Yaron Shohat take the helm

  11. Escanor RAT Malware Deployed Via Microsoft Office and PDF Documents

    The malware was first released for sale on January 26, 2022 as an HVNC implant, but later evolved

  12. Threat Actor Deploys Raven Storm Tool to Perform DDoS Attacks

    The malware is reportedly capable of server takedown, Wi-Fi attacks and application layer attacks

  13. DDoS Protection Weaponized to Deliver RATs

    New campaign disguised as fake Cloudflare pop-up

  14. Hackers Target ATM Maker for Bitcoins

    General Bytes confirms serious attack last week

  15. Car Dealership Hit by Major Ransomware Attack

    Holdcroft Motor Group says most systems back online now

  16. China-backed APT41 Group Hacked at Least 13 Victims in 2021

    The majority of the attacks spotted relied primarily on SQL injections on targeted domains

  17. Microsoft: Cryptojackers Continue to Evolve to Be Stealthier and Spread Faster

    Cryptojackers take advantage of legitimate system binaries on more than 200,000 devices daily

  18. Apple Warns of Critical Security Risk in Safari For iPhones, iPads and Macs

    The vulnerability gave hackers the ability to infiltrate WebKit, the engine that powers Safari

  19. Businesses Found to Neglect Cybersecurity Until it is Too Late

    The UK government report found that many leaders only review cybersecurity practices following an incident

  20. Estonia Repels Biggest Cyber-Attack Since 2007

    Tiny Baltic nation riles Russia by removing monuments

Why Not Watch?

  1. Exposing AI’s Blind Spots: Security vs Safety in the Age of Gen AI

  2. Risk-Based IT Compliance: The Case for Business-Driven Cyber Risk Quantification

  3. How Mid-Market Businesses Can Leverage Microsoft Security for Proactive Defenses

  4. Revisiting CIA: Developing Your Security Strategy in the SaaS Shared Reality

What’s Hot on Infosecurity Magazine?