Infosecurity News

  1. Infosecurity Europe: AI SOCs Will Still Need SOC Analysts, Security Vendors Say

    Top cybersecurity vendors said AI won't replace entry-level – only routine ticket-taking and triage

  2. FSB Group Gamaredon Hides Worm in Windows Data Streams

    FSB-linked Gamaredon concealed a fileless worm in NTFS data streams to spy on Ukraine targets

  3. Attackers Abuse Shared Content for ChatGPT Phishing Campaign

    Push Security says threat actors are delivering malware hosted on chatgpt.com/s/ domain

  4. Palo Alto Warns High-Severity Bug Is Being Actively Exploited

    A vulnerability in Palo Alto Networks’ PAN-OS software is being exploited in attacks

  5. Infosecurity Europe: OWASP Forms New Agentic Research Council

    OWASP’s new Agentic Research Council will aim to connect academic work to operational realities on agentic AI security

  6. Silent Ransom Group Uses In-Person IT Impersonation to Breach Systems

    Threat actors from the Silent Ransom Group, aka Luna Moth, are escalating attacks by impersonating IT staff in phone calls and even showing up in person to gain direct access to victim systems

  7. Infosecurity Europe: CyCOS Project Expands to Support UK SMEs as CIISec Takes Over

    From a research-driven pilot, the Cybersecurity Communities of Support (CyCOS) is about to be handed over to CIISec

  8. Chinese Hackers Exploit Iran War to Target Maritime and Energy Companies

    ESET’s 2026 APT Activity Report suggests China-backed APTs are using instability in the region to target victims, as well as continuing activity against organizations around the globe

  9. AI-Generated npm Malware Leaks Its Own GitHub Token

    Sloppy AI-generated npm infostealer leaked its own GitHub token, exposing the operator

  10. Attackers Move Past Typosquatting to Realistic Package Impersonation

    Most malicious open source packages now mimic real code rather than rely on typosquatting

  11. Microsoft Condemns "Uncoordinated" Zero Day Disclosures

    Microsoft warned the disclosure of several unpatched vulnerabilities without notice has put “customers at unnecessary risk”

  12. New Threat Actor Jinx-0164 Targets Crypto Developers on macOS

    New actor Jinx-0164 hit crypto developers with fake recruiter lures and macOS malware

  13. Infosecurity Europe: Cybersecurity Staff Prefer CISOs With Real Attack Response Experience, Study Reveals

    ISC2 survey of cybersecurity professionals suggests that staff want their information security leaders to have experienced reacting to a significant cyber incident

  14. GCHQ Chief Urges Action as AI Reshapes Cyber Threats

    GCHQ director urges urgent business cyber action as AI and quantum reshape the threat

  15. CrowdStrike, Google Take Down Glassworm Botnet

    Operators of the malicious Glassworm botnet have been targeting software developers since at least early 2025

  16. Infosecurity Europe: Why Burnout in Cybersecurity Demands Risk-Based Response

    Cybermindz warns that cybersecurity burnout is a growing risk, urging organizations to move beyond wellness initiatives and adopt a measurable, risk-based approach to workforce stress

  17. All Major LLMs Exposed to Multi-Turn Manipulation, Warn Researchers

  18. Thousands of Fake FIFA Domains Target World Cup Fans

    Group-IB uncovered Ghost Stadium phishing and 4300 fake FIFA World Cup domains targeting fans

  19. 68% of UK Firms Plan to Increase Cyber Spending as AI Risks Rise

    UK firms plan higher cyber spending as AI adoption raises security concerns

  20. PureLogs Variant Steals Data via Purchase Order Lures

    FortiGuard Labs detailed a PureLogs campaign using JavaScript, PowerShell and process hollowing

Why Not Watch?

  1. Behind the Curtain of Microsoft 365 Cybersecurity: Lessons from Overlooked Resilience Gaps

  2. How to Harness Advanced Intelligence Capabilities to Strengthen Cyber Defence

  3. How Trusted Time Strengthens Network Security

  4. Building True Cyber Resilience Across Financial Supply Chains

What’s Hot on Infosecurity Magazine?