Infosecurity News

  1. Google Launches Major Open Source Bug Bounty Program

    Initiative is part of $10bn commitment to improve cybersecurity

  2. FBI: Hackers Are Exploiting DeFi Bugs to Steal Funds

    Users of decentralized finance platforms at risk

  3. UK Spies Fund New Course for Female Coders

    GCHQ wants to improve diversity for better results

  4. Global Ransomware Damages to Exceed $30bn by 2023

    Six hundred malicious email campaigns made their way across the internet in the first half of 2022

  5. US Cyber Command and NSA Partner On Defence Efforts For Midterms Elections

    The group's main goal is to monitor foreign adversaries who may interfere with elections

  6. Iran-Based MuddyWater Targets Log4j 2 Vulnerabilities in SysAid Apps in Israel

    It is the first campaign in which the hacker group exploits SysAid apps as a vector for initial access

  7. TeamTNT Targeted Cloud Instances and Containerized Environments For Two Years

    The hacking group most likely originates from Germany

  8. 0ktapus Phishing Campaign Targets Okta Identity Credentials

    Despite using low-skill methods, the campaign compromised a large number of well-known companies

  9. Cosmetics Giant Sephora to Pay $1m+ Privacy Settlement

    California’s data protection law bares its teeth

  10. Block Faces Class Action Suit After 2021 Breach

    Plaintiffs argue firm’s security posture was ineffective

  11. LastPass Hackers Stole Source Code

    Password management firm reveals incident in early August

  12. Microsoft Attributes New Post-Compromise Capability to Nobelium

    MagicWeb improves on FoggyWeb by facilitating covert access directly via a malicious DLL

  13. Talos Renews Cybersecurity Support For Ukraine on Independence Day

    Cisco and Talos both have resources available to organizations in Ukraine in need of assistance

  14. CISA Releases Guidelines to Aid Companies Transition to Post-quantum Cryptography

    The guide provides overview of potential impacts of quantum computing on National Critical Functions

  15. US Firm Pays $16m to Settle Healthcare Fraud Claims

    Essilor International resolves False Claims Act allegations

  16. Workplace Stress Worse than Cyber-Attack Fears for Security Pros

    CIISec study finds few have adopted industry best practices

  17. Scammers Create "AI Hologram" of C-Suite Crypto Exec

    Online fraudsters appear to be upping their game

  18. Plex Suffers Data Breach, Warns Users to Reset Passwords

    The company said it discovered suspicious activity on one of its databases on Tuesday

  19. War in Ukraine Has Pushed Two-Thirds of Businesses to Change Cyber Strategy

    The use of machine identity tools is growing in state-sponsored cyber-attacks

  20. VMware Fixes Privilege Escalation Vulnerabilities in VMware Tools

    The flaw reportedly impacted the software on both Windows and Linux systems

Why Not Watch?

  1. 68% of Businesses Say Employees Are Their Biggest Cyber Threat. Now What?

  2. Same Front Door, New Visitors: Securing Humans and AI Agents at the Browser

  3. Why Resilience‑Focused Cloud Design Is Your Best Defense Against Modern Attacks

  4. How to Recover From a Cyber-Attack: A Step-by-Step Playbook

What’s Hot on Infosecurity Magazine?