Infosecurity News
Smishing Campaigns Exploit Cellular Routers to Target Belgium
New smishing attacks exploit Milesight routers to send phishing texts targeting Belgian users
New Android RAT Klopatra Targets Financial Data
New Android RAT Klopatra is targeting financial institutions using advanced evasion techniques
US Cuts Federal Funding for MS-ISAC Cybersecurity Program
The Trump administration wants CISA to transition to a “new model” for supporting local government agencies’ cyber strategy
Gemini Trifecta Highlights Dangers of Indirect Prompt Injection
Tenable researchers have discovered three vulnerabilities in Google’s Gemini GenAI tool
Asahi Suspends Operations in Japan After Cyber-Attack
Japanese brewery giant Asahi revealed that a cyber-attack had caused a “system failure”, with order and shipment operations suspended in Japan
CIISec Members Say Budgets Are Falling Behind Threats
Most UK cybersecurity professionals tell CIISec that their budgets are stagnating
Dutch Authorities Arrest Teens in Foreign Interference Case
While the exact suspicion was yet to be revealed it is linked to "foreign interference"
AI-Generated Code Used in Phishing Campaign Blocked by Microsoft
Microsoft Threat Intelligence stopped an AI-driven credential phishing campaign using SVG files disguised as PDFs
National Cyber Authorities Launch OT Security Guidance
The Five Eyes countries, Germany and the Netherlands are launching a standard for managing OT security
Two-Thirds of Organizations Have Unfilled Cybersecurity Positions
Recruitment and retention remain a significant challenge for security teams, amid growing pressures on cyber professionals
SonicWall SSL VPN Attacks Escalate, Bypassing MFA
Akira ransomware attacks on SonicWall SSL VPN appliances are bypassing its MFA for rapid deployment
Harrods Reveals Supply Chain Breach Impacting Online Customers
Department store Harrods has notified e-commerce customers of a major data breach
Singapore Threatens Meta With Fines Over Facebook Impersonation Scams
The Singapore police said Facebook is the top platform for online scams in the country
ArcaneDoor Threat Actor Resurfaces in Continued Attacks Against Cisco Firewalls
An attack campaign has been identified which exploits vulnerabilities in Cisco Adaptive Security Appliance software
Interpol Cracks Down on Large-Scale African Scamming Networks
The effort, named Operation Contender 3.0, led to the arrest of 260 suspected cybercriminals
JLR Begins Phased Restart of Operations After Cyber-Attack
JLR said it is in a position to start clearing its backlog of payments for suppliers, while its parts logistics center is returning to full operations
New LockBit Ransomware Variant Emerges as Most Dangerous Yet
Trend Micro highlighted the new LockBit version’s improved technical improvements and cross-platform functionality compared to previous iterations
Critical Vulnerability in Salesforce AgentForce Exposed
Critical flaw ForcedLeak in Salesforce's AgentForce allows CRM data theft via prompt injection
Malicious AI Agent Server Reportedly Steals Emails
The security researchers who discovered the malicious npm package called it the “first malicious MCP in the wild”
Phishing Campaign Evolves into PureRAT Deployment, Linked to Vietnamese Threat Actors
Vietnamese phishing campaign evolves from Python infostealer to PureRAT trojan