Category: www.infosecurity-magazine.com

Two Woffice theme vulnerabilities have been identified that allow attackers to gain unauthorized access and control of unpatched websites This article has been indexed from www.infosecurity-magazine.com Read the original article: Security Flaws in WordPress Woffice Theme Prompts Urgent Update

Read more →

Cyber-attacks involving Remcos RAT surged in Q3 2024, enabling attackers to control victim machines remotely, steal data and carry out espionage This article has been indexed from www.infosecurity-magazine.com Read the original article: Remcos RAT Malware Evolves with New Techniques

Read more →

Russian-made spyware BoneSpy and PlainGnome target former Soviet states, while public security bureaus in mainland China use Chinese surveillance tool EagleMsgSpy This article has been indexed from www.infosecurity-magazine.com Read the original article: Lookout Discovers New Spyware Deployed by Russia and…

Read more →

An insurance employee has been handed a suspended sentence after illegally accessing personal information This article has been indexed from www.infosecurity-magazine.com Read the original article: Insurance Worker Sentenced After Illegally Accessing Claimants’ Data

Read more →

HP Wolf reveals that 79% of IT security decision makers are lacking in crucial hardware and firmware expertise This article has been indexed from www.infosecurity-magazine.com Read the original article: Three-Quarters of Security Leaders Admit Gaps in Hardware Knowledge

Read more →

Microsoft detailed how Russian espionage group Secret Blizzard is leveraging infrastructure of other threat actors to target the Ukrainian military with custom malware This article has been indexed from www.infosecurity-magazine.com Read the original article: Secret Blizzard Targets Ukrainian Military with…

Read more →

Fraudsters in UAE posed as Dubai Police, targeting citizens with fake fines via calls, emails and SMS This article has been indexed from www.infosecurity-magazine.com Read the original article: Sophisticated Scam Targets UAE Residents with Fake Police Fines

Read more →

Krispy Kreme said the incident is likely to materially affect operations and short-term financial performance This article has been indexed from www.infosecurity-magazine.com Read the original article: Cyber Incident Disrupting Krispy Kreme Online Orders

Read more →

The Korean Financial Security Institute (K-FSI) disrupted a fraudulent network that made $6.3m by stealing money from fake personal trading platforms This article has been indexed from www.infosecurity-magazine.com Read the original article: South Korea Takes Down Fraudulent Online Trading Network…

Read more →

Microsoft MFA flaw exposed that allowed attackers to bypass security within an hour, putting 400m Office 365 accounts at risk This article has been indexed from www.infosecurity-magazine.com Read the original article: Microsoft Azure MFA Flaw Allowed Easy Access Bypass

Read more →

Operation PowerOFF has dismantled a network of 27 DDoS platforms, leading to the arrests of three administrators and the identification of over 300 users This article has been indexed from www.infosecurity-magazine.com Read the original article: Operation PowerOFF Takes Down DDoS…

Read more →

The US government has sanctioned Sichuan Silence and one of its employees for the mass compromise of firewalls which led to the deployment of malware and ransomware This article has been indexed from www.infosecurity-magazine.com Read the original article: US Sanctions…

Read more →

Microsoft has patched dozens of vulnerabilities in December, including one zero-day being exploited in the wild This article has been indexed from www.infosecurity-magazine.com Read the original article: Microsoft Fixes 71 CVEs Including Actively Exploited Zero-Day

Read more →

A zero-day vulnerability in Cleo file transfer software is being exploited in data theft attacks This article has been indexed from www.infosecurity-magazine.com Read the original article: Zero Day in Cleo File Transfer Software Exploited En Masse

Read more →

The multi-cloud data warehousing platform said it will completely phase out single factor authentication with passwords by November 2025 This article has been indexed from www.infosecurity-magazine.com Read the original article: Snowflake Pledges to Make MFA Mandatory

Read more →

Hackers exploited AWS misconfigurations, leaking 2TB of sensitive data, including customer information, credentials and proprietary source code This article has been indexed from www.infosecurity-magazine.com Read the original article: Hackers Exploit AWS Misconfigurations in Massive Data Breach

Read more →

The utilities sector saw a 42% surge in ransomware incidents over the past year, with groups like Play focusing on targets with IT and OT systems This article has been indexed from www.infosecurity-magazine.com Read the original article: Utility Companies Face…

Read more →

New AppLite Banker malware targets Android devices, employing advanced phishing techniques to steal credentials and data This article has been indexed from www.infosecurity-magazine.com Read the original article: New AppLite Malware Targets Banking Apps in Phishing Campaign

Read more →

Researchers found that the broad accessibility of streams of Scottish Parliamentary proceedings make them highly susceptible to deepfake attacks This article has been indexed from www.infosecurity-magazine.com Read the original article: Scottish Parliament TV at Risk of Deepfake Attacks

Read more →

Artivion has revealed in an SEC filing that it suffered a double-extortion ransomware attack This article has been indexed from www.infosecurity-magazine.com Read the original article: Heart Device Maker Artivion Suffers Ransomware Breach

Read more →