A software supply chain attack targeting Nx marks the first known case where attackers have leveraged developer AI assistants, according to StepSecurity

Infosecurity Magazine - Information Security & IT Security

02.09.2025

Silver Fox Exploits Signed Drivers to Deploy ValleyRAT Backdoor - Infosecurity Magazine

Silver Fox APT abuses Microsoft-signed drivers to kill antivirus and deploy ValleyRAT remote-access backdoor

Infosecurity Magazine - Information Security & IT Security

02.09.2025

Salesloft Attacks Target Google Workspace - Infosecurity Magazine

Adversaries targeting the Salesloft Drift application integration with Salesforce have also compromised Google Workspace accounts

Infosecurity Magazine - Information Security & IT Security

02.09.2025

TransUnion Data Breach Impacts 4.5 Million US Customers - Infosecurity Magazine

The credit rating giant revealed that the breach, which occurred on July 28, was caused by unauthorized access to a third-party application

Infosecurity Magazine - Information Security & IT Security

02.09.2025

Zscaler Customer Info Taken in Salesloft Breach - Infosecurity Magazine

Zscaler has emerged as the latest corporate victim of a supply chain attack targeting Salesforce data

Infosecurity Magazine - Information Security & IT Security

02.09.2025

Amazon Stops Russian APT29 Watering Hole Attack - Infosecurity Magazine

The campaign shows APT29’s intentions to “cast a wider net in their intelligence collection efforts,” said Amazon

Infosecurity Magazine - Information Security & IT Security

02.09.2025

Ransomware Attack on Pennsylvania’s AG Office Disrupts Court Cases - Infosecurity Magazine

Pennsylvania’s Attorney General confirmed the OAG had refused to pay a ransom demand to the attackers after files were encrypted

Infosecurity Magazine - Information Security & IT Security

02.09.2025

State-Sponsored Hackers Behind Majority of Vulnerability Exploits - Infosecurity Magazine

Recorded Future highlighted the vast capabilities of state actors to rapidly weaponize newly disclosed vulnerabilities for geopolitical purposes

Infosecurity Magazine - Information Security & IT Security

02.09.2025

WhatsApp Patches Zero-Day, Zero-Click Flaw - Infosecurity Magazine

WhatsApp has fixed a zero-day vulnerability linked to a sophisticated cyber-attack

Infosecurity Magazine - Information Security & IT Security

02.09.2025

High-Risk SQLi Flaw Exposes WordPress Memberships Plugin Users - Infosecurity Magazine

A vulnerability in the WordPress Paid Memberships Subscription plugin could lead to unauthenticated SQL injection on affected sites

Infosecurity Magazine - Information Security & IT Security

02.09.2025

Fake IT Support Attacks Hit Microsoft Teams - Infosecurity Magazine

Fake IT support lures are being used to trick employees into installing remote‑access tools via Microsoft Teams

Infosecurity Magazine - Information Security & IT Security

02.09.2025

North Korean Hackers Weaponize Seoul Intelligence Files - Infosecurity Magazine

Pyongyang-backed hacking group APT37 leveraged an internal South Korean intelligence briefing in a spear phishing campaign

Infosecurity Magazine - Information Security & IT Security

28.08.2025

CISA Strengthens Software Procurement Security With New Tool - Infosecurity Magazine

CISA has launched a new Software Acquisition Guide Web Tool to enhance security in software procurement

Infosecurity Magazine - Information Security & IT Security

28.08.2025

Citrix Patches Three Zero Days as One Sees Active Exploitation - Infosecurity Magazine

Citrix customers are urged to patch their vulnerable NetScaler appliances, but “patching alone won’t cut it,” experts said

Infosecurity Magazine - Information Security & IT Security

28.08.2025

Researchers Discover First Reported AI-Powered Ransomware - Infosecurity Magazine

While still in development, PromptLock is described as the “first known AI-powered ransomware” by ESET researchers

Infosecurity Magazine - Information Security & IT Security

28.08.2025

Ransomware Actor Deletes Data and Backups Post-Exfiltration on Azure - Infosecurity Magazine

Microsoft observed Storm-0501 pivot to the victim’s cloud environment to exfiltrate data rapidly and prevent the victim’s recovery

Infosecurity Magazine - Information Security & IT Security

28.08.2025

ShadowSilk Campaign Targets Central Asian Governments - Infosecurity Magazine

A series of cyber-attacks against government organizations in Central Asia and Asia- Pacific has been linked to the ShadowSilk threat cluster

Infosecurity Magazine - Information Security & IT Security

28.08.2025

ENISA to Coordinate €36m EU-Wide Incident Response Scheme - Infosecurity Magazine

EU security agency ENISA is being handed €36m to operate the EU Cybersecurity Reserve

Infosecurity Magazine - Information Security & IT Security

28.08.2025

Nevada “Network Security Incident” Shuts Down State Offices and Servic - Infosecurity Magazine

