Infosecurity News

  1. New Malware Can Kill Engineering Processes in ICS Environments

    Forescout identified a new type of malware capable of terminating engineering processes, used to target Siemens engineering workstations

  2. EU Opens Door for AI Training Using Personal Data

    The EU Data Protection Board (EDPB) published a long-awaited opinion on how GDPR should apply to AI models

  3. Crypto-Hackers Steal $2.2bn as North Koreans Dominate

    Mainly North Korean hackers stole over $2bn from crypto platforms in 2024, says Chainalysis

  4. Recorded Future CEO Calls Russia’s “Undesirable” Listing a “Compliment”

    Cybersecurity firm Recorded Future has been listed as an “undesirable” organization by the Prosecutor General's Office of the Russian Federation

  5. Vulnerability Exploit Assessment Tool EPSS Exposed to Adversarial Attack

    A Morphisec researcher showed how an attacker could manipulate FIRST’s Exploit Prediction Scoring System (EPSS) using AI

  6. Interpol Calls for an End to “Pig Butchering” Terminology

    Interpol wants to change the term “pig butchering” to “romance baiting”

  7. US Government Issues Cloud Security Requirements for Federal Agencies

    A CISA Directive sets out actions all US federal agencies must take to identify and secure cloud tenants in their environments

  8. Phishing Attacks Double in 2024

    SlashNext reports a 202% increase in overall phishing messages and a 703% surge in credential-based phishing attacks in 2024

  9. New Attacks Exploit VSCode Extensions and npm Packages

    Malicious campaigns targeting VSCode extensions have recently expanding to npm, risking software supply chains

  10. Attacker Distributes DarkGate Using MS Teams Vishing Technique

    Trend Micro highlighted a case where an attacker posed as a client on an MS Teams call to distribute DarkGate malware

  11. Nigeria Cracks Down on Cryptocurrency Investment Fraud and Romance Scams

    The suspects were apprehended in a surprise operation at their hideout in Lagos following intelligence received by Nigeria's Economic and Financial Crimes Commission

  12. Meta Hit with Massive $263m GDPR Fine

    The Irish Data Protection Commission has fined Meta $263m for a 2018 data breach impacting 29 million Facebook accounts

  13. European Commission Opens TikTok Election Integrity Probe

    The European Commission is investigating whether TikTok allowed foreign actors to influence voters during recent Romanian elections

  14. Sophisticated TA397 Malware Targets Turkish Defense Sector

    Sophisticated phishing attack targeting Turkey’s defense sector revealed TA397’s advanced tactics

  15. Texas Tech University Data Breach Impacts 1.4 Million

    The breach has affected 650,000 individuals at TTUHSC’s Lubbock campus and 815,000 at its El Paso branch

  16. Cybercriminals Exploit Google Calendar to Spread Malicious Links

    Check Point research reveals cybercriminals are using Google Calendar and Drawings to send malicious links, bypassing traditional email security

  17. GenAI: Security Teams Demand Expertise-Driven Solutions

    76% of security leaders favor cybersecurity-focused GenAI tools over domain-agnostic tools

  18. EU Sanctions Russian Cyber Actors for “Destabilizing Actions”

    The EU announced sanctions against individuals and entities involved in cyber-attacks and disinformation campaigns on behalf of the Russian state

  19. New APIs Discovered by Attackers in Just 29 Seconds

    Wallarm honeypot research finds potentially exposed APIs are being discovered within half a minute

  20. US Unveils New National Cyber Incident Response Plan

    The draft plan is designed to help businesses understand how the government will support them during a cyber incident

Why Not Watch?

  1. Time Is a New Attack Surface: Securing Networks with Trusted Time Synchronization

  2. Five Non-Negotiable Strategies to Get Identity Security Right in 2026

  3. How To Enhance Security Operations with AI-Powered Defenses

  4. Audit & Compliance in the Era of AI and Emerging Technology

What’s Hot on Infosecurity Magazine?