Infosecurity News

  1. 58% of Ransomware Victims Forced to Shut Down Operations

    A Ponemon Institute survey highlighted the growing impact of ransomware attacks on victims’ revenue and reputation

  2. Mega Data Breaches Push US Victim Count to 1.7 Billion

    The number of data breach victims increased 312% annually to exceed 1.7 billion in 2024, according to the ITRC 2024 Annual Data Breach Report

  3. EU Sanctions Three Russians For 2020 Cyber-Attack on Estonia

    The three Russian hackers are believed to be part of Unit 29155 of the GRU, also known as Cadet Blizzard, Ember Bear and Ruinous Ursa

  4. British Vishing-as-a-Service Trio Sentenced

    Three men have been sentenced after pleading guilty to running an account hijacking service for fraudsters

  5. Hidden Text Salting Disrupts Brand Name Detection Systems

    A new phishing tactic has been identified by Cisco Talos, using hidden text salting to evade email security measures

  6. New Phishing Campaign Targets Mobile Devices with Malicious PDFs

    A novel phishing campaign identified by Zimperium targets mobile users with malicious PDFs, impersonating USPS to steal credentials

  7. SaaS Breaches Skyrocket 300% as Traditional Defenses Fall Short

    Obsidian found that threat actors are focusing on SaaS applications to steal sensitive data, with most organizations' security measures not set up to deal with these attacks

  8. CISOs Boost Crisis Simulation Budgets Amid High-Profile Cyber-Attacks

    74% of CISOs plan to increase their cyber crisis simulation budgets in 2025

  9. Subaru Bug Enabled Remote Vehicle Tracking and Hijacking

    A now-patched vulnerability could have enabled threat actors to remotely control Subaru cars

  10. Change Healthcare Breach Almost Doubles in Size to 190 Million Victims

    Change Healthcare has claimed 190 million customers were affected by a mega-breach last year

  11. AWS Announces £5m Grant for Cyber Education in the UK

    Amazon Web Services has launched its Cyber Education Grant Program in the UK

  12. Russian Scammers Target Crypto Influencers with Infostealers

    Crazy Evil, a group of crypto scammers, exploit NFTs and cryptocurrencies with malware targeting influencers and tech professionals

  13. North Korean IT Workers Holding Data Hostage for Extortion, FBI Warns

    A new FBI advisory warned that North Korean IT worker schemes have escalated their activities in recent months to include data extortion

  14. Ransomware Gangs Linked by Shared Code and Ransom Notes

    SentinelOne researchers highlighted similarities in the approaches used by the HellCat and Morpheus ransomware groups, suggesting shared infrastructure

  15. Chained Vulnerabilities Exploited in Ivanti Cloud Service Appliances

    Threat actors chained Ivanti CSA vulnerabilities for RCE, credential theft & webshell deployment

  16. Bookmakers Ramp Up Efforts to Combat Arbitrage Betting Fraud

    Arbitrage betting fraud rises, forcing bookmakers to adopt stricter measures against automated scams

  17. CISOs Dramatically Increase Boardroom Influence but Still Lack Soft Skills

    Splunk reveals that 82% of CISOs now report directly to the CEO, but many lack EQ

  18. Cisco Fixes Critical Vulnerability in Meeting Management

    The network equipment giant urged customers to patch immediately

  19. New GhostGPT AI Chatbot Facilitates Malware Creation and Phishing

    Cybercriminals are selling access to the malicious GenAI chatbot via Telegram, providing rapid assistance for a range of nefarious activities, according to Abnormal Security

  20. Trump Pardons Silk Road Founder Ulbricht

    President Trump has pardoned the founder of original dark web marketplace Silk Road

Why Not Watch?

  1. Five Non-Negotiable Strategies to Get Identity Security Right in 2026

  2. Mastering AI Security With ISACA’s New AAISM Certification

  3. Exposing AI’s Blind Spots: Security vs Safety in the Age of Gen AI

  4. Revisiting CIA: Developing Your Security Strategy in the SaaS Shared Reality

What’s Hot on Infosecurity Magazine?