Infosecurity News

  1. Government Payment Service Exposes 14m Records

    Names, addresses, phone numbers and card digits could be accessed

  2. FBI Warns Parents of Edtech Security Risk

    Data-collection tools could be a target for hackers

  3. Altaba Announces Class Action Settlement of $47m

    Plaintiffs and defendants in the Yahoo suit reach a settlement agreement.

  4. Bill for Financial Services Breach Notification Passed

    The US Congress approved a national standard on data breach notifications in financial sector, and states are not happy.

  5. Campaign Targets Nonresidents with Fake IRS Email

    A new phishing campaign uses the subject line “2018 UPDATE: NON RESIDENT ALIEN TAX WITHHOLDING,” says Fortinet.

  6. North Korea: US Indictment is Vicious Smear

    Alleged hacker is “non-entity,” says Pyongyang

  7. Bristol Airport Hit by Ransomware Blackout

    Staff forced to hand-write flight information on white boards

  8. UK Universities Face Growing DDoS Threat

    Students blamed for many attacks

  9. Microsoft Office Macros Still No. 1 Malware Delivery

    Phishing attacks remain successful by leveraging macros.

  10. Senators Bash State Department on Cybersecurity

    Lawmakers are critical of the State Department for failure to meet basic cybersecurity standards.

  11. Cloud-Native Attacks Executed Against Known CVEs

    A new survey finds nearly all attacks automatically executed are against outdated code.

  12. #44CON: In a Time of Genuine Threats, Talk Sensibly & Act Efficiently

    Let’s change the way we talk about security, as global news and incidents are creating new threats

  13. Magecart Back Again as Feedify is Hit

    Malicious script injected into supplier’s JavaScript library

  14. ICO Swamped with GDPR Breach Over-Reporting

    UK regulator receives 500 calls a week as firms play it safe

  15. NCSC: Time for Boards to Get Cyber Literate

    Simply buying in expertise will not help boards manage risk, says Martin

  16. #RockYourSOC Spotlight on Insider Threat

    The keys to a successful insider threat program are people, process and technology.

  17. Bomgar to Acquire BeyondTrust

    A new acquisition aims to enhance security with BeyondTrust’s privileged access management platform.

  18. European Court Rules Against UK Mass Surveillance

    Lack of independent oversight means old regime breaks the law

  19. Veeam Manages to Expose Data in MongoDB Snafu

    Leak makes 445 million records publicly available for days

  20. Edinburgh Uni Hit by Major Cyber-Attack

    Main website still out of action

Why Not Watch?

  1. Mastering AI Security With ISACA’s New AAISM Certification

  2. Audit & Compliance in the Era of AI and Emerging Technology

  3. Risk-Based IT Compliance: The Case for Business-Driven Cyber Risk Quantification

  4. Modernizing GRC: From Checkbox to Strategic Advantage

What’s Hot on Infosecurity Magazine?