Category: www.infosecurity-magazine.com

Salesloft has revealed that threat actors targeted customer Salesforce data after breaching its GitHub account This article has been indexed from www.infosecurity-magazine.com Read the original article: Salesloft: GitHub Account Breach Was Ground Zero in Drift Campaign

Read more →

Wealthsimple confirmed a third-party vendor data breach affecting roughly 30,000 customers This article has been indexed from www.infosecurity-magazine.com Read the original article: Wealthsimple Confirms Data Breach After Supply Chain Attack

Read more →

Phishing campaign unveiled MostereRAT, targeting Windows systems with advanced evasion techniques This article has been indexed from www.infosecurity-magazine.com Read the original article: MostereRAT Targets Windows Users With Stealth Tactics

Read more →

Cisco Talos found that abuse of remote services and remote access software are the most prevalent ‘pre-ransomware’ tactics deployed by threat actors This article has been indexed from www.infosecurity-magazine.com Read the original article: Remote Access Abuse Biggest Pre-Ransomware Indicator

Read more →

Palo Alto Networks, Cloudflare and Zscaler were also among confirmed victims of the attack This article has been indexed from www.infosecurity-magazine.com Read the original article: Qualys, Tenable Latest Victims of Salesloft Drift Hack

Read more →

Security researchers have discovered a new malicious campaign impacting hundreds of GitHub users This article has been indexed from www.infosecurity-magazine.com Read the original article: GhostAction Supply Chain Attack Compromises 3000+ Secrets

Read more →

Critical SAP S/4HANA vulnerability CVE-2025-42957 is being exploited in the wild This article has been indexed from www.infosecurity-magazine.com Read the original article: SAP S/4HANA Users Urged to Patch Critical Exploited Bug

Read more →

Bridgestone Americas confirmed the incident but has not detailed the scope of the attack This article has been indexed from www.infosecurity-magazine.com Read the original article: Bridgestone Confirms “Limited Cyber Incident” Impacting Facilities in North America

Read more →

An investigation has revealed that files were stolen in a data breach affecting a South Carolina school district This article has been indexed from www.infosecurity-magazine.com Read the original article: South Carolina School District Data Breach Affects 31,000 People

Read more →

Trend Micro observed the attackers using terminal-based installation methods for the AMOS malware, luring macOS users into installing cracked versions of apps This article has been indexed from www.infosecurity-magazine.com Read the original article: macOS Stealer Campaign Uses “Cracked” App Lures…

Read more →

The joint guidance is a welcome first step towards a common, global adoption of SBOMs, experts argued This article has been indexed from www.infosecurity-magazine.com Read the original article: US and 14 Allies Release Joint Guidance on Software Bill of Materials

Read more →

The OPSWAT report found that insider breaches cost impacted firms $2.7m on average due to factors such as regulatory fines and diminished productivity This article has been indexed from www.infosecurity-magazine.com Read the original article: 61% of US Companies Hit by…

Read more →

North Korean hackers have been observed exploiting cyber threat intelligence platforms in a campaign targeting job seekers with malware-laced lures This article has been indexed from www.infosecurity-magazine.com Read the original article: North Korean Hackers Exploit Threat Intel Platforms For Phishing

Read more →

A newly identified hacking group named GhostRedirector has compromised 65 Windows servers using previously unknown tools This article has been indexed from www.infosecurity-magazine.com Read the original article: GhostRedirector Emerges as New China-Aligned Threat Actor

Read more →

Google Cloud’s Mandiant successfully disrupted an active ViewState deserialization attack affecting Sitecore deployments This article has been indexed from www.infosecurity-magazine.com Read the original article: CMS Provider Sitecore Patches Exploited Critical Zero Day

Read more →

JLR said it is investigating following claims by the actor “Scattered Lapsus$ Hunters” that it had stolen data from the firm and had issued an extortion demand This article has been indexed from www.infosecurity-magazine.com Read the original article: Scattered Spider-Linked…

Read more →

A new Cobalt study finds healthcare organizations among the slowest at resolving serious vulnerabilities This article has been indexed from www.infosecurity-magazine.com Read the original article: Healthcare Sector Takes 58 Days to Resolve Serious Vulnerabilities

Read more →

Hackers are using legitimate red team tool Hexstrike-AI to simplify and speed up vulnerability exploitation This article has been indexed from www.infosecurity-magazine.com Read the original article: Threat Actors Abuse Hexstrike-AI Tool to Accelerate Exploitation

Read more →

A malicious campaign using Ethereum smart contracts has been observed targeting developers via npm and GitHub This article has been indexed from www.infosecurity-magazine.com Read the original article: Malicious npm Packages Exploit Ethereum Smart Contracts

Read more →

The backdoor is a sophisticated VBA-based malware targeting Microsoft Outlook This article has been indexed from www.infosecurity-magazine.com Read the original article: Russian APT28 Expands Arsenal with ‘NotDoor’ Outlook Backdoor

Read more →