The Office of the Governor of Nevada revealed that the incident has shut down in-person State services, while government phone lines and websites are offli

Infosecurity Magazine - Information Security & IT Security

28.08.2025

New Data Theft Campaign Targets Salesforce via Salesloft App - Infosecurity Magazine

Google is warning of a new credential theft campaign targeting Salesforce customers via Salesloft Drift

Infosecurity Magazine - Information Security & IT Security

27.08.2025

Phishing Campaign Uses UpCrypter to Deploy Remote Access Tools - Infosecurity Magazine

A global phishing campaign has been identified using personalized emails and fake websites to deliver malware via UpCrypter

Infosecurity Magazine - Information Security & IT Security

27.08.2025

US: Maryland Confirms Cyber Incident Affecting State Transport Systems - Infosecurity Magazine

All previously scheduled mobility trips across Maryland for this week will be honored, said the state’s transportation administration

Infosecurity Magazine - Information Security & IT Security

27.08.2025

New Phishing Campaign Abuses ConnectWise ScreenConnect to Take Over De - Infosecurity Magazine

Abnormal AI said the campaign, which lures victims into downloading legitimate RMM software, marks a major evolution in phishing tactics

Infosecurity Magazine - Information Security & IT Security

27.08.2025

New Android Trojan Variant Expands with Ransomware Tactics - Infosecurity Magazine

A new version of the Hook Android banking Trojan features 107 remote commands, including ransomware overlays

Infosecurity Magazine - Information Security & IT Security

27.08.2025

CIISec: Most Security Professionals Want Stricter Regulations - Infosecurity Magazine

A new CIISec poll finds the majority of industry professionals would prefer more rigorous cybersecurity laws

Infosecurity Magazine - Information Security & IT Security

26.08.2025

CISA Seeks Biden Era's SBOM Minimum Requirements Guideline Change - Infosecurity Magazine

The US Cybersecurity and Infrastructure Security Agency is planning to launch an update to a 2021 guideline for SBOM requirements

Infosecurity Magazine - Information Security & IT Security

26.08.2025

Chinese Developer Jailed for Deploying Malicious Code at US Company - Infosecurity Magazine

A Chinese developer has been sentenced to four years in prison after being found to deploy malicious code in his employer’s network, including a “kill swit

Infosecurity Magazine - Information Security & IT Security

26.08.2025

Tech Manufacturer Data I/O Hit by Ransomware - Infosecurity Magazine

Data I/O has revealed operational disruption following a ransomware breach that forced it to take some systems offline

Infosecurity Magazine - Information Security & IT Security

26.08.2025

Fake macOS Help Sites Seek to Spread Infostealer in Targeted Campaign - Infosecurity Magazine

A variant of the Atomic macOS Stealer (AMOS) targets macOS users via fake support sites in malvertising campaign

Infosecurity Magazine - Information Security & IT Security

25.08.2025

Cybercriminal Linked to Scattered Spider Gang Gets 10-Year Sentence - Infosecurity Magazine

Noah Urban, linked with the Scattered Spider cybercriminal gang, will also pay $13m in restitution to victims

Infosecurity Magazine - Information Security & IT Security

25.08.2025

Interpol-Led African Cybercrime Crackdown Leads to 1209 Arrests - Infosecurity Magazine

Operation Serengeti 2.0 operators helped recover $97.4m stolen by cybercriminals

Infosecurity Magazine - Information Security & IT Security

25.08.2025

Oregon Man Charged in Rapper Bot DDoS-for-Hire Case - Infosecurity Magazine

A 22-year-old Oregon man has been charged with administering the Rapper Bot DDoS-for-hire Botnet

Infosecurity Magazine - Information Security & IT Security

25.08.2025

Pharmaceutical Company Inotiv Confirms Ransomware Attack - Infosecurity Magazine

Indiana-based pharmaceutical research company Inotiv has confirmed it suffered a ransomware attack, disrupting operations and compromising data

Infosecurity Magazine - Information Security & IT Security

25.08.2025

Attackers Abuse Virtual Private Servers to Compromise SaaS Accounts - Infosecurity Magazine

Darktrace observed a coordinated campaign on customer SaaS accounts, all of which involved logins from IP addresses linked to VPS providers

Infosecurity Magazine - Information Security & IT Security

25.08.2025

Russian Espionage Group Static Tundra Targets Legacy Cisco Flaw - Infosecurity Magazine

Russian state-backed hackers are exploiting a seven-year-old Cisco Smart Install vulnerability (CVE-2018-0171) in end-of-life devices

Infosecurity Magazine - Information Security & IT Security

25.08.2025

“PromptFix” Attacks Could Supercharge Agentic AI Threats - Infosecurity Magazine

Guardio reveals a new AI take on ClickFix dubbed “PromptFix”

Infosecurity Magazine - Information Security & IT Security

25.08.2025

Colt Admits Customer Data Likely Stolen in Cyber-Attack - Infosecurity Magazine

Colt customers can request a list of filenames posted on the dark web via a dedicated call center

