Infosecurity News

  1. GitLab Vulns Could Lead to Session Hijacking

    The vulnerability stems from the type of session tokens used by GitLab.

  2. MacEwan University Defrauded Out of $11.8mn in Phishing Attack

    Staff fell for a business email compromise gambit after receiving a request to change banking info for a vendor.

  3. Juniper to Acquire Cyphort

    Juniper will use the buy to shore up its own cyber-portfolio—including its virtualized security offerings.

  4. Foreign Firms Should Fear New Chinese Cyber-Law: Report

    Source code reviews could generate exploits for Chinese spies

  5. Nottinghamshire County Council Exposes Elderly, Disabled PII for 5 Years

    The council has been fined £70,000 by the Information Commissioner’s Office.

  6. Cyber-squatters Target Luxury Brands from Fendi to Prada

    These domains are often used in phishing and scams, including pay-per-click ads, for-profit survey sites and social media scams.

  7. Ransomware Infections on Course to Top 2016 Figures

    Symantec claims organizations are increasingly under threat

  8. Half of Global Firms Failing on PCI Compliance

    Verizon says key in-house skills are often missing

  9. Locky Ransomware Rears its Head in Big August Campaigns

    It's back with a second wave of new but related attacks that build on a variant uncovered in early August.

  10. Jimmy Nukebot Explodes on the Scene, Transforming NeutrinoPOS

    It’s no longer in the banking business. Rather, it’s designed to help bad actors do so much more.

  11. Office 365 Campaign Attacks Companies from Within

    Attackers target Microsoft Office 365 to harvest login credentials and attack from within an organization.

  12. FDA Approves Firmware Fix for St Jude Pacemakers

    Abbott Laboratories continues security update program

  13. Two Million CeX Customer Accounts Breached

    UK tech retailer says no financial info was exposed

  14. WireX Botnet Enslaves Android Devices

    Meanwhile, research from A10 Networks has found that 38% of orgs have suffered a botnet attack at least once.

  15. Phishers Plumb the Depths of Hurricane Harvey's Floods

    Don’t be afraid to donate—but do your homework first.

  16. UK CNI Firms Risking Huge NIS Directive Fines: Corero

    Over a third haven’t met government security standards

  17. Banner Day for Botnets: 1,700 IoT Credentials Leaked

    There are just 144 unique username-password combinations used across 8,233 hosts, mostly default settings.

  18. Mayweather-McGregor Match Draws Millions to Illegal, Pirated Streams

    Almost 3 million tuned into streams that illegally redistributed the match.

  19. Forcepoint Acquires RedOwl for Analytics

    RedOwl is focused on helping customers understand and manage human risk.

  20. SAP POS Flaw Allows Hackers to Change Pricing

    Anyone can go in and steal payment card data or, in a new cybercrime wrinkle, change prices on merchandise.

Why Not Watch?

  1. Modernizing GRC: From Checkbox to Strategic Advantage

  2. How Mid-Market Businesses Can Leverage Microsoft Security for Proactive Defenses

  3. Audit & Compliance in the Era of AI and Emerging Technology

  4. OT Security Ecosystem for Targeted Risk Reduction and Reporting

What’s Hot on Infosecurity Magazine?