Infosecurity News

  1. Hackers Target Unpatched Flaws in Oracle E-Business Suite

    Patches for the targeted vulnerabilities were released in Oracle’s July 2025 security update

  2. WestJet Data Breach Impacts 1.2 Million Customers

    WestJet revealed that customer personal details and membership data were stolen in the June 2025 attack

  3. US Government Shutdown to Slash Federal Cybersecurity Staff

    The US government shutdown is estimated to result in around 65% of CISA staff being furloughed, with fears that threat actors will exploit critical security gaps

  4. Extortion Emails Sent to Executives by Self-Proclaimed Clop Gang Member

    The initial investigation shows early signs of links with the FIN11 and Clop cyber extortion groups

  5. Confucius Shifts from Document Stealers to Python Backdoors

    The Confucius cyber-espionage group has shifted its tactics from document-focused stealers to Python-based backdoors like AnonDoor

  6. Free VPN Apps Found Riddled With Security Flaws

    A new study by Zimperium has revealed serious risks in free VPN apps, exposing users to privacy threats and security flaws

  7. Expired US Cyber Law Puts Data Sharing and Threat Response at Risk

    Experts argued that the lapse of the Cybersecurity Information Sharing Act could have far-reaching consequences in US national cyber defenses

  8. Forrester: Agentic AI-Powered Breach Will Happen in 2026

    Forrester predicts agentic AI will be responsible for a major data breach in 2026

  9. Phishing Dominates EU-Wide Intrusions, says ENISA

    ENISA reveals phishing and vulnerability exploitation accounted for majority of intrusions in past year

  10. Broadcom Issues Patches for VMware NSX and vCenter Security Flaws

    Broadcom has released security patches for critical flaws affecting several VMware products

  11. Shortcut-based Credential Lures Deliver DLL Implants

    A new campaign has been observed using malicious Windows shortcuts in credential-themed ZIP files to deploy PowerShell script

  12. AI Tops Cybersecurity Investment Priorities, PwC Finds

    PwC found that AI security has become a top investment priority in cyber budgets over the next 12 months, ahead of cloud and network security

  13. New China-Aligned Hackers Hit State and Telecom Sectors

    Phantom Taurus is the latest formally identified cyber-espionage group aligned with Chinese state interest

  14. Campaign Warns Solicitors and House Buyers of Payment Diversion Fraud

    The NCA warns that house buyers could face losses of over £80,000 from a type of BEC called payment diversion fraud

  15. ICO: Imgur’s UK Decision Won’t Prevent Regulatory Fine

    Image-sharing platform Imgur has blocked its services within the UK, following a regulatory notice from the ICO

  16. Smishing Campaigns Exploit Cellular Routers to Target Belgium

    New smishing attacks exploit Milesight routers to send phishing texts targeting Belgian users

  17. New Android RAT Klopatra Targets Financial Data

    New Android RAT Klopatra is targeting financial institutions using advanced evasion techniques

  18. US Cuts Federal Funding for MS-ISAC Cybersecurity Program

    The Trump administration wants CISA to transition to a “new model” for supporting local government agencies’ cyber strategy

  19. Gemini Trifecta Highlights Dangers of Indirect Prompt Injection

    Tenable researchers have discovered three vulnerabilities in Google’s Gemini GenAI tool

  20. Asahi Suspends Operations in Japan After Cyber-Attack

    Japanese brewery giant Asahi revealed that a cyber-attack had caused a “system failure”, with order and shipment operations suspended in Japan

Why Not Watch?

  1. How to Recover From a Cyber-Attack: A Step-by-Step Playbook

  2. Financial Services Under Pressure: Supply Chain Risk, Regulation and Operational Resilience

  3. Cyber Resilience Under Pressure: Can Your Organization Prove Control When it Matters Most?

  4. Why Resilience‑Focused Cloud Design Is Your Best Defense Against Modern Attacks

What’s Hot on Infosecurity Magazine?