Infosecurity News
Stonefly Group Targets US Firms With New Malware Tools
North Korean APT Stonefly continues to launch cyber-attacks on US firms despite July indictment
80% of Manufacturing Firms Have Critical Vulnerabilities
A Black Kite report found that 67% of manufacturing firms have at least one vulnerability from CISA’s Known Exploited Vulnerabilities (KEV) catalog
Meta Teams Up with Banks to Target Fraudsters
Meta has announced a new information-sharing partnership with UK financial institutions to target social media fraud
Share of Women in UK Cyber Roles Now Just 17%
Socura finds the percentage of women in cybersecurity positions has fallen seven percentage points since 2021 to 17%
British Hacker Charged in the US For $3.75m Insider Trading Scheme
UK hacker Robert Westbrook allegedly gained unauthorized access to corporate executives’ email accounts to profit from confidential financial information
Evil Corp's LockBit Ties Exposed in Latest Phase of Operation Cronos
The UK has sanctioned 16 members of the notorious Russian hacking group Evil Corp, exposing their links to the prolific LockBit ransomware group
Ransomware Attack Forces UMC to Divert Emergency Patients
UMC in Lubbock, Texas, confirmed a ransomware attack last week, disrupting patient care and IT systems
T-Mobile to Pay $15.75m Penalty for Multiple Data Breaches
T-Mobile will pay $15.75m to the US Treasury for multiple data breaches in 2021, 2022 and 2023 and has agreed to invest in improved cybersecurity defenses
Ten Million Brits Hit By Fraud in Just Three Years
New Santander research claims 10 million UK consumers have suffered fraud since 2021, costing the economy £16bn
ISACA: European Security Teams Are Understaffed and Underfunded
New ISACA research reveals most cybersecurity teams are suffering from staffing and funding shortages
NVIDIA Container Toolkit Vulnerability Exposes AI Systems to Risk
The vulnerability, discovered by Wiz researchers, affects both cloud-based and on-premises AI applications using the toolkit
Critical RCE Vulnerabilities Found in Common Unix Printing System
The newly identified vulnerabilities exploit improper input validation when managing printer requests over the network
US State CISOs Struggling with Insufficient Cybersecurity Funding
A Deloitte and NASCIO survey found that a third of state CISOs do not have a dedicated cybersecurity budget
Cyber-Attacks Hit Over a Third of English Schools
A survey by Ofqual found that 20% of English schools and colleges were unable to immediately recover after being hit by a cyber incident
PwC Urges Boards to Give CISOs a Seat at the Table
PwC claims fewer than 50% of businesses involve their CISOs in strategic planning on cyber
UK and US Warn of Growing Iranian Spear Phishing Threat
Security agencies from the UK and US are urging individuals with Middle East links to beware of Iranian spear phishing attacks
Governments Urge Improved Security and Resilience for Undersea Cables
The US, UK, EU and other global partners have called for a global approach to strengthening the security of global communications and data
Ireland's DPC Hits Meta with €91 Million Penalty for GDPR Violation
Ireland's Data Protection Commission fines Meta Platforms €91 million for mishandling user passwords and GDPR violations
US Sanctions Crypto Exchanges for Facilitating Russian Cybercrime
The US has sanctioned Cryptex, PM2BTC and a Russian national for processing hundreds of millions of dollars derived from cybercrime
Man Arrested Over UK Railway Station Wi-Fi Hack
The suspect is an employee of Global Reach Technology, which provides some Wi-Fi services to Network Rail
