Infosecurity News

  1. CISA Warns of Hackers Exploiting Multiple Vulnerabilities in the Zimbra Collaboration Suite

    The advisory was compiled by CISA with the Multi-State Information Sharing & Analysis Center

  2. RubyGems Mandates MFA for Top-100 Package Maintainers

    The package manager started enforcing MFA on owners of gems with over 180 million total downloads

  3. Organizations Struggle to Fend Off Cloud and Web Attacks

    The study queries more than 950 IT and security professionals across the Americas, EMEA and APAC

  4. Identity Scams Soar to Make 2021 a Record Year

    Non-profit says Google Voice scams were the most reported threat

  5. USBs Still a Major OT Infection Vector

    Manufacturing was most exposed to OT threats in 2021

  6. Bug Bounty Giant Slams Quality of Vendor Patching

    Zero Day Initiative says incomplete or faulty patches now commonplace

  7. Two Additional Malicious Python Libraries Found on PyPI Repository

    The new packages were masquerading as one of the most popular open-source packages on PyPI

  8. Healthcare Provider Issues Warning After Tracking Pixels Leak Patient Data

    The leak was caused by incorrect configurations of an online tracking tool from Meta

  9. New Attack Weaponizes PLCs to Hack Enterprise and OT Networks

    The research resulted in proof-of-concept exploits against seven market-leading automation firms

  10. #DEFCON: Electrovolt Exploits Against Electron Desktop Apps Exposed

    Electron-based desktop application including Discord, Microsoft Teams and VScode were at risk from a series of vulnerabilities

  11. #DEFCON: How US Teen RickRolled His High School District

    American teenager explains how he was able to hack his local high school district

  12. Hybrid Vishing Attacks Soar 625% in Q2

    Agari warns of multi-stage phishing threat

  13. Microsoft Disrupts Russian Cyber-Espionage Group Seaborgium

    APT group focused on classic data theft via email accounts

  14. Water Company Says Supply Safe After Ransom Group Claims

    South Staffordshire Water admits it was compromised

  15. Software Patches Flaw on macOS Could Let Hackers Bypass All Security Levels

    After deploying the initial attack, the researcher was able to escape the macOS sandbox

  16. Luckymouse Uses Compromised MiMi Chat App to Target Windows and Linux Systems

    The news comes from two different security reports published by SEKOIA and Trend Micro

  17. Dutch Authorities Arrest Tornado Cash Developer Following US Sanctions on Crypto Mixer Firm

    The Financial Advanced Cyber Team of the FIOD started the criminal investigation in June

  18. #DEFCON: How Sanctions Impact Internet Operators

    Following government sanctions against Russia, Internet providers have had to learn how to implement actions

  19. #DEFCON: CISA Director Praises Congress and International Cybersecurity Cooperation

    Jen Easterly discusses the progress and challenges at CISA

  20. Three Extradited from UK to US on $5m BEC Charges

    Nigerian nationals accused of targeting US universities

Why Not Watch?

  1. How To Enhance Security Operations with AI-Powered Defenses

  2. How to Recover From a Cyber-Attack: A Step-by-Step Playbook

  3. Securing M365 Data and Identity Systems Against Modern Adversaries

  4. Financial Services Under Pressure: Supply Chain Risk, Regulation and Operational Resilience

What’s Hot on Infosecurity Magazine?