Infosecurity News

  1. Attackers Exploit DVR Command Injection Flaw to Deploy Mirai-Based Botnet

    FortiGuard Labs has identified a Mirai-based Nexcorium campaign actively exploiting CVE-2024-3721 in TBK DVR devices

  2. NCSC Outlines Coordinated Plan to Boost NHS Cyber Resilience

    The National Cyber Security Centre has shared an update of its resilience-building efforts for the NHS

  3. Crypto Exchange Grinex Blames Western Spies for $13m Theft

    Russian crypto-exchange Grinex claims Western intelligence agencies were behind a $13m heist

  4. Commercial AI Models Show Rapid Gains in Vulnerability Research

    AI models are making rapid gains in vulnerability research and exploit development, raising new cybersecurity risks, a Forescout study finds

  5. DDoS-For-Hire Services Disrupted by International Police Action in ‘Operation PowerOff’

    Coordinated action by FBI, Europol and others seizes infrastructure, makes arrests – and sends warning letters to known DDoS service users

  6. US Nationals Jailed for Operating Fake Remote Worker Laptop Farms for North Korea

    US authorities jail two Americans for aiding North Korean laptop farm scams that infiltrated over 100 firms

  7. APK Malformation Found in Thousands of Android Malware Samples

    APK malformation tactic now appears in over 3000 Android malware samples evading static analysis

  8. Cookeville Medical Center Notifies Patients After July 2025 Ransomware Attack

    Tennessee's CRMC notifies over 337,000 patients of Rhysida ransomware breach exposing sensitive data

  9. NIST Drops NVD Enrichment for Pre-March 2026 Vulnerabilities

    NIST’s National Vulnerability Database will now prioritize enriching new and exploited flaws to address the record growth of reported CVEs

  10. Systemic Flaw in MCP Protocol Could Expose 150 Million Downloads

    Ox Security claims as many as 200,000 servers are exposed by newly discovered MCP vulnerability

  11. Automotive Ransomware Attacks Double in a Year

    Halcyon says ransomware now accounts for more than two-fifths of cyber-attacks targeting carmakers

  12. OpenAI Unveils GPT-5.4-Cyber for Improving Cyber Defense With AI

    OpenAI’s new frontier model focused on cybersecurity comes following Anthropic’s launch of Claude Mythos Preview and Project Glasswing

  13. European Cybersecurity Agency ENISA Seeks Top-Tier Status in CVE Program

    The EU cybersecurity agency looks to become the third Top-Level Root CVE Numbering Authority, alongside CISA and MITRE

  14. Signed Adware Operation Disables Antivirus Across 23,000 Hosts

    Huntress uncovers adware deploying AV-killing payloads via signed updates across 23,000 endpoints

  15. Critical Nginx-ui MCP Flaw Actively Exploited in the Wild

    Critical nginx-ui MCP authentication bypass CVE-2026-33032 actively exploited with CVSS 9.8

  16. AI Companies to Play Bigger Role in CVE Program, Says CISA

    At VulnCon, Lindsey Cerkovnik, head of vulnerability management at CISA, said AI companies should play a bigger role in vulnerability disclosures in the future

  17. Researchers Spot Surge in Brute-Force Attacks from Middle East

    Barracuda says 88% of brute-force attempts in Q1 were from the region

  18. Microsoft Fixes Two Zero-Days in April Patch Tuesday

    Microsoft has patched two zero-day flaws and over 160 others

  19. CISOs Urged to Innovate with Talent Retention as Job Satisfaction Declines

    A new IANS report claims just 34% of cybersecurity professionals plan to stay put in the next 12 months

  20. Triad Nexus Expands Global Fraud Operations Despite US Sanctions

    Triad Nexus scales $200m scams, uses infrastructure laundering, localized fraud and US-access blocks

Why Not Watch?

  1. Financial Services Under Pressure: Supply Chain Risk, Regulation and Operational Resilience

  2. How to Harness Advanced Intelligence Capabilities to Strengthen Cyber Defence

  3. How to Recover From a Cyber-Attack: A Step-by-Step Playbook

  4. Securing M365 Data and Identity Systems Against Modern Adversaries

What’s Hot on Infosecurity Magazine?