The BianLian ransomware group has shifted exclusively to exfiltration-based extortion and is deploying multiple new TTPs for initial access and persistence

Infosecurity Magazine - Information Security & IT Security

22.11.2024

Google OSS-Fuzz Harnesses AI to Expose 26 Security Vulnerabilities - Infosecurity Magazine

One of these flaws detected using LLMs was in the widely used OpenSSL library

Infosecurity Magazine - Information Security & IT Security

22.11.2024

Vietnam’s Infostealer Crackdown Reveals VietCredCare and DuckTail - Infosecurity Magazine

Group-IB revealed key differences in VietCredCare and DuckTail infostealer malware targeting Facebook Business accounts

Infosecurity Magazine - Information Security & IT Security

22.11.2024

A Fifth of UK Enterprises “Not Sure” If NIS 2 Applies - Infosecurity Magazine

Over a fifth of large UK businesses aren’t sure of their compliance responsibilities under the new NIS2 directive

Infosecurity Magazine - Information Security & IT Security

22.11.2024

Lumma Stealer Proliferation Fueled by Telegram Activity - Infosecurity Magazine

Spreading malware via Telegram channels allows threat actors to bypass traditional detection mechanisms and reach a broad, unsuspecting audience

Infosecurity Magazine - Information Security & IT Security

21.11.2024

Apple Issues Emergency Security Update for Actively Exploited Flaws - Infosecurity Magazine

Apple has urged customers to download the security updates, which address vulnerabilities relating to the JavaScriptCore and WebKit frameworks

Infosecurity Magazine - Information Security & IT Security

21.11.2024

60% of Emails with QR Codes Classified as Spam or Malicious - Infosecurity Magazine

60% of QR code emails are spam according findings from Cisco Talos, who also identified attackers using QR code art to bypass security filters

Infosecurity Magazine - Information Security & IT Security

21.11.2024

Hackers Hijack Jupyter Servers for Sport Stream Ripping - Infosecurity Magazine

Aqua Security has observed threat actors using compromised Jupyter servers in a bid to illegally stream sporting events

Infosecurity Magazine - Information Security & IT Security

21.11.2024

Chinese APT Group Targets Telecom Firms Linked to BRI - Infosecurity Magazine

CrowdStrike unveiled a new Chinese-aligned hacking group allegedly spying on telecom providers

Infosecurity Magazine - Information Security & IT Security

21.11.2024

Five Privilege Escalation Flaws Found in Ubuntu needrestart - Infosecurity Magazine

Five LPE flaws in Ubuntu’s needrestart utility enable attackers to gain root access in versions prior to 3.8

Infosecurity Magazine - Information Security & IT Security

21.11.2024

Five Charged in Scattered Spider Case - Infosecurity Magazine

Five men have been indicted in connection with crimes committed by the Scattered Spider group

Infosecurity Magazine - Information Security & IT Security

21.11.2024

OWASP Warns of Growing Data Exposure Risk from AI in New Top 10 List - Infosecurity Magazine

OWASP has updated its Top 10 list of risks for LLMs and GenAI, upgrading several areas and introducing new categories

Infosecurity Magazine - Information Security & IT Security

21.11.2024

One Deepfake Digital Identity Attack Hits Every Five Minutes - Infosecurity Magazine

Entrust claims deepfakes are driving a surge in digital identity fraud

Infosecurity Magazine - Information Security & IT Security

20.11.2024

T-Mobile Breached in Major Chinese Cyber-Attack on Telecoms - Infosecurity Magazine

T-Mobile was hit by Salt Typhoon, a Chinese cyber-espionage group targeting US and global telecom firms

Infosecurity Magazine - Information Security & IT Security

20.11.2024

Cybercriminals Exploit Weekend Lull to Launch Ransomware Attacks - Infosecurity Magazine

Ransomware groups are targeting weekends and holidays to exploit understaffed security teams in order to get the best chance of a pay day

Infosecurity Magazine - Information Security & IT Security

20.11.2024

Suspected Phobos Ransomware Admin Extradited to US - Infosecurity Magazine

A Russian national suspected of involvement in Phobos ransomware has appeared in court in the US

Infosecurity Magazine - Information Security & IT Security

20.11.2024

Companies Take Over Seven Months to Recover From Cyber Incidents - Infosecurity Magazine

