Infosecurity News

  1. Apple Rolls Out Major Security Update to Patch macOS and iOS Vulnerabilities

    In a major security update, Apple has fixed dozens of bugs and vulnerabilities across its operating systems and services

  2. CISA Launches First International Cybersecurity Plan

    CISA’s 2025-2026 International Strategic Plan aims to strengthen external partnerships to reduce risks to critical infrastructure relied on in the US

  3. Over Half of US County Websites “Could Be Spoofed”

    Comparitech warns that voters could be misled as most local government sites are failing on basic security

  4. Midnight Blizzard Spearphishing Campaign Targets Thousands with RDP Files

    Microsoft has spotted a major spearphishing campaign from the Russian APT29 group using RDP for compromise

  5. New LightSpy Spyware Targets iOS with Enhanced Capabilities

    ThreatFabric researchers have discovered significant updates to the LightSpy spyware, featuring plugins designed to interfere with device functionality

  6. Chenlun’s Evolving Phishing Tactics Target Trusted Brands

    The phishing campaign targeted users via texts impersonating Amazon, linked to the threat actor Chenlun

  7. Law Enforcement Operation Takes Down Redline and Meta Infostealers

    Operation Magnus took down infrastructure used to run the Redline and Meta infostealers, widely used tools in cybercriminal activities

  8. NIS2 Compliance Puts Strain on Business Budgets

    A Veeam report found that businesses are prioritizing NIS2 compliance, with 95% of applicable firms diverting funds from other areas of the business

  9. Suspicious Social Media Accounts Deployed Ahead of COP29

    Global Witness uncovered a network of 71 suspicious accounts on X supporting the Azeri government

  10. Five Eyes Agencies Launch Startup Security Initiative

    The UK has joined forces with its Five Eyes peers to offer cybersecurity guidance to startups

  11. ICO: 55% of UK Adults Have Had Data Lost or Stolen

    The UK’s information commissioner claims most adults in the country have had their personal data exposed or compromised

  12. Evasive Panda’s CloudScout Toolset Targets Taiwan

    Evasive Panda’s CloudScout uses MgBot to steal session cookies, infiltrating and extracting cloud data from Taiwanese institutions

  13. New Type of Job Scam Targets Financially Vulnerable Populations

    The surge in job scams targets vulnerable individuals, mirroring pig butchering fraud tactics

  14. Russian Malware Campaign Targets Ukrainian Recruits Via Telegram

    Google researchers have observed Russian threat actor UNC5812 using a malware campaign via Telegram to access the devices of Ukrainian military recruits

  15. Researchers Discover Over 70 Zero-Day Bugs at Pwn2Own Ireland

    Trend Micro’s Zero Day Initiative hands out over $1m in awards for Pwn2Own competitors, who found more than 70 zero-day flaws

  16. AI-Powered BEC Scams Zero in on Manufacturers

    Vipre research reveals that 10% of emails targeting the manufacturing sector are BEC attempts

  17. Change Healthcare Breach Affects 100 Million Americans

    Updated figures from the HHS revealed that 100 million patients have been notified that their data was breached in the Change Healthcare ransomware attack

  18. Ukraine Warns of Mass Phishing Campaign Targeting Citizens Data

    CERT-UA said the phishing campaign lures victims into downloading malware used to exfiltrate files containing sensitive personal data

  19. Irish Data Protection Watchdog Fines LinkedIn $336m

    LinkedIn violated the EU’s GDPR in how it processes its users personal data for behavioral purposes

  20. Inequity Challenges Women in Digital Trust, But Progress is Being Made

    A new ISACA study reveals that pay inequity and a lack of female leadership are significant issues noted by women in the digital trust sector

Why Not Watch?

  1. Five Non-Negotiable Strategies to Get Identity Security Right in 2026

  2. Mastering AI Security With ISACA’s New AAISM Certification

  3. Modernizing GRC: From Checkbox to Strategic Advantage

  4. Exposing AI’s Blind Spots: Security vs Safety in the Age of Gen AI

What’s Hot on Infosecurity Magazine?