Infosecurity News

  1. SolarWinds Urges Upgrade After Revealing Critical RCE Bug

    SolarWinds has discovered and fixed a critical remote code execution vulnerability in Web Help Desk

  2. New Phishing Attack Uses Sophisticated Infostealer Malware

    The phishing attack uses infostealer malware to target saved passwords, credit cards & Bitcoin info

  3. Manufacturing Firm Loses $60m in BEC Scam

    Manufacturing firm Orion revealed it has lost $60m in a business email compromise (BEC) scam, which targeted a non-executive employee

  4. Research Uncovers New Microsoft Outlook Vulnerability

    CVE-2024-38173 is a medium severity RCE flaw in Microsoft Outlook, similar to CVE-2024-30103

  5. High-Risk Cloud Exposures Surge Due to Rapid Service Growth

    Firms are introducing 300 services monthly, contributing to 32% of high or critical cloud exposures

  6. Critical Vulnerability Found in Microsoft’s AI Healthcare Chatbot

    Tenable detailed two privilege escalation vulnerabilities in the Azure Health Bot Service, one of which has been rated critical

  7. Cyber-Attack Spreads Phishing Scam Across Greater Manchester Areas

    A cyber-attack has hit several boroughs across Greater Manchester, England, leaving thousands of residents vulnerable to a phishing scam

  8. NCSC Calls on UK Firms to Join Mass Cyber-Deception Initiative

    The UK’s National Cyber Security Centre wants to test the effectiveness of cyber-deception tactics

  9. Microsoft Fixes Nine Zero-Days on Patch Tuesday

    Microsoft’s August Patch Tuesday saw the tech giant address nine zero-day vulnerabilities

  10. Gold Mining Firm in Australia Reports Ransomware Breach

    In a Monday filing with the ASX, Evolution Mining stated that the incident was contained

  11. NIST Formalizes World's First Post-Quantum Cryptography Standards

    NIST has formalized three post-quantum cryptographic algorithms, with organizations urged to start the transition to quantum-secure encryption immediately

  12. East Valley Institute of Technology Data Breach Exposes Over 200,000 Records

    The EVIT breach exposed the data of 208,717 individuals, including students, faculty and parents

  13. Phishing Campaign Compromises 100+ Ukrainian Government Computers

    CERT-UA has warned that a mass phishing campaign impersonating Ukraine’s Security Services has infected more than 100 government devices

  14. Prolific Belarusian Cybercriminal Arrested in Spain

    Belarusian national Maksim Silnikau, who was operating under the ‘J.P. Morgan’ moniker, is believed to be one of the world’s most prolific Russian-speaking cybercriminals

  15. South Korea Warns Pyongyang Has Stolen Spy Plane Details

    South Korea’s People Power Party calls for new legislation after data on spy planes and tanks is hacked by North Korea

  16. FBI Leads Effort to Dismantle Radar/Dispossessor Ransomware

    The FBI and other law enforcers claim to have disrupted the Radar/Dispossessor ransomware group

  17. Vulnerability in Windows Driver Leads to System Crashes

    The CVE-2024-6768 flaw in the Windows CLFS.sys driver can lead to BSOD

  18. DARPA Awards $14m to Seven Teams in AI Cyber Challenge

    DARPA awards $14 million to seven teams competing to develop AI systems capable of identifying and patching vulnerabilities in open-source software

  19. UN Adopts Controversial Cybercrime Treaty

    Many stakeholders said the future UN convention could allow authoritarian countries to stifle political opposition and violate human rights

  20. Microsoft Reveals Iranian US Election Interference Ops

    Microsoft claims Iran is ramping up election interference activity in the US, as Trump campaign claims it was hacked

Why Not Watch?

  1. Modernizing GRC: From Checkbox to Strategic Advantage

  2. How Mid-Market Businesses Can Leverage Microsoft Security for Proactive Defenses

  3. Risk-Based IT Compliance: The Case for Business-Driven Cyber Risk Quantification

  4. Revisiting CIA: Developing Your Security Strategy in the SaaS Shared Reality

What’s Hot on Infosecurity Magazine?