Infosecurity News

“Disturbing” Rise in Nation State Activity, Microsoft Reports
The proportion of cyber-attacks perpetrated by nation states targeting critical infrastructure jumped from 20% to 40%

ICO Slashes Government Data Breach Fine
UK regulator reduces penalty by 90%

Phishers Abuse Microsoft Voicemail Service to Trick Users
Avanan spots campaign leveraging Dynamic 365 Customer Voice

World's Most Expensive Observatory Floored by Cyber-Attack
ALMA suspends astronomical observations

TikTok Confirms Chinese Staff Can Access UK and EU User Data
The news comes from the social media giant’s head of privacy in Europe, Elaine Fox

Cyber Threat Landscape Shaped by Ukraine Conflict, ENISA Report Reveals
The EU cybersecurity agency released its 10th annual threat landscape report on November 3, 2022

RomCom Weaponized KeePass and SolarWinds Instances to Target Ukraine, Maybe UK
The discovery comes from the BlackBerry Research & Intelligence Team

Zurich and Mondelez Reach NotPetya Settlement, but Cyber-Risk May Increase
The parties have mutually resolved the matter, but details of the settlement were not provided

Bot Warning for Retailers Ahead of Busy Shopping Season
Automated threats accounted for 62% of attacks last year

UK Security Agency to Scan the Country for Bugs
NCSC wants to determine "the vulnerability of the UK"

Threat Actor "OPERA1ER" Steals Millions from Banks and Telcos
More than 30 organizations compromised by off-the-shelf tools

US Hacker Group Indicted For Million-Dollar RICO Conspiracy
The group banded together to engage in a sophisticated cybercrime and tax fraud scheme

Android Apps With a Million Downloads Led Users to Phishing Sites
Chrome tabs remained open in the background, even while the smartphone was locked

Dropbox Suffers Breach, 130 GitHub Repositories Compromised
Dropbox believes the actors behind the attack are the same that targeted GitHub users in September

Mobile Phishing Attacks on Government Staff Soar
Lookout report finds over-reliance on unmanaged devices

Twitter Verified Status Users Flooded with Scams
Elon Musk’s arrival has opened the door for fraudsters

OpenSSL Security Advisory Downgraded to High Severity
Experts still recommend patching affected systems

A Third of Security Leaders Considering Quitting Their Current Role
Of those thinking of leaving their current organization, a third would do so within the next six months, according to the research

Osaka Hospital Halts Services After Ransomware Attack
Emergency operations are continuing, but the hospital system failed and cannot be accessed

CISA Publishes Multi-Factor Authentication Guidelines to Tackle Phishing
The guidelines describe methods threat actors use to steal MFA credentials and how to defend against them



