Infosecurity News

  1. Cisco Vulnerability Exploited Months Before Disclosure, Google Warns

    A high-severity flaw in Cisco Catalyst SD-WAN Manager disclosed in early June was exploited as early as March

  2. Twenty Million US IP Connections Used by Proxy Services

    Digital Citizens Alliance report claims that millions of Americans may have unwittingly had IP connections used by cybercriminals

  3. Trust in Automated AI Vulnerability Scanning Collapses to 9%, New Study Finds

    Cobalt study finds 20-percentage-point drop in number of organizations relying solely on AI automation for testing

  4. New CISA Guide Helps Agencies Adopt SASE For Zero Trust

    New CISA guidance shows federal agencies how to use SASE to move from legacy TIC 2.0 to zero trust

  5. macOS Flaw Lets Standard Users Disable EDR and MDM

    macos-xpc-flaw-disable-edr-mdm-standard-user-xm-cyber

  6. Major Increase in Ransomware Attacks Targeting Europe, Warns New Report

    Analysis of ransomware incidents by researchers at Black Kite found that attacks have risen by over 50% in the last year, with supply chain attacks increasing

  7. Researchers Trick AI Browsers Into Leaking Credentials

    LayerX tricked AI browsers including ChatGPT Atlas and Comet into bypassing their guardrails

  8. Europol-Led Operation Endgame Takes Down StealC and Amadey Infostealers

    Operation Endgame seized around 50 domains and nearly 200 active IP-based servers associated with the infostealers

  9. macOS Backdoor Uses Prompt Injection to Evade AI Triage

    SentinelLabs found a North Korea-linked macOS backdoor using prompt injection on AI triage tools

  10. KDDI Breach Affects Six Japanese ISPs, Exposes 14.2 Email Credentials

    Customers of the affected Japanese email services are “strongly advised” to change their email passwords

  11. Iran-Linked MuddyWater Poses as Ransomware Gang to Mask Cyber Espionage

    An NCC Group report warns state-backed hackers are attempting to hide activity by posing as ransomware groups and deploying commercially available malware

  12. AI Is Making Attacks Cheaper, Faster and More Covert, Says ReliaQuest

    New ReliaQuest study reveals the six ways AI is practically being used in attacks today

  13. UK Museums Face Cybersecurity Risks, MPs Warn

    Public Accounts Committee (PAC) warns that museums and galleries aren’t getting enough government support on cyber

  14. Lookalike npm Package Hides a Multi-Stage Windows RAT

    JFrog found an npm package impersonating postcss-selector-parser to drop a multi-stage Windows RAT

  15. OpenAI Expands Daybreak to Help Defenders Patch Flaws

    OpenAI expanded Daybreak with a full GPT-5.5-Cyber release to help defenders patch software flaws

  16. Trump Issues Executive Order to Fast-Track Post-Quantum Migration

    All US federal agencies will have to complete their post-quantum cryptography transition by 2031, according to a new Trump Executive Order

  17. GTA 6 Scams Emerge as Pre-Orders Open

    Cybercriminals launch fake GTA 6 pre-order sites offering early access for crypto payments

  18. Scattered Spider Teens Convicted of TfL Cyber-Attack

    Two young British men have pleaded guilty to hacking Transport for London as part of a Scattered Spider plot

  19. Five Eyes Group Issues Urgent Call to Tackle Frontier AI Threats

    The Five Eyes Alliance has published a rare call to action for organizations facing AI threats

  20. GentleKiller Framework Disables Victims' Security Software

    ESET details GentleKiller, the EDR-killer framework the Gentlemen ransomware gang gives affiliates

Why Not Watch?

  1. How to Manage Enterprise Cyber Resilience in the Age of AI

  2. Behind the Curtain of Microsoft 365 Cybersecurity: Lessons from Overlooked Resilience Gaps

  3. 68% of Businesses Say Employees Are Their Biggest Cyber Threat. Now What?

  4. Why Resilience‑Focused Cloud Design Is Your Best Defense Against Modern Attacks

What’s Hot on Infosecurity Magazine?