Infosecurity News

  1. Spain Arrests Alleged Leader of GXC Team Cybercrime Network

    Spanish authorities have arrested a 25-year-old Brazilian accused of leading the GXC Team and selling malware and AI tools to cybercriminals

  2. New Stealit Malware Campaign Spreads via VPN and Game Installer Apps

    A new campaign distributing the Stealit infostealer employs previously unknown malware delivery techniques and infrastructure

  3. Apple Bug Bounty Payouts Can Now Top $5m

    Apple has doubled its top bug bounty reward to $2m but with bonuses it could reach $5m

  4. FBI and French Police Shutter BreachForums Domain Again

    The infamous BreachForums site has been taken offline again to disrupt Scattered Lapsus$ Hunters

  5. Google Launches AI Bug Bounty with $30,000 Top Reward

    Google has introduced a new AI Vulnerability Reward Program offering up to $30,000 for bug discoveries in its AI products

  6. Google: Clop Accessed “Significant Amount” of Data in Oracle EBS Exploit

    GTIG highlighted indicators that Clop is behind the extortion campaign targeting Oracle EBS instances, with its activity likely beginning as early as August 9

  7. Pro-Russia Hacktivists “Claim” Attack on Water Utility Honeypot

    Forescout said that the TwoNet actor was lured into attacking a honeypot disguised as a water treatment utility, providing insights into the group’s tactics

  8. Researchers Warn of Security Gaps in AI Browsers

    A new report from SquareX Labs highlights security weaknesses in AI browsers like Comet, revealing new cyber-risks

  9. ClayRat Spyware Campaign Targets Android Users in Russia

    A new ClayRat spyware campaign has been observed targeting Russian users via fake apps on Telegram and exfiltrating data

  10. All SonicWall Cloud Backup Users Have Firewall Configuration Files Stolen

    SonicWall said that a threat actor has accessed files containing encrypted credentials and configuration data for all customers who have used its cloud backup service

  11. ICO’s £7.5m Clearview AI Fine a Step Closer After Legal Victory

    The ICO has won an Upper Tribunal appeal against Clearview AI over its ability to fine the company

  12. NCSC: Observability and Threat Hunting Must Improve

    The UK’s National Cyber Security Centre has released new guidance to help firms improve observability and threat hunting

  13. High Number of Windows 10 Users Remain as End-of-Life Looms

    A new report from TeamViewer found that 40% of global endpoints still run Windows 10, just days before security updates and support ends for the operating system

  14. Nezha Tool Used in New Cyber Campaign Targeting Web Applications

    A cyber campaign using Nezha has been identified, targeting vulnerable web apps with PHP web shells and Ghost RAT

  15. Digital Fraud Costs Companies Worldwide 7.7% of Annual Revenue

    According to TransUnion, digital fraud has cost companies $534bn in losses globally with US business hit hardest

  16. Cyber-Attack Contributes to Huge Sales Drop at JLR

    Jaguar Land Rover has reported a 25% drop in volume sales in the three months up to September 30, largely due to the impact of the ongoing cyber incident

  17. Bybit Theft Drives Record-Breaking $2bn Haul for North Korea

    North Korean hackers have stolen over $2bn in cryptocurrency already this year, says Elliptic

  18. Met Police Arrest Two Teens in Connection with Kido Attack

    Two 17-year-olds have been arrested following a cyber-attack on the Kido nursery group

  19. Qilin Ransomware Gang Claims Asahi Cyber-Attack

    The Qilin group claims to have stolen sensitive personal and proprietary data from the Brewer

  20. Critical Flaw Exposes 60,000 Redis Servers to Remote Exploitation

    A critical Redis flaw, dubbed “RediShell,” has exposed 60,000 unprotected servers to exploitation

Why Not Watch?

  1. From Chaos to Confidence: Establishing Trust in Every Cloud Interaction

  2. Risk-Based IT Compliance: The Case for Business-Driven Cyber Risk Quantification

  3. Strategic AI in Cyber Defense: How to Stay Ahead Without Increasing Risk

  4. Modernise Application Delivery for the New Era

What’s Hot on Infosecurity Magazine?