Infosecurity News

  1. Google Cloud: CISOs Demand Simplified Security Tools Amid Growing Tech Complexity

    Google Cloud announced a number of security products designed to reduce complexity for security leaders

  2. Over 40% of UK Businesses Faced Cybersecurity Breaches in 2024

    The Cyber Security Breaches Survey 2025 has been released by the UK Home Office and DSIT today, reporting a slight decline in incidents compared to 2024 report

  3. SpyNote Malware Targets Android Users with Fake Google Play Pages

    A new Android malware campaign uses fake Google Play pages to distribute the SpyNote Trojan

  4. AI-Powered AkiraBot Evades CAPTCHA to Spam 80,000 Websites

    A new AI-powered framework dubbed “AkiraBot” has successfully spammed 80,000 websites since September 2024

  5. Operation Endgame Continues with Smokeloader Customer Arrests

    Police have made more arrests in the ongoing Operation Endgame, cracking down on malware customers

  6. WK Kellogg Confirms Data Breach Tied to Cleo Software Exploit

    WK Kellogg breach exposed employee data after attackers exploited flaws in Cleo software

  7. Precision-Validated Phishing Elevates Credential Theft Risks

    New phishing method targets high-value accounts using real-time email validation

  8. Ransomware Attacks Hit All-Time High as Payoffs Dwindle

    While ransomware attack claims are at an all-time high, financial losses from actual attacks may be reducing

  9. Three-Quarters of IT Leaders Fear Nation-State AI Cyber Threats

    73% of respondents in an Armis survey said they worried about nation-state actors using AI for cyber-attacks

  10. Microsoft Fixes Over 130 CVEs in April Patch Tuesday

    Microsoft has issued security updates to fix 130+ vulnerabilities this month, including one zero-day

  11. NCSC Warns of Spyware Targeting Chinese and Taiwanese Diaspora

    The UK and allies have warned of new mobile spyware targeting Uyghur, Tibetan and Taiwanese communities

  12. Google Releases April Android Update to Address Two Zero-Days

    Google’s latest Android update fixes 62 flaws, including two zero-days previously used in limited targeted attacks

  13. NIST Defers Pre-2018 CVEs to Tackle Growing Vulnerability Backlog

    NIST marks CVEs pre-2018 as “Deferred” in the NVD as agency focus shifts to managing emerging threats

  14. Half of Firms Stall Digital Projects as Cyber Warfare Risk Surges

    Armis survey reveals that the growing threat of nation-state cyber-attacks is disrupting digital transformation

  15. CISA Warns of CrushFTP Vulnerability Exploitation in the Wild

    The US Cybersecurity and Infrastructure Security Agency (CISA) has added CVE-2025-31161 to its Known Exploited Vulnerabilities (KEV) catalog

  16. Boards Urged to Follow New Cyber Code of Practice

    The British government has launched a new code of practice designed to boost corporate cyber governance

  17. Malicious Microsoft VS Code Extensions Used in Cryptojacking Campaign

    Security researchers from ExtensionTotal have found nine malicious extensions in Visual Studio Code, Microsoft’s lightweight source-code editor

  18. Smishing Triad Fuels Surge in Toll Payment Scams in US, UK

    A rise in smishing campaigns impersonating toll service providers has been linked to China’s Smishing Triad

  19. Darknet’s Xanthorox AI Offers Customizable Tools for Hackers

    Xanthorox AI, a self-contained system for offensive cyber operations, has emerged on darknet forums

  20. Vodafone Urges UK Cybersecurity Policy Reforms as SME Cyber-Attack Costs Reach £3.4bn

    Vodafone Business has urged the UK government to implement policy changes, including improvements to the Cyber Essentials scheme and tax incentives for cybersecurity

Why Not Watch?

  1. Modernizing GRC: From Checkbox to Strategic Advantage

  2. Audit & Compliance in the Era of AI and Emerging Technology

  3. Mastering AI Security With ISACA’s New AAISM Certification

  4. Revisiting CIA: Developing Your Security Strategy in the SaaS Shared Reality

What’s Hot on Infosecurity Magazine?