Infosecurity News

  1. Phishing Campaigns Target KFC, McDonald's in Saudi Arabia, UAE, Singapore

    Payment details of some of the victims were successfully stolen by the attackers

  2. Lazarus Group Exploits Dell Driver Vulnerability to Bypass Windows Security

    ESET said the vulnerability was exploited at least twice via a specific user-mode module

  3. ICO Fines Four "Predatory" Privacy-Invading Firms

    Marketers made over 820,000 illegal calls

  4. LA Unified School District: Hackers Have Posted Stolen Data Online

    School district is investigating authenticity of the trove

  5. Healthcare Company Owners Get Jail Time for $7m Fraud Scheme

    Duo paid bribes and kickbacks to patient marketers

  6. Hackers Hide Malware in Windows Logo, Target Middle East Governments

    The group continued to use the LookBack backdoor, but also several new types of malware

  7. Hackers Backdoor Pirated Windows OS With Cryptominer and Xtreme RAT

    The behavior of the actors was reportedly identical to what was described by Minerva Labs in 2021

  8. Lazarus-Associated Hackers Weaponize Open-Source Tools Against Several Countries

    The advisory suggests Zinc has targeted media, defense and aerospace, and IT services

  9. Microsoft Confirms Two Exchange Zero-Day Vulnerabilities

    The vulnerabilities were first discovered by Vietnamese cybersecurity firm GTSC

  10. NCSC: UK Organizations Can Learn from Ukraine's Impressive Cyber Defenses

    NCSC CEO, Lindy Cameron, outlines the UK's observations of the cyber dimension of the Russia-Ukraine conflict

  11. Manufacturers Failing to Address Cybersecurity Vulnerabilities Liable Under New European Rules

    The liability rules allow for compensation for damage when manufacturers fail to address cybersecurity vulnerabilities

  12. Researchers Discover Chaos, a Golang Multipurpose Botnet

    The tool was written in Chinese and seemed China-based due to its C2 infrastructure

  13. Government, Union-Themed Lures Used to Deliver Cobalt Strike Payloads

    Cisco Talos discovered the malicious campaign in August 2022

  14. LeakBase: India Swachhata Platform Breached, 16 Million User PII Records Exposed

    Data samples contain email addresses, hashed passwords and user IDs, other PII

  15. Mobile, Cloud and Email Are Top Threat Vectors For 2023

    PwC study finds organizations have a long way to go on security

  16. Crypto-Thieves Cost Victims 53 Times What They Make

    Report reveals surging cloud bills for crypto-jacking victims

  17. IRS Warns of "Industrial Scale" Smishing Surge

    Tax agency says automated tools are to blame

  18. WatchGuard Report: Malware Decreases but Encrypted Malware Up in Q2 2022

    This could reflect threat actors shifting their tactics to rely on more elusive malware

  19. Hackers Use Telegram and Signal to Assist Protestors in Iran

    Key activities are data leaking and selling, including officials' phone numbers and emails

  20. Hacker Breaches Fast Company Apple News Account, Sends Racist Messages

    The breach seems related to the hack of Fast Company's website on Sunday afternoon

Why Not Watch?

  1. Why Resilience‑Focused Cloud Design Is Your Best Defense Against Modern Attacks

  2. Behind the Curtain of Microsoft 365 Cybersecurity: Lessons from Overlooked Resilience Gaps

  3. How Trusted Time Strengthens Network Security

  4. How to Recover From a Cyber-Attack: A Step-by-Step Playbook

What’s Hot on Infosecurity Magazine?