Fastly claims global organizations are taking 25% longer than expected to recover from security incidents

Infosecurity Magazine - Information Security & IT Security

20.11.2024

Palo Alto Networks Patches Critical Firewall Vulnerability - Infosecurity Magazine

Palo Alto advised users to patch urgently as the vulnerability is critical and actively exploited in the wild

Infosecurity Magazine - Information Security & IT Security

20.11.2024

Helldown Ransomware Expands to Target VMware and Linux Systems - Infosecurity Magazine

Helldown ransomware has expanded its reach to target Linux and VMware systems, exploiting Zyxel firewall vulnerabilities and exfiltrating data

Infosecurity Magazine - Information Security & IT Security

20.11.2024

Ransomware Gangs on Recruitment Drive for Pen Testers - Infosecurity Magazine

Ransomware groups are recruiting pen testers from the dark web to expand their operations, as revealed by Cato Network's Q3 2024 SASE Threat Report

Infosecurity Magazine - Information Security & IT Security

20.11.2024

CISA Chief Jen Easterly Set to Step Down on January 20 - Infosecurity Magazine

Easterly and her Deputy Director Nitin Natarajan are expected to leave office before President-elect Trump names a new leadership

Infosecurity Magazine - Information Security & IT Security

19.11.2024

Swiss Cyber Agency Warns of QR Code Malware in Mail Scam - Infosecurity Magazine

Switzerland’s National Cyber Security Centre has warned of a new QR code scam in fake MeteoSwiss letters spreading Android malware

Infosecurity Magazine - Information Security & IT Security

19.11.2024

FTC Records 50% Drop in Nuisance Calls Since 2021 - Infosecurity Magazine

The US Federal Trade Commission is celebrating a halving of unwanted telemarketing and scam calls since 2021

Infosecurity Magazine - Information Security & IT Security

19.11.2024

Fake Donald Trump Assassination Story Used in Phishing Scam - Infosecurity Magazine

A phishing email claims to be from the New York Times with a story about an assassination attempt against President-elect Donald Trump

Infosecurity Magazine - Information Security & IT Security

19.11.2024

‘ClickFix’ Cyber-Attacks for Malware Deployment on the Rise - Infosecurity Magazine

Proofpoint researchers have observed the growing use of the ClickFix social engineering tactic, which lures people into running malicious content

Infosecurity Magazine - Information Security & IT Security

19.11.2024

NCSC Warns UK Shoppers Lost £11.5m Last Christmas - Infosecurity Magazine

The UK’s National Cyber Security Centre is urging shoppers to stay safe this Christmas after revealing they lost £11.5m to fraudsters in 2023

Infosecurity Magazine - Information Security & IT Security

19.11.2024

North Korean IT Worker Network Tied to BeaverTail Phishing Campaign - Infosecurity Magazine

BeaverTail malware has been used to target tech job seekers through fake recruiters, Palo Alto Networks’ Unit 42 has found

Infosecurity Magazine - Information Security & IT Security

19.11.2024

Surge in DocuSign Phishing Attacks Target US State Contractors - Infosecurity Magazine

Phishing attacks using DocuSign impersonations targeting state agencies have surged 98% since Nov 8

Infosecurity Magazine - Information Security & IT Security

16.11.2024

Bitfinex Hacker Jailed for Five Years Over Billion Dollar Crypto Heist - Infosecurity Magazine

Ilya Lichtenstein hacked into the cryptocurrency exchange in 2016 and stole around 120,000 bitcoins

Infosecurity Magazine - Information Security & IT Security

16.11.2024

watchTowr Finds New Zero-Day Vulnerability in Fortinet Products - Infosecurity Magazine

The new vulnerability was named “FortiJump Higher” due to its similarity with the “FortiJump” vulnerability discovered in October

Infosecurity Magazine - Information Security & IT Security

16.11.2024

Ransomware Groups Use Cloud Services For Data Exfiltration - Infosecurity Magazine

SentinelOne described some of ransomware groups’ favorite techniques for targeting cloud services

Infosecurity Magazine - Information Security & IT Security

16.11.2024

Palo Alto Networks Confirms New Zero-Day Being Exploited by Threat Act - Infosecurity Magazine

The security provider has elevated its warning about a vulnerability affecting firewall management interfaces after observing active exploitation