Infosecurity Magazine - Information Security & IT Security

25.08.2025

NIST Unveils Guidelines to Help Spot Face Morphing Attempts - Infosecurity Magazine

NIST has released new guidelines examining the pros and cons of detection methods for face morphing

Infosecurity Magazine - Information Security & IT Security

25.08.2025

Microsoft to Make All Products Quantum Safe by 2033 - Infosecurity Magazine

Microsoft has set out a roadmap to complete transition to PQC in all its products and services by 2033, with roll out beginning by 2029

Infosecurity Magazine - Information Security & IT Security

25.08.2025

Orange Data Breach Raises SIM-Swapping Attack Fears - Infosecurity Magazine

Orange Belgium revealed that a threat actor has compromised 850,000 customer accounts, with SIM card numbers among the data accessed

home›Infosecurity Magazine - Information Security & IT Security›Software

Infosecurity Magazine - Information Security & IT Security - Software

Npm Package Hijacked to Steal Data and Crypto via AI-Powered Malware - Infosecurity Magazine

Silver Fox Exploits Signed Drivers to Deploy ValleyRAT Backdoor - Infosecurity Magazine

Salesloft Attacks Target Google Workspace - Infosecurity Magazine

TransUnion Data Breach Impacts 4.5 Million US Customers - Infosecurity Magazine

Zscaler Customer Info Taken in Salesloft Breach - Infosecurity Magazine

Amazon Stops Russian APT29 Watering Hole Attack - Infosecurity Magazine

Ransomware Attack on Pennsylvania’s AG Office Disrupts Court Cases - Infosecurity Magazine

State-Sponsored Hackers Behind Majority of Vulnerability Exploits - Infosecurity Magazine

WhatsApp Patches Zero-Day, Zero-Click Flaw - Infosecurity Magazine

High-Risk SQLi Flaw Exposes WordPress Memberships Plugin Users - Infosecurity Magazine

Fake IT Support Attacks Hit Microsoft Teams - Infosecurity Magazine

North Korean Hackers Weaponize Seoul Intelligence Files - Infosecurity Magazine

CISA Strengthens Software Procurement Security With New Tool - Infosecurity Magazine

Citrix Patches Three Zero Days as One Sees Active Exploitation - Infosecurity Magazine

Researchers Discover First Reported AI-Powered Ransomware - Infosecurity Magazine

Ransomware Actor Deletes Data and Backups Post-Exfiltration on Azure - Infosecurity Magazine

ShadowSilk Campaign Targets Central Asian Governments - Infosecurity Magazine

ENISA to Coordinate €36m EU-Wide Incident Response Scheme - Infosecurity Magazine

Nevada “Network Security Incident” Shuts Down State Offices and Servic - Infosecurity Magazine

New Data Theft Campaign Targets Salesforce via Salesloft App - Infosecurity Magazine

Phishing Campaign Uses UpCrypter to Deploy Remote Access Tools - Infosecurity Magazine

US: Maryland Confirms Cyber Incident Affecting State Transport Systems - Infosecurity Magazine

New Phishing Campaign Abuses ConnectWise ScreenConnect to Take Over De - Infosecurity Magazine

New Android Trojan Variant Expands with Ransomware Tactics - Infosecurity Magazine

CIISec: Most Security Professionals Want Stricter Regulations - Infosecurity Magazine

CISA Seeks Biden Era's SBOM Minimum Requirements Guideline Change - Infosecurity Magazine

Chinese Developer Jailed for Deploying Malicious Code at US Company - Infosecurity Magazine

Tech Manufacturer Data I/O Hit by Ransomware - Infosecurity Magazine

Fake macOS Help Sites Seek to Spread Infostealer in Targeted Campaign - Infosecurity Magazine

Cybercriminal Linked to Scattered Spider Gang Gets 10-Year Sentence - Infosecurity Magazine

Interpol-Led African Cybercrime Crackdown Leads to 1209 Arrests - Infosecurity Magazine

Oregon Man Charged in Rapper Bot DDoS-for-Hire Case - Infosecurity Magazine

Pharmaceutical Company Inotiv Confirms Ransomware Attack - Infosecurity Magazine

Attackers Abuse Virtual Private Servers to Compromise SaaS Accounts - Infosecurity Magazine

Russian Espionage Group Static Tundra Targets Legacy Cisco Flaw - Infosecurity Magazine

“PromptFix” Attacks Could Supercharge Agentic AI Threats - Infosecurity Magazine

Colt Admits Customer Data Likely Stolen in Cyber-Attack - Infosecurity Magazine

NIST Unveils Guidelines to Help Spot Face Morphing Attempts - Infosecurity Magazine

Microsoft to Make All Products Quantum Safe by 2033 - Infosecurity Magazine

Orange Data Breach Raises SIM-Swapping Attack Fears - Infosecurity Magazine

home
›
Infosecurity Magazine - Information Security & IT Security
›
Software