Infosecurity News

  1. New DFSCoerce NTLM Relay Attack Enables Hackers to Perform Windows Domain Takeover

    Assuming the identity of a domain, threat actors could then execute arbitrary commands

  2. #InfosecurityEurope2022 Defense Looks to Bring Cyber Into the Mainstream

    UK forces need talent and skills to allow the UK to counter cyber-threats and defend its interests

  3. #InfosecurityEurope2022 Ransomware: Payment Decisions Finely Balanced

    Firms need to weigh up operational, ethical and financial issues when deciding whether to pay ransomware, according to experts

  4. Microsoft Out-of-Band Update Fixes Arm Device Issues

    Some users could not sign-in using Azure Active Directory

  5. US Bank Data Breach Impacts Over 1.5 Million Customers

    Flagstar reveals details of December incident

  6. Researchers Reveal 56 OT Bugs in "Icefall" Report

    Forescout warns of widespread “insecure-by-design” practices

  7. Google Chrome Extensions Could Be Used to Track Users Online

    New website can check for installed Chrome extensions and generate a fingerprint of a visiting user

  8. Former Amazon Worker Convicted of Capital One Data Breach

    The software engineer mined stolen data and installed cryptocurrency miners on some AWS servers

  9. BRATA Android Malware Group Now Classified As Advanced Persistent Threat

    BRATA now targeting a specific financial institution at a time

  10. Governance Gap Raises AI Security Concerns

    Cyber now seen as most important component for adoption

  11. QNAP Customers Hit by Double Ransomware Blitz

    Taiwanese manufacturer braced for twin threat

  12. Investigators Disrupt Giant RSocks Botnet

    Russian cyber-criminals rented it out to other groups

  13. Microsoft Addresses Wi-Fi Hotspots Issues in Latest Update

    Host devices might lose connection to the internet after client device connects

  14. US Man Sentenced to Nine Years in Prison for Hacking iCloud Accounts and Stealing Nudes

    Hao Kuo Chi illegally obtained iCloud credentials of 4700 victims

  15. WordPress Updates More Than a Million Sites to Fix Critical Ninja Forms Vulnerability

    The code injection vulnerability allowed attackers to call methods in various Ninja Forms classes

  16. Experts Discuss Next Steps in Trust, Privacy and Security

    The complex interrelation between trust, privacy and cybersecurity was discussed by experts during Okta Forum 2022

  17. UK Proposes Post-Brexit Data Laws to Boost Innovation

    Proposals designed to unlock businesses' ability to use data and clamp down on nuisance calls and cookie pop-ups

  18. Cybersecurity Researchers Find Several Google Play Store Apps Stealing User Data

    Most dangerous are spyware tools capable of stealing information from other apps' notifications

  19. NakedPages Phishing Toolkit is Now Available on Cybercrime Forums

    The toolkit is reportedly fully automated and comes preloaded with more than 50 phishing templates and site projects

  20. Office 365 Functionality Could Allow Ransomware to Hold Files Stored on SharePoint and OneDrive

    Malicious actors could reduce versioning limit of files to a low number and encrypt them more times than versioning limit

Why Not Watch?

  1. How to Recover From a Cyber-Attack: A Step-by-Step Playbook

  2. Audit & Compliance in the Era of AI and Emerging Technology

  3. Modernizing GRC: From Checkbox to Strategic Advantage

  4. The Intelligence Edge: Clarity, Context and the Human Advantage in Modern CTI

What’s Hot on Infosecurity Magazine?