Infosecurity News

  1. Trump Issues Executive Order to Fast-Track Post-Quantum Migration

    All US federal agencies will have to complete their post-quantum cryptography transition by 2031, according to a new Trump Executive Order

  2. GTA 6 Scams Emerge as Pre-Orders Open

    Cybercriminals launch fake GTA 6 pre-order sites offering early access for crypto payments

  3. Scattered Spider Teens Convicted of TfL Cyber-Attack

    Two young British men have pleaded guilty to hacking Transport for London as part of a Scattered Spider plot

  4. Five Eyes Group Issues Urgent Call to Tackle Frontier AI Threats

    The Five Eyes Alliance has published a rare call to action for organizations facing AI threats

  5. GentleKiller Framework Disables Victims' Security Software

    ESET details GentleKiller, the EDR-killer framework the Gentlemen ransomware gang gives affiliates

  6. Unpatchable BootROM Flaw Impacts Apple A12, A13 Chips

    Apple BootROM exploit exposes unpatchable USB flaw on A12 and A13 devices

  7. Microsoft Attributes Mastra AI Supply Chain Attack to North Korea

    North Korean threat actor Sapphire Sleet has been linked to a supply chain attack targeting Mastra, according to Microsoft security researchers

  8. Klue Breach Enables Hackers to Compromise Cybersecurity Firms via OAuth Tokens

    At least four cybersecurity firms confirmed they have been affected by a breach of business intelligence platform Klue via Salesforce integration

  9. UK Information Commissioner Resigns After Workplace Investigation

    The UK’s data protection regulator the information commissioner has resigned after his position became “untenable”

  10. NCSC Urges Fortinet Customers to Tackle FortiBleed Fallout

    The NCSC has released guidance for Fortinet customers impacted by the FortiBleed threat campaign

  11. AWS Unveils 'Continuum,' an AI-Powered Vulnerability Management Platform

    Working with frontier AI models, this new platform aims to help discovering, prioritizing, validating and remediating code vulnerabilities

  12. Operation Endgame Disrupts Malware Network Linked to Major Ransomware Gang

    SocGholish malware has been removed from 15,000 sites associated with Evil Corp hackers

  13. Confidence Lacks in Threat Detection Across Non-Email Channels like Slack and Teams

    Half of cybersecurity leaders lack confidence in detecting threats on Slack, Teams and other non-email platforms, despite growing attacker focus

  14. Fake GitHub Stars and AI Videos Mask a Crypto Clipper

    A Rust crypto clipper hides behind fake GitHub stars and AI-narrated YouTube videos

  15. ICO Cautions Healthcare Worker After Princess of Wales Incident

    Hospital insider escapes criminal prosecution after attempting to sell royal’s medical records

  16. Cybercriminals Are Worried About AI Taking Their Jobs Too

    Analysis of chatter on underground forums by Sophos finds that hackers fear AI could take work away from them

  17. LATAM Infrastructure Hit by Fortinet and Ivanti Exploits

    CloudSEK maps Operation Escaneo, a campaign hitting Latin American infrastructure via perimeter bugs

  18. Hostile States Behind 75% of Cyber-Attacks on UK Critical Infrastructure, NCSC Warns

    Richard Horne, the NCSC CEO, said three-quarters of cyber-attacks targeting UK critical infrastructure came from nation-state actors

  19. Cybercrime Surges in APAC as Digitalization Takes Hold

    Interpol claims cybercrime accounts for third of crime in over half of Asia and South Pacific countries

  20. North Korean Hiring Fraud Runs on AI and US Laptop Farms

    Nisos infiltrated a North Korean IT-worker fraud cell running on AI interviews and a US laptop farm

Why Not Watch?

  1. The Employee Paradox: Moving Beyond Cybersecurity’s “Weakest Link” Narrative

  2. How to Manage Enterprise Cyber Resilience in the Age of AI

  3. How to Recover From a Cyber-Attack: A Step-by-Step Playbook

  4. Building True Cyber Resilience Across Financial Supply Chains

What’s Hot on Infosecurity Magazine?