Infosecurity News

  1. Researchers Warn of Global Surge in Fake Shipment Tracking Scams

    Some of these campaigns are linked to Darcula, a Chinese-language phishing-as-a-service platform

  2. CrackArmor Flaws Expose Linux Systems to Privilege Escalation

    CrackArmor AppArmor flaws let local Linux users gain root, break containers and enable DoS attacks

  3. Security Flaw in AWS Bedrock Code Interpreter Raises Alarms

    DNS-based attack in AWS Bedrock AgentCore lets AI sandboxes exfiltrate cloud data

  4. FBI Calls for Help to Track Steam Malware Campaign

    The FBI wants to hear from gamers who have downloaded Steam titles containing malware

  5. UK: Companies House Web Glitch Exposes Corporate Details to Fraudsters

    An issue with the Companies House website has put the personal and corporate information of millions at risk

  6. Interpol's 'Operation Synergia III' Nets 94 Arrests in Major Cybercrime Sweep

    A new law enforcement operation against phishing and ransomware operators led to the takedown of 45,000 malicious IP addresses

  7. Law Enforcement Dismantles SocksEscort Proxy Network in Operation Lightning

    Operation Lightning sees international law enforcement partners shut down ‘SocksEscort,’ a major malicious proxy service used by cybercriminals worldwide

  8. PixRevolution Malware Hijacks Brazil's PIX Transfers in Real Time

    PixRevolution Android trojan hijacks Brazil’s PIX payments in real time using accessibility abuse

  9. Critical Zero-Click Flaw in n8n Allows Full Server Compromise

    The critical vulnerability affecting both cloud and self-hosted n8n instances requires no authentication or even n8n account to be exploited

  10. CISA Issues Emergency Directive Over Exploited Cisco SD-WAN Flaws

    CISA issued urgent directive as attackers exploit Cisco SD-WAN flaw granting admin access to networks

  11. Police Scotland Fined After Sharing Victim’s Phone Data

    The ICO has fined Police Scotland after it shared the entire contents of a victim’s phone with her alleged attacker

  12. Iran Claims Massive Cyber-Attack on MedTech Firm Stryker

    The pro-Iran Handala group claims to have wiped 200,000 systems in destructive wiper malware attack on US firm Stryker

  13. France: National Cybersecurity Agency Reports Ransomware Attack Drop in 2025

    French small and medium businesses remained the organizations most targeted by ransomware in 2025

  14. Infosecurity Europe Announces 2026 Keynote Line Up

    Infosecurity Europe 2026 reveals its keynote line-up, featuring Jason Fox, Shlomo Kramer, Cynthia Kaiser and more, with sessions on AI, cloud security and post quantum threats

  15. Researchers Uncover ‘LeakyLooker’ Vulnerabilities in Google Looker Studio

    LeakyLooker flaws in Google Looker Studio let attackers run cross-tenant SQL attacks on cloud data

  16. Compromised WordPress Sites Deliver ClickFix Attacks in Global Infostealer Campaign

    Over 250 legitimate websites, including news outlets and a US Senate candidate’s official webpage, been compromised to infect visitors with infostealers, warn Rapid7 researchers

  17. BlackSanta EDR-Killer Targets HR Teams in CV-Themed Campaign

    BlackSanta malware targets HR staff with fake resumes, kills EDR and steals system data

  18. Researchers Discover Major Security Gaps in LLM Guardrails

    Palo Alto Networks’ Unit 42 has developed a successful attack to bypass safety guardrails in popular generative AI tools

  19. Cyber-Attacks on UK Firms Increase at Four Times Global Rate

    Check Point data shows attack volumes are growing much faster in the UK than worldwide

  20. Microsoft Fixes Two Publicly Disclosed Zero-Days

    March Patch Tuesday sees Microsoft release updates for 79 flaws

Why Not Watch?

  1. Audit & Compliance in the Era of AI and Emerging Technology

  2. How To Enhance Security Operations with AI-Powered Defenses

  3. Why Your Organisation Needs Trusted Time Synchronisation

  4. Modernizing GRC: From Checkbox to Strategic Advantage

What’s Hot on Infosecurity Magazine?