Infosecurity News

  1. Chinese APT WIP19 Targets IT Service Providers and Telcos

    The group is characterized by the use of a stolen digital certificate issued by DEEPSoft

  2. Malicious WhatsApp Mod Spotted Infecting Android Devices

    YoWhatsApp v2.22.11.75 was distributed via ads on Android apps like Snaptube and VidMate

  3. Budworm Espionage Group Returns, Targets US State Legislature

    Budworm leveraged the Log4j vulnerabilities to compromise the Apache Tomcat service on servers

  4. IP Cameras, VoIP and Video Conferencing Revealed as Riskiest IoT Devices

    Warning to orgnaizations to be aware of risky devices across IT, IoT, OT and IoMT

  5. UK Government Urges Action to Enhance Supply Chain Security

    The NCSC guidance has been issued amid a significant increase in supply chain attacks in recent years

  6. #DTX2022: Cyber Needs to Redress the Defensive-Offensive Balance Following Russia-Ukraine

    The Russia-Ukraine conflict highlights the value of defensive cybersecurity, says Dr Alexi Drew

  7. FormBook Tops Check Point's Most Wanted Malware List For September

    Vidar, an infostealer, has entered the top 10 list in eighth place for the first time

  8. Microsoft October 2022 Patch Tuesday Fixes 84 Flaws, Including Zero-Day

    Thirteen of the 84 vulnerabilities fixed in yesterday’s update are classified as 'Critical'

  9. Singtel's Australian IT Firm Dialog Suffers Data Breach

    The breach affected around 20 clients and 1000 current and/or former Dialog employees

  10. Claroty Found Hardcoded Cryptographic Keys in Siemens PLCs Using RCE

    The vulnerability has been assigned a CVE – Siemens has already updated affected systems and published recommendations for mitigating the risk

  11. Polonium Uses Seven Backdoor Variants to Spy on Israeli Organizations

    Researchers at ESET found evidence of previously undocumented custom tools used by the hackers

  12. #ISC2Congress: US Government is Embracing 'Collective Defense'

    We are all in it together, says the DoE's chief information officer

  13. Google Unifies Recent Acquisitions Under New Cloud Security Offering

    Google embeds in cloud security market with new software suite

  14. Toyota Reveals Data Leak of 300,000 Customers

    The leak was caused by an access key being made publicly available on GitHub for almost five years

  15. A New Wave of PayPal Invoice Scams Using Crypto Disguise

    Trend Micro found evidence of new PayPal scammers impersonating crypto-related businesses

  16. #ISC2Congress: Cybersecurity Pros Must Prepare for Emerging Deepfake Threats

    The security risks posed by deepfake technology are increasing

  17. Calls for Better Microsoft Teams Backup as Confidential Info Sent on the Platform

    Many admitted to sending messages on Teams they should not have

  18. Pro-Russian Group KillNet Claims Responsibility for 14 US Airport DDoS Attacks

    The websites of several major US airports were disrupted on October 10, 2022

  19. Ukraine Enhances Cooperation With EU Cybersecurity Agencies

    Ukraine looks to enhance European integration with ENISA special partner status

  20. Intel Confirms Source Code Leak

    Cyber-criminals could use the leaked source code to help launch attacks

What’s Hot on Infosecurity Magazine?