Infosecurity News

  1. Microsoft Confirms Two Exchange Zero-Day Vulnerabilities

    The vulnerabilities were first discovered by Vietnamese cybersecurity firm GTSC

  2. NCSC: UK Organizations Can Learn from Ukraine's Impressive Cyber Defenses

    NCSC CEO, Lindy Cameron, outlines the UK's observations of the cyber dimension of the Russia-Ukraine conflict

  3. Manufacturers Failing to Address Cybersecurity Vulnerabilities Liable Under New European Rules

    The liability rules allow for compensation for damage when manufacturers fail to address cybersecurity vulnerabilities

  4. Researchers Discover Chaos, a Golang Multipurpose Botnet

    The tool was written in Chinese and seemed China-based due to its C2 infrastructure

  5. Government, Union-Themed Lures Used to Deliver Cobalt Strike Payloads

    Cisco Talos discovered the malicious campaign in August 2022

  6. LeakBase: India Swachhata Platform Breached, 16 Million User PII Records Exposed

    Data samples contain email addresses, hashed passwords and user IDs, other PII

  7. Mobile, Cloud and Email Are Top Threat Vectors For 2023

    PwC study finds organizations have a long way to go on security

  8. Crypto-Thieves Cost Victims 53 Times What They Make

    Report reveals surging cloud bills for crypto-jacking victims

  9. IRS Warns of "Industrial Scale" Smishing Surge

    Tax agency says automated tools are to blame

  10. WatchGuard Report: Malware Decreases but Encrypted Malware Up in Q2 2022

    This could reflect threat actors shifting their tactics to rely on more elusive malware

  11. Hackers Use Telegram and Signal to Assist Protestors in Iran

    Key activities are data leaking and selling, including officials' phone numbers and emails

  12. Hacker Breaches Fast Company Apple News Account, Sends Racist Messages

    The breach seems related to the hack of Fast Company's website on Sunday afternoon

  13. ICO Reprimands UK Organizations for GDPR Failings

    Subject Access Requests experiencing significant delays

  14. Cyber-Threats Top Business Leaders' Biggest Concerns

    Many are operating under a false sense of security

  15. Meta Takes Down Russian "Smash-and-Grab" Disinformation Campaign

    Chinese network targeting US mid-terms also closed down

  16. Alleged Optus Hacker Apologizes, Deletes Customers' Exposed Data

    They claimed responsibility for the attack and said they had deleted the stolen data

  17. Lazarus Group Targets MacOS Users Seeking Crypto Jobs

    The new attacks would be a new instance of a campaign spotted by ESET and Malwarebytes in August

  18. Microsoft Sway Pages Weaponized to Perform Phishing and Malware Delivery

    Most phishing attack vectors observed involved clicking a direct link to a phishing page

  19. Global Firms Deal with 51 Security Incidents Each Day

    Siloed systems appear to be holding back teams

  20. TikTok Facing £27m UK Regulatory Fine

    Social network failed to protect kids, says ICO

Why Not Watch?

  1. Why Your Organisation Needs Trusted Time Synchronisation

  2. Securing M365 Data and Identity Systems Against Modern Adversaries

  3. Audit & Compliance in the Era of AI and Emerging Technology

  4. Five Non-Negotiable Strategies to Get Identity Security Right in 2026

What’s Hot on Infosecurity Magazine?