Category: www.infosecurity-magazine.com

OpenAI has reported a surge in performance as GPT-5.1-Codex-Max reaching 76% in capability assessments, and warned of upcoming cyber-risks This article has been indexed from www.infosecurity-magazine.com Read the original article: OpenAI Enhances Defensive Models to Mitigate Cyber-Threats

Read more →

A new campaign involving 19 malicious Visual Studio Code extensions used a legitimate npm package to embed malware in dependency folders This article has been indexed from www.infosecurity-magazine.com Read the original article: Malware Discovered in 19 Visual Studio Code Extensions

Read more →

New ITRC research finds 81% of US small businesses suffered a data or security breach in the past year This article has been indexed from www.infosecurity-magazine.com Read the original article: “Cyber Tax” Warning as Two-Fifths of SMBs Raise Prices After…

Read more →

Google has released a Chrome security update to fix three zero-day vulnerabilities, including a high-severity flaw with an active exploit This article has been indexed from www.infosecurity-magazine.com Read the original article: Google Releases Critical Chrome Security Update to Address Three…

Read more →

Experts say a new Firm Checker tool from the FCA won’t move the dial on fraud but is a step in the right direction This article has been indexed from www.infosecurity-magazine.com Read the original article: Scam-Busting FCA Firm Checker Tool…

Read more →

A new malware campaign has been identified using a Python-based delivery system to deploy CastleLoader malware This article has been indexed from www.infosecurity-magazine.com Read the original article: ClickFix Social Engineering Sparks Rise of CastleLoader Attacks

Read more →

Pro-Russia hacktivist groups have been observed exploiting exposed virtual network computing connections to breach OT systems This article has been indexed from www.infosecurity-magazine.com Read the original article: Pro-Russia Hackers Target US Critical Infrastructure in New Wave

Read more →

The flaw, dubbed ‘GeminiJack,’ exploits the trust boundary between user-controlled content in data sources and the AI model’s instruction processing This article has been indexed from www.infosecurity-magazine.com Read the original article: Google Fixes Zero Click Gemini Enterprise Flaw That Exposed…

Read more →

Sonatype has claimed that 13% of Log4j versions downloaded this year were vulnerable to the legacy critical Log4Shell bug This article has been indexed from www.infosecurity-magazine.com Read the original article: Log4Shell Downloaded 40 Million Times in 2025

Read more →

December’s Patch Tuesday sees the release of patches for over 50 CVEs including three zero-days This article has been indexed from www.infosecurity-magazine.com Read the original article: Microsoft Fixes Three Zero-Days in Final Patch Tuesday of 2025

Read more →

Sysdig has found sophisticated malicious campaigns exploiting React2Shell that delivered EtherRAT and suggested North Korean hackers’ involvement This article has been indexed from www.infosecurity-magazine.com Read the original article: React2Shell Exploit Campaigns Tied to North Korean Cyber Intrusion Tactics

Read more →

Two malicious Visual Studio Code extensions, Bitcoin Black and Codo AI, have been observed harvesting sensitive user data This article has been indexed from www.infosecurity-magazine.com Read the original article: Malicious VS Code Extensions Deploy Advanced Infostealer

Read more →

Cisco Talos has detected new tactics from a financially motivated actor using DeadLock ransomware This article has been indexed from www.infosecurity-magazine.com Read the original article: DeadLock Ransomware Uses BYOVD to Evade Security Measures

Read more →

The UK’s National Cyber Security Centre has warned of the dangers of comparing prompt injection to SQL injection This article has been indexed from www.infosecurity-magazine.com Read the original article: UK NCSC Raises Alarms Over Prompt Injection Attacks

Read more →

Gartner has called for organizations to block today’s AI browsers on security concerns This article has been indexed from www.infosecurity-magazine.com Read the original article: Gartner Calls For Pause on AI Browser Use

Read more →

A new version of ClayRat Android spyware features enhanced surveillance and device-control features This article has been indexed from www.infosecurity-magazine.com Read the original article: ClayRat Android Spyware Expands Capabilities

Read more →

A data breach at Marquis Software Solutions due to a firewall flaw has affected over 780,000 people across the US This article has been indexed from www.infosecurity-magazine.com Read the original article: Marquis Software Breach Affects Over 780,000 Nationwide

Read more →

Security researchers will now be protected from prosecution in Portugal as long as they meet certain conditions This article has been indexed from www.infosecurity-magazine.com Read the original article: Portugal Revises Cybercrime Law to Protect Security Researchers

Read more →

React2Shell (CVE-2025-55182) is under active exploitation by Earth Lamia and Jackpot Panda, risking over two million instances worldwide This article has been indexed from www.infosecurity-magazine.com Read the original article: React2Shell Under Active Exploitation by China-Nexus Hackers

Read more →

A Home Office report has revealed racial bias in facial recognition technology used by police This article has been indexed from www.infosecurity-magazine.com Read the original article: UK ICO Demands “Urgent Clarity” on Facial Recognition Bias Claims

Read more →