Infosecurity News

  1. French Police Seize €1.6m Amid Crypto Scam Network Crackdown

    Nine alleged crypto scammers arrested in Cyprus, Germany and Spain

  2. OpenAI Assistants API Exploited in 'SesameOp' Backdoor

    Instead of relying on more traditional methods, the backdoor exploits OpenAI’s Assistants API for command-and-control communications

  3. Scattered Spider, ShinyHunters and LAPSUS$ Form Unified Collective

    Scattered Spider, ShinyHunters and LAPSUS$ have formed an enhanced coordinated threat network for extortion efforts

  4. DragonForce Cartel Emerges as Conti-Derived Ransomware Threat

    DragonForce, a ransomware group using Conti’s code, has adopted a cartel model to expand and recruit

  5. Identity Is Now the Top Source of Cloud Risk

    ReliaQuest data reveals identity issues were responsible for 44% of cloud security alerts in Q3

  6. DeFi Protocol Balancer Loses Over $120m in Cyber Heist

    Digital thieves have got away with over $120m stolen from popular decentralized finance protocol Balancer

  7. CISA and NSA Outline Best Practices to Secure Exchange Servers

    CISA and NSA have released a blueprint to enhance Microsoft Exchange Server security against cyber-attacks

  8. New GDI Flaws Could Enable Remote Code Execution in Windows

    Flaws in Windows Graphics Device Interface (GDI) have been identified that allow remote code execution and information disclosure

  9. Hackers Help Organized Crime Groups in Cargo Freight Heists, Researchers Find

    Proofpoint researchers have observed recent hacking campaigns supporting cargo theft

  10. Conti Suspect in Court After Extradition From Ireland

    Ukrainian national Oleksii Oleksiyovych Lytvynenko has appeared in a US court in connection with Conti ransomware charges

  11. Leak Site Ransomware Victims Spike 13% in a Year

    CrowdStrike data reveals a 13% annual increase in the number of European ransomware victims in 2025

  12. Conduent Data Breach Impacts Over 10.5 Million Individuals

    Over 10.5 million individuals were impacted by a widespread 2024 data breach at Conduent Business Services, with customer notifications issued in October 2025

  13. Chinese-Linked Hackers Exploit Windows Flaw to Spy on Belgian and Hungarian Diplomats

    A new UNC6384 campaign highlights the threat actor’s growing sophistication and geographic expansion

  14. Facial Recognition Firm Clearview AI Hit with Criminal Complaint in Austria

    Clearview AI faces a criminal complaint in Austria for allegedly ignoring EU data protection rulings

  15. Critical Flaws Found in Elementor King Addons Affect 10,000 Sites

    The King Addons for Elementor plugin contains two flaws allowing unauthenticated file uploads and privilege escalation

  16. Threat Actors Utilize AdaptixC2 for Malicious Payload Delivery

    Cybercriminals are abusing AdaptixC2, a legitimate emulation framework, in ransomware campaigns

  17. Shadow AI: One In Four Employees Use Unapproved AI Tools, Research Finds

    Over a quarter of employees work with AI tools that had not been authorized by their company

  18. Proton Claims 300 Million Records Compromised So Far This Year

    A new dark web analysis reveals more than 300 million records have been breached in 2025 to date

  19. Defense Contractor Boss Pleads Guilty to Selling Zero-Day Exploits to Russia

    The former general manager of defense contractor Trenchant has admitted selling zero-days to Russian broker

  20. Chrome to Make HTTPS Mandatory by Default in 2026

    Google Chrome will enhance security with enforced HTTPS connections from version 154, set for release in October 2026

Why Not Watch?

  1. OT Security Ecosystem for Targeted Risk Reduction and Reporting

  2. The Invisible Frontline: Proactive Approaches to Browser Defense

  3. Risk-Based IT Compliance: The Case for Business-Driven Cyber Risk Quantification

  4. Mastering Identity and Access for Non-Human Cloud Entities

What’s Hot on Infosecurity Magazine?