Infosecurity News

Twitter Password Reset Bug Exposed User Accounts

Twitter Password Reset Bug Exposed User Accounts

Social media firm fixes issue that left sessions open

Authorized Push Payments Surge to 75% of Banking Fraud

Authorized Push Payments Surge to 75% of Banking Fraud

Social engineering tactics bear fruit for digital scammers

Iranian Hackers Hid in Albanian Networks for Over a Year

Iranian Hackers Hid in Albanian Networks for Over a Year

CISA report reveals extent of state-backed campaign

Microsoft Upgrades Windows 11 With New Security Features

Microsoft Upgrades Windows 11 With New Security Features

The list includes application control enhancements and vulnerable drivers protection, among others

350K Open-Source Projects At Risk of Supply Chain Vulnerability

350K Open-Source Projects At Risk of Supply Chain Vulnerability

The flaw resides in the tarfile module, automatically installed in any Python project

NCSC: British Retailers Need to Move Beyond Passwords

NCSC: British Retailers Need to Move Beyond Passwords

The UK’s national cybersecurity agency also advised organizations on what steps they should take if their brand has been spoofed online

Multiple Vulnerabilities Discovered in Dataprobe's iBoot-PDUs

Multiple Vulnerabilities Discovered in Dataprobe's iBoot-PDUs

They pose a number of risks to Dataprobe, including giving control of the iBoot-PDU to attackers

Two-Fifths of US Consumers Suffer Personal Data Theft

Two-Fifths of US Consumers Suffer Personal Data Theft

Those suffering emotional and physical impact surges

Video Game Publisher Admits Helpdesk Was Hijacked

Video Game Publisher Admits Helpdesk Was Hijacked

Players were sent malicious links disguised as support tickets

Open Source Repository Attacks Soar 700% in Three Years

Open Source Repository Attacks Soar 700% in Three Years

Sonatype says it has detected 95,000 since 2019

Critical Vulnerability in Oracle Cloud Infrastructure Allowed Unauthorized Access

Critical Vulnerability in Oracle Cloud Infrastructure Allowed Unauthorized Access

Potential attacks resulting from it may include privilege escalation and cross–tenant access

California Signs Internet Privacy Legislation to Boost Children's Safety Online

California Signs Internet Privacy Legislation to Boost Children's Safety Online

The new legislation will implement some of the strictest privacy requirements in the US

What’s Hot on Infosecurity Magazine?