Infosecurity News

  1. Threat Actor Exploits Flaws and Uses Elastic Cloud SIEM to Manage Stolen Data

    Huntress researchers uncover campaign exploiting vulnerabilities to steal data using Elastic Cloud as a data hub

  2. Trump Administration Unveils New Cyber Strategy for America

    US national cyber strategy focuses on stronger defenses, countering threats, fostering innovation

  3. UK Launches New Crackdown Unit to Tackle Cyber-Fraud at the Source

    New UK Online Crime Centre will combine expertise from a range of sources to takedown online channels cyber-scammers rely on

  4. AI Security Startups Dominate New Cyber Innovation Awards

    Over one in five winners of IT-Harvest’s 2026 Cyber 150 are AI security companies

  5. TriZetto Provider Solutions Breach Hits 3.4 Million Patients

    Billing services provider TriZetto Provider Solutions has begun notifying millions of patients about a data breach

  6. Ghanaian Pleads Guilty to Role in $100m Romance Scam

    Derrick Van Yeboah admitted he stole over $10m in romance scams as part of crime gang

  7. Iran's MuddyWater Hackers Hit US Firms with New 'Dindoor' Backdoor

    A bank, an airport, a non-profit and the Israeli branch of a US software company were among the targets of this new MuddyWater campaign

  8. Zero‑Day Attacks on Enterprise Software Reach Record High, Google Warns

    Almost a quarter of the zero days detected by Google in 2025 targeted security and networking appliances

  9. AI-Driven Insider Risk Now a “Critical Business Threat,” Report Warns

    Malicious insiders are using misusing AI for nefarious gain, while employees cutting corners also creates risk, warns Mimecast

  10. ContextCrush Flaw Exposes AI Development Tools to Attacks

    Critical flaw "ContextCrush" in Context7 MCP Server could allow malicious instructions into AI tools

  11. Coruna Exploit Kit Targets Older iPhones in Multi-Stage Campaigns

    Exploit kit "Coruna" targets iPhones running iOS 13.0 to 17.2.1, focusing on financial data theft

  12. Zero-Click FreeScout Bug Enables Remote Code Execution

    Ox Security warns that Mail2Shell could enable threat actors to hijack FreeScout systems without user interaction

  13. Cisco Issues Patches for 48 Vulnerabilities in Enterprise Networking Products

    Two of the 48 Cisco vulnerabilities, affecting Secure Firewall Management Center, are maximum-severity flaws

  14. Europol Operation Seizes LeakBase Data Breach Site

    A global operation has resulted in the takedown of popular cybercrime forum LeakBase

  15. Coalition of Western Countries Launches 6G Cybersecurity Guidelines

    A coalition of seven Western nations has launched guidelines to help integrate security-by-design principles into future 6G standards

  16. Global Takedown Neutralizes Tycoon2FA Phishing Service

    Law enforcers and industry partners have taken down notorious phishing-as-a-service platform Tycoon2FA

  17. Surge in Attacks on Surveillance Cameras Linked to Iranian Hackers

    Increased attempts to compromise surveillance cameras linked to Iran during Middle East conflict

  18. Multi-Stage "BadPaw" Malware Campaign Targets Ukraine

    Malware campaign uses Ukrainian email service for credibility, deploying "BadPaw" to execute attacks

  19. Calls for Global Digital Estate Standard as Posthumous Deepfake Fraud Risk Grows

    The OpenID Foundation warns that fragmented policies on posthumous digital accounts could open the door for fraudsters to exploit AI deepfakes

  20. Israel: RedAlert Spyware Campaign Exploits Wartime Panic With Trojanized App

    Espionage campaign exploits Israel-Iran conflict, distributing a trojanized Red Alert app via SMS

Why Not Watch?

  1. Securing M365 Data and Identity Systems Against Modern Adversaries

  2. Modernizing GRC: From Checkbox to Strategic Advantage

  3. Five Non-Negotiable Strategies to Get Identity Security Right in 2026

  4. Why Your Organisation Needs Trusted Time Synchronisation

What’s Hot on Infosecurity Magazine?