Infosecurity News

  1. Ex-NSA Employee Charged For Trying to Sell US Secrets

    Dalke reportedly requested $85,000 in return for additional information in his possession

  2. Phishing Campaigns Target KFC, McDonald's in Saudi Arabia, UAE, Singapore

    Payment details of some of the victims were successfully stolen by the attackers

  3. Lazarus Group Exploits Dell Driver Vulnerability to Bypass Windows Security

    ESET said the vulnerability was exploited at least twice via a specific user-mode module

  4. ICO Fines Four "Predatory" Privacy-Invading Firms

    Marketers made over 820,000 illegal calls

  5. LA Unified School District: Hackers Have Posted Stolen Data Online

    School district is investigating authenticity of the trove

  6. Healthcare Company Owners Get Jail Time for $7m Fraud Scheme

    Duo paid bribes and kickbacks to patient marketers

  7. Hackers Hide Malware in Windows Logo, Target Middle East Governments

    The group continued to use the LookBack backdoor, but also several new types of malware

  8. Hackers Backdoor Pirated Windows OS With Cryptominer and Xtreme RAT

    The behavior of the actors was reportedly identical to what was described by Minerva Labs in 2021

  9. Lazarus-Associated Hackers Weaponize Open-Source Tools Against Several Countries

    The advisory suggests Zinc has targeted media, defense and aerospace, and IT services

  10. Microsoft Confirms Two Exchange Zero-Day Vulnerabilities

    The vulnerabilities were first discovered by Vietnamese cybersecurity firm GTSC

  11. NCSC: UK Organizations Can Learn from Ukraine's Impressive Cyber Defenses

    NCSC CEO, Lindy Cameron, outlines the UK's observations of the cyber dimension of the Russia-Ukraine conflict

  12. Manufacturers Failing to Address Cybersecurity Vulnerabilities Liable Under New European Rules

    The liability rules allow for compensation for damage when manufacturers fail to address cybersecurity vulnerabilities

  13. Researchers Discover Chaos, a Golang Multipurpose Botnet

    The tool was written in Chinese and seemed China-based due to its C2 infrastructure

  14. Government, Union-Themed Lures Used to Deliver Cobalt Strike Payloads

    Cisco Talos discovered the malicious campaign in August 2022

  15. LeakBase: India Swachhata Platform Breached, 16 Million User PII Records Exposed

    Data samples contain email addresses, hashed passwords and user IDs, other PII

  16. Mobile, Cloud and Email Are Top Threat Vectors For 2023

    PwC study finds organizations have a long way to go on security

  17. Crypto-Thieves Cost Victims 53 Times What They Make

    Report reveals surging cloud bills for crypto-jacking victims

  18. IRS Warns of "Industrial Scale" Smishing Surge

    Tax agency says automated tools are to blame

  19. WatchGuard Report: Malware Decreases but Encrypted Malware Up in Q2 2022

    This could reflect threat actors shifting their tactics to rely on more elusive malware

  20. Hackers Use Telegram and Signal to Assist Protestors in Iran

    Key activities are data leaking and selling, including officials' phone numbers and emails

Why Not Watch?

  1. How to Recover From a Cyber-Attack: A Step-by-Step Playbook

  2. Why Resilience‑Focused Cloud Design Is Your Best Defense Against Modern Attacks

  3. Behind the Curtain of Microsoft 365 Cybersecurity: Lessons from Overlooked Resilience Gaps

  4. How Trusted Time Strengthens Network Security

What’s Hot on Infosecurity Magazine?