Infosecurity Magazine - Information Security & IT Security

15.11.2024

Massive Telecom Hack Exposes US Officials to Chinese Espionage - Infosecurity Magazine

The FBI and CISA have confirmed that US officials’ private communications have been compromised

home›Infosecurity Magazine - Information Security & IT Security›Software

Infosecurity Magazine - Information Security & IT Security - Software

Microsoft Seizes 240 Websites to Disrupt Distribution of Phish Kits - Infosecurity Magazine

MITRE Unveils Top 25 Most Critical Software Flaws - Infosecurity Magazine

Five Ransomware Groups Responsible for 40% of Cyber-Attacks in 2024 - Infosecurity Magazine

Russian Cyber Spies Target Organizations with Custom Malware - Infosecurity Magazine

Three-Quarters of Black Friday Spam Emails Identified as Scams - Infosecurity Magazine

Manufacturing Sector in the Crosshairs of Advanced Email Attacks - Infosecurity Magazine

Linux Malware WolfsBane and FireWood Linked to Gelsemium APT - Infosecurity Magazine

BianLian Ransomware Group Adopts New Tactics, Posing Significant Risk - Infosecurity Magazine

Google OSS-Fuzz Harnesses AI to Expose 26 Security Vulnerabilities - Infosecurity Magazine

Vietnam’s Infostealer Crackdown Reveals VietCredCare and DuckTail - Infosecurity Magazine

A Fifth of UK Enterprises “Not Sure” If NIS 2 Applies - Infosecurity Magazine

Lumma Stealer Proliferation Fueled by Telegram Activity - Infosecurity Magazine

Apple Issues Emergency Security Update for Actively Exploited Flaws - Infosecurity Magazine

60% of Emails with QR Codes Classified as Spam or Malicious - Infosecurity Magazine

Hackers Hijack Jupyter Servers for Sport Stream Ripping - Infosecurity Magazine

Chinese APT Group Targets Telecom Firms Linked to BRI - Infosecurity Magazine

Five Privilege Escalation Flaws Found in Ubuntu needrestart - Infosecurity Magazine

Five Charged in Scattered Spider Case - Infosecurity Magazine

OWASP Warns of Growing Data Exposure Risk from AI in New Top 10 List - Infosecurity Magazine

One Deepfake Digital Identity Attack Hits Every Five Minutes - Infosecurity Magazine

T-Mobile Breached in Major Chinese Cyber-Attack on Telecoms - Infosecurity Magazine

Cybercriminals Exploit Weekend Lull to Launch Ransomware Attacks - Infosecurity Magazine

Suspected Phobos Ransomware Admin Extradited to US - Infosecurity Magazine

Companies Take Over Seven Months to Recover From Cyber Incidents - Infosecurity Magazine

Palo Alto Networks Patches Critical Firewall Vulnerability - Infosecurity Magazine

Helldown Ransomware Expands to Target VMware and Linux Systems - Infosecurity Magazine

Ransomware Gangs on Recruitment Drive for Pen Testers - Infosecurity Magazine

CISA Chief Jen Easterly Set to Step Down on January 20 - Infosecurity Magazine

Swiss Cyber Agency Warns of QR Code Malware in Mail Scam - Infosecurity Magazine

FTC Records 50% Drop in Nuisance Calls Since 2021 - Infosecurity Magazine

Fake Donald Trump Assassination Story Used in Phishing Scam - Infosecurity Magazine

‘ClickFix’ Cyber-Attacks for Malware Deployment on the Rise - Infosecurity Magazine

NCSC Warns UK Shoppers Lost £11.5m Last Christmas - Infosecurity Magazine

North Korean IT Worker Network Tied to BeaverTail Phishing Campaign - Infosecurity Magazine

Surge in DocuSign Phishing Attacks Target US State Contractors - Infosecurity Magazine

Bitfinex Hacker Jailed for Five Years Over Billion Dollar Crypto Heist - Infosecurity Magazine

watchTowr Finds New Zero-Day Vulnerability in Fortinet Products - Infosecurity Magazine

Ransomware Groups Use Cloud Services For Data Exfiltration - Infosecurity Magazine

Palo Alto Networks Confirms New Zero-Day Being Exploited by Threat Act - Infosecurity Magazine

Massive Telecom Hack Exposes US Officials to Chinese Espionage - Infosecurity Magazine

home
›
Infosecurity Magazine - Information Security & IT Security
›
Software