News
Entertainment
Science & Technology
Sport
Business & Money
Life
Culture & Art
Hobbies
8 | Follower
Infosecurity Magazine - Information Security & IT Security
29.04.2024
Okta has issues customers with new advice on how to block mounting credential stuffing attacks
IoT manufacturers, retailers and importers must comply with new security legislation, the PSTI act, from today
27.04.2024
CISA’s RVWP program sent 1754 ransomware vulnerability notifications to government and critical infrastructure entities in 2023
26.04.2024
A new ISC2 study highlights the lack of diversity in cybersecurity with only 4% of teams having a majority of women, while 11% have none at all
An advisory from Cisco Talos has highlighted a sophisticated cyber-espionage campaign targeting government networks globally
The two founders of Samourai Wallet have been charged with money laundering and unlicensed money-transmitting offenses
Cyber threat intelligence provider Cyble found that DragonForce was using a ransomware binary based on LockBit Black’s builder
The US Federal Trade Commission will send $5.6m worth of refunds to the spied-on customers of the Amazon-owned home camera company
25.04.2024
Consumer rights group Which? has found more security gaps in UK banking sites and apps
Jake Humphrey and Professor Damian Hughes, the minds behind the High Performance Podcast, share their top non-negotiable behaviours for success in cybersec
Email-borne fraud accounted for more insurance claims than any other category in 2023, says Coalition
The proximity of organizations’ headquarters, like Asda’s and NHS England’s, prompted BlueVoyant to choose Leeds as the location for its first UK SOC
The US Treasury announced sanctions on two companies and four individuals for cyber campaigns conducted on behalf of the Iranian government
Netacea research found that 93% of security leaders expect to face daily AI-driven attacks by the end of 2024
The bill that could see TikTok banned in the US has been approved by the House of Representatives and the Senate
24.04.2024
The move is reportedly part of a broader effort to counter the misuse of surveillance technology
One in five UK organizations have had corporate data exposed unwittingly by employees using generative AI
Pyongyang hackers ran a year-long cyber-espionage campaign against South Korean defense companies
The call comes amid the rollout of end-to-end encryption on Meta’s Messenger platform
Mandiant’s latest M-Trends report found that vulnerability exploitation was the most common initial infection vector in 2023, making up 38% of intrusions
Millions of Americans may be impacted by the Change Healthcare data breach as UnitedHealth confirms exposed data includes personal and health information
23.04.2024
This occurs when a private package fetches a similar public one, leading to exploit due to misconfigurations in package managers
Notorious APT44 group Sandworm launched a mass campaign against Ukrainian critical infrastructure in March
Microsoft has warned of a long-running credential stealing campaign from Russia’s APT28
The UK’s National Cyber Security Centre will see Richard Horne take over as its new boss in the autumn
The scheme was uncovered by Kaspersky and has been operational since November 2023
The new document is the first release from NSA’s Artificial Intelligence Security Center (AISC), in partnership with other Five Eyes government agencies
CrushFTP is urging customers to download a new version, with attackers actively exploiting a vulnerability that allows them to download system files
22.04.2024
Non-profit MITRE says a sophisticated state group breached its network via two chained Ivanti zero-days
20.04.2024
A joint advisory from Europol and US and Dutch government agencies estimated that Akira has made around $42m in ransomware proceeds
This drop represents a direct threat to US national cybersecurity infrastructure, said CyberSN representatives in their report
19.04.2024
Mandiant has confirmed that Sandworm is responsible for many cyber-attacks against Ukraine has close ties with a Russian hacktivist group
Zscaler also confirmed MadMxShell uses DLL sideloading and DNS tunneling for C2 communication
The figures come from Egress’s latest report, which also suggests secure email gateways lag behind tech advancements
A US government advisory sets out actions election officials need to take to mitigate the impact of nation-state influence campaigns
18.04.2024
OpenSSF, in collaboration with the US Government, has developed Protobom, a open source tool designed to simplify SBOM management for organizations
The Metropolitan Police and partners have disrupted the prolific LabHost phishing-as-a-service platform
This year’s EU elections will be a stress test to see whether the newly adopted Digital Services Act can efficiently mitigate misinformation threats
Proofpoint confirmed Kimsuky has directly contacted foreign policy experts since 2023 through seemingly benign email conversations
The attacks exploit CVE-2023-22518, a critical flaw in Atlassian Confluence Data Center and Server