Infosecurity News

  1. NSA Launches Guidance for Secure AI Deployment

    The new document is the first release from NSA’s Artificial Intelligence Security Center (AISC), in partnership with other government agencies in the US and other Five Eyes countries

  2. NCSC Announces PwC’s Richard Horne as New CEO

    The UK’s National Cyber Security Centre will see Richard Horne take over as its new boss in the autumn

  3. MITRE Reveals Ivanti Breach By Nation State Actor

    Non-profit MITRE says a sophisticated state group breached its network via two chained Ivanti zero-days

  4. Alarming Decline in Cybersecurity Job Postings in the US

    This drop represents a direct threat to US national cybersecurity infrastructure, said CyberSN representatives in their report

  5. Akira Ransomware Group Rakes in $42m, 250 Organizations Impacted

    A joint advisory from Europol and US and Dutch government agencies estimated that Akira made around $42m in ransomware proceeds from March 2023 to January 2024

  6. Quishing Attacks Jump Tenfold, Attachment Payloads Halve

    The figures come from Egress’s latest report, which also suggests secure email gateways lag behind tech advancements

  7. Russia's Sandworm Upgraded to APT44 by Google's Mandiant

    Mandiant has confirmed that Sandworm is responsible for many cyber-attacks against Ukraine has close ties with a Russian hacktivist group

  8. New Cyber-Threat MadMxShell Exploits Typosquatting and Google Ads

    Zscaler also confirmed MadMxShell uses DLL sideloading and DNS tunneling for C2 communication

  9. US Election Officials Told to Prepare for Nation-State Influence Campaigns

    A US government advisory sets out actions election officials need to take to mitigate the impact of nation-state influence campaigns ahead of the November elections

  10. Trust in Cyber Takes a Knock as CNI Budgets Flatline

    Bridewell report reveals critical infrastructure firms are losing faith in their defensive tooling

  11. UK Police Lead Disruption of £1m Phishing-as-a-Service Site LabHost

    The Metropolitan Police and partners have disrupted the prolific LabHost phishing-as-a-service platform

  12. Linux Cerber Ransomware Variant Exploits Atlassian Servers

    The attacks exploit CVE-2023-22518, a critical flaw in Atlassian Confluence Data Center and Server

Why not watch?

  1. Uncovering DDoS Vulnerabilities with Simulation Testing: A Case Study

  2. How to Proactively Remediate Rising Web Application Threats

  3. How to Optimize Third-Party Risk Management Programs Through NIST CSF 2.0

  4. Navigating the Evolving Cybersecurity Compliance Landscape in 2024

What’s hot on Infosecurity Magazine?