Infosecurity News

  1. Yearn Finance yETH Pool Hit by $9M Exploit

    A critical vulnerability in Yearn Finance's yETH pool allowed an attacker to steal around $9m

  2. UK Ransomware Payment Ban to Come with Exemptions, Security Minster Say

    The UK government’s proposed ransomware payment ban for public sector and critical infrastructure will come with national security exemptions

  3. Disinformation and Cyber-Threats Among Top Global Exec Concerns

    A new WEF report reveals that AI-powered threats like disinformation are among executives’ biggest concerns

  4. Pall Mall Process to Define Responsible Commercial Cyber Intrusion

    The Pall Mall Process begins outreach to define guidelines for private commercial intrusion industry

  5. Critical PickleScan Vulnerabilities Expose AI Model Supply Chains

    3 critical zero-day flaws in PickleScan, affecting Python and PyTorch, allowed undetected attacks

  6. ShadyPanda's Seven-Year Campaign Infects 4.3M Chrome and Edge Users

    Infected 4.3 million Chrome and Edge users via extensions; ShadyPanda exploited browser marketplaces

  7. Google Releases Patches for Android Zero-Day Flaws Exploited in the Wild

    Google said it found indications that two newly identified vulnerabilities affecting Android “may be under limited, targeted exploitation”

  8. ICO Set to Check If Mobile Games Comply with Children’s Code

    The UK Information Commissioner’s Office has launched an investigation into the mobile gaming sector

  9. Most Companies Fear State-Sponsored Cyber-Attacks and Want More Government Help

    New IO study claims 88% of US and UK firms are concerned about state-sponsored cyber-attacks

  10. New Android Albiriox Malware Gains Traction in Dark Web Markets

    Android malware Albiriox emerged as MaaS, offering device takeover and real-time fraud capabilities

  11. South Korea's Coupang Confirms 34 Million Customer Data Leak

    The South Korean police are tracking the suspect behind a cyber-attack targeting e-commerce giant Coupang

  12. Malware Manipulates AI Detection in Latest npm Package Breach

    Malicious npm package targets AI security with misleading prompts, exploiting automated analysis

  13. Cybersecurity M&A Roundup: Cyber Giants Strengthen AI Security Offerings

    November 2025 saw cybersecurity giants like Palo Alto Networks, Bugcrowd and Zscaler invest in AI-powered security solutions

  14. Europol Takes Down Illegal Cryptocurrency Mixing Service

    Europol, alongside Swiss and German authorities, dismantled the illegal cryptocurrency mixing service ‘Cryptomixer’

  15. Australian Man Gets Seven Years for Running “Evil Twin” Wi-Fi

    A Western Australia man will spend seven years behind bars after stealing intimate data via Wi-Fi

  16. Royal Borough of Kensington and Chelsea Reveals Data Breach

    At least one London council has had data compromised after a suspected ransomware attack last week

  17. Threat Actors Exploit Calendar Subscriptions for Phishing and Malware Delivery

    BitSight research has revealed how threat actors exploit calendar subscriptions to deliver phishing links, malware and social engineering attacks through hijacked domains

  18. Three Black Friday Scams to Watch Out For This Year

    Darktrace observed a 620% spike in Black Friday-themed phishing in the weeks leading up to the 2025 edition of the sale day

  19. French Football Federation Suffers Data Breach

    The personal data of over two million amateur football players registered in France could be exposed

  20. FCC Warns of Hackers Hijacking Radio Equipment For False Alerts

    Hackers have been hijacking US radio equipment to broadcast false emergency alerts, prompting FCC warnings

Why Not Watch?

  1. Modernizing GRC: From Checkbox to Strategic Advantage

  2. Exposing AI’s Blind Spots: Security vs Safety in the Age of Gen AI

  3. Risk-Based IT Compliance: The Case for Business-Driven Cyber Risk Quantification

  4. Mastering AI Security With ISACA’s New AAISM Certification

What’s Hot on Infosecurity Magazine?