Category: www.infosecurity-magazine.com

A flaw in OneDrive File Picker has exposed millions to data overreach through excessive OAuth permissions This article has been indexed from www.infosecurity-magazine.com Read the original article: Microsoft OneDrive Flaw Exposes Users to Data Overreach Risks

Read more →

Adidas revealed that customer contact information, including names, emails and phone numbers were accessed by an unauthorized party This article has been indexed from www.infosecurity-magazine.com Read the original article: Adidas Customer Data Stolen in Third-Party Attack

Read more →

A Vietnam-nexus hacking group distributes infostealers and backdoors via social media ads promoting fake AI generator websites This article has been indexed from www.infosecurity-magazine.com Read the original article: Vietnam-Nexus Hackers Distribute Malware Via Fake AI Video Generator Websites

Read more →

A newly-discovered Russian group, Void Blizzard, has successfully compromised organizations in critical industries, Microsoft warned This article has been indexed from www.infosecurity-magazine.com Read the original article: New Russian State Hacking Group Hits Europe and North America

Read more →

A targeted cyber-attack on an MSP exploited flaws in remote management tools, resulting in ransomware deployment and data theft This article has been indexed from www.infosecurity-magazine.com Read the original article: DragonForce Ransomware Leveraged in MSP Attack Using RMM Tool

Read more →

A novel attack exploited machine learning models on PyPI, using zipped Pickle files to deliver infostealer malware This article has been indexed from www.infosecurity-magazine.com Read the original article: Malicious Machine Learning Model Attack Discovered on PyPI

Read more →

Former UK government minister Rory Stewart and NCSC Director of Operations Paul Chichester will explore the growing link between geopolitics and cybersecurity This article has been indexed from www.infosecurity-magazine.com Read the original article: #Infosec2025: Rory Stewart and Paul Chichester to…

Read more →

The audit of the NVD will be conducted by the US Department of Commerce’s Office of Inspector General This article has been indexed from www.infosecurity-magazine.com Read the original article: US Government Launches Audit of NIST’s National Vulnerability Database

Read more →

Cisco Talos reported that a Chinese group has deployed web shells and malware in local government networks post-exploitation This article has been indexed from www.infosecurity-magazine.com Read the original article: Chinese Hackers Exploit Cityworks Flaw to Target US Local Governments

Read more →

A joint advisory from the US, UK, Australia and others highlights the importance of SIEM/SOAR platforms and overcoming implementation challenges This article has been indexed from www.infosecurity-magazine.com Read the original article: Governments Urge Organizations to Prioritize SIEM/SOAR Adoption

Read more →

The US National Institute of Standards and Technology (NIST) published a white paper introducing a new metric called Likely Exploited Vulnerabilities (LEV) This article has been indexed from www.infosecurity-magazine.com Read the original article: NIST Introduces New Metric to Measure Likelihood…

Read more →

A new Europol-led operation has dismantled infrastructure for key initial access malware used to launch ransomware attacks This article has been indexed from www.infosecurity-magazine.com Read the original article: Law Enforcement Busts Initial Access Malware Used to Launch Ransomware

Read more →

Operation Raptor also resulted in the seizure of $184m and a record amount of illegal drugs, firearms and drug trafficking proceeds This article has been indexed from www.infosecurity-magazine.com Read the original article: Global Dark Web Sting Sees 270 Arrested

Read more →

Sophos has observed DragonForce attacking rival ransomware operators including RansomHub as it seeks to expand its reach in the cybercrime marketplace This article has been indexed from www.infosecurity-magazine.com Read the original article: DragonForce Engages in “Turf War” for Ransomware Dominance

Read more →

Malware campaign exploiting TikTok’s popularity has been observed using social engineering to spread Vidar and StealC This article has been indexed from www.infosecurity-magazine.com Read the original article: AI-Generated TikTok Videos Used to Distribute Infostealer Malware

Read more →

Kettering Health is facing significant disruptions from a cyber-attack that impacted patient care This article has been indexed from www.infosecurity-magazine.com Read the original article: Kettering Health Cyber-Attack Disrupts Services

Read more →

The US cryptocurrency exchange claimed that the breach occurred in December 2024 This article has been indexed from www.infosecurity-magazine.com Read the original article: Coinbase Breach Affected Almost 70,000 Customers

Read more →

The unpatched vulnerabilities, with a CVSS score of 8.6 to 10.0, can lead to remote code execution via authentication bypass This article has been indexed from www.infosecurity-magazine.com Read the original article: Critical Zero-Days Found in Versa Networks SD-WAN/SASE Platform

Read more →

West Lothian Council confirmed that ransomware attackers have stolen personal and sensitive information held on its education network This article has been indexed from www.infosecurity-magazine.com Read the original article: Sensitive Personal Data Stolen in West Lothian Ransomware Attack

Read more →

Law enforcers worldwide have teamed up with Microsoft to disrupt the infrastructure behind Lumma Stealer This article has been indexed from www.infosecurity-magazine.com Read the original article: Global Law Enforcers and Microsoft Seize 2300+ Lumma Stealer Domains

Read more →