Tag: www.infosecurity-magazine.com

Microsoft said Chinese actor Storm-2603 is deploying Warlock ransomware following the exploitation of vulnerabilities in on-prem SharePoint systems This article has been indexed from www.infosecurity-magazine.com Read the original article: Ransomware Deployed in Compromised SharePoint Servers

Read more →

Investigators assessed that the criminal group’s stolen funds amount to €580,000 This article has been indexed from www.infosecurity-magazine.com Read the original article: UK and Romania Crack Down on ATM Fraudster Network

Read more →

Wiz believes the active campaign is part of a broader crypto-scam infrastructure, which uses a wide range of exploitation techniques This article has been indexed from www.infosecurity-magazine.com Read the original article: Active Campaign Exploits Cloud Flaws for Cryptomining

Read more →

A series of new cybersecurity regulations related to the water industry have been set out by New York state agencies This article has been indexed from www.infosecurity-magazine.com Read the original article: New York Proposes Cybersecurity Regulations for Water Systems

Read more →

The individual is accused of numerous illicit cybercrime and ransomware activities that have generated at least $7m in profit This article has been indexed from www.infosecurity-magazine.com Read the original article: Suspected XSS Forum Admin Arrested in Ukraine

Read more →

The French employment agency’s partner web portal has been accessed by a malicious actor This article has been indexed from www.infosecurity-magazine.com Read the original article: France: New Data Breach Could Affect 340,000 Jobseekers

Read more →

Cognizant handed over a password to the cybercriminal without asking any authentication questions This article has been indexed from www.infosecurity-magazine.com Read the original article: Clorox Sues IT Service Provider Cognizant for Causing 2023 Cyber-Attack

Read more →

A joint US government advisory highlighted novel initial access techniques deployed by Interlock, and urged businesses and critical infrastructure to stay vigilant This article has been indexed from www.infosecurity-magazine.com Read the original article: US Government Warns of Wide-Ranging Interlock Attacks

Read more →

NCC Group observed a 43% drop in ransomware attacks in Q2 2025, driven by law enforcement actions and internal conflicts in groups This article has been indexed from www.infosecurity-magazine.com Read the original article: Global Ransomware Attacks Plummet 43% in Q2…

Read more →

A new wave of phishing attacks exploiting Microsoft 365 OAuth tools has been observed impersonating diplomats to steal access codes This article has been indexed from www.infosecurity-magazine.com Read the original article: Russian Threat Actors Target NGOs with New OAuth Phishing…

Read more →

A widespread RFQ scam exploited net payment terms to fraudulently obtain high-value devices This article has been indexed from www.infosecurity-magazine.com Read the original article: Widespread Net RFQ Scam Targets High-Value Goods

Read more →

Microsoft has observed three China-based threat actors, Linen Typhoon, Violet Typhoon and Storm-2603, exploiting the SharePoint vulnerabilities This article has been indexed from www.infosecurity-magazine.com Read the original article: SharePoint ‘ToolShell’ Vulnerabilities Exploited by Chinese Nation-State Hackers

Read more →

The UK government said a public consultation showed widespread support on a payment ban for public sector and CNI organizations This article has been indexed from www.infosecurity-magazine.com Read the original article: UK Confirms Ransomware Payment Ban for Public Sector and…

Read more →

Despite being a rebrand of several ransomware families, GLOBAL GROUP innovated with the use of an AI chatbot in the negotiation process This article has been indexed from www.infosecurity-magazine.com Read the original article: Ransomware Group Uses AI Chatbot to Intensify…

Read more →

ASIC said the financial services firm’s failings led to a data breach impacting nearly 10,000 clients This article has been indexed from www.infosecurity-magazine.com Read the original article: Australian Regulator Alleges Financial Firm Exposed Clients to Unacceptable Cyber Risks

Read more →

Abnormal AI found that 96% of security leaders have no plans to reduce the headcount in SOC teams as a result of AI adoption, instead focusing on reallocating roles This article has been indexed from www.infosecurity-magazine.com Read the original article:…

Read more →

New samples of DCHSpy, a spyware implant linked to Iranian APT group MuddyWater, were detected by Lookout one week after the start of the Israel-Iran conflict This article has been indexed from www.infosecurity-magazine.com Read the original article: Iranian Hackers Deploy…

Read more →

An attack on a US accounting firm delivered PureRAT via Ghost Crypt, involving social engineering and advanced obfuscation techniques This article has been indexed from www.infosecurity-magazine.com Read the original article: Accounting Firm Targeted by Malware Campaign Using New Crypter

Read more →

An investigation has revealed novel scams using tools like MaisonReceipts, creating realistic fake receipts to resell stolen or counterfeit good This article has been indexed from www.infosecurity-magazine.com Read the original article: Fake Receipt Generators Fuel Rise in Online Fraud

Read more →

CVE-2025-54309 could allow remote attackers to obtain admin access via HTTPS This article has been indexed from www.infosecurity-magazine.com Read the original article: New CrushFTP Critical Vulnerability Exploited in the Wild

Read more →

On-prem SharePoint customers have been told to assume compromise, with attackers observed to be exfiltrating data from victim servers across critical sectors This article has been indexed from www.infosecurity-magazine.com Read the original article: Microsoft: Attackers Actively Compromising On-Prem SharePoint Customers

Read more →

The US CISA has issued advisories for Industrial Control Systems vulnerabilities affecting multiple vendors including Johnson Controls, ABB, Hitachi Energy, and Schneider Electric This article has been indexed from www.infosecurity-magazine.com Read the original article: CISA Issues Advisories on Critical ICS…

Read more →

Russian military intelligence-linked hackers are using a new malware called “Authentic Antics” to secretly access Microsoft cloud email accounts, the UK’s NCSC reports This article has been indexed from www.infosecurity-magazine.com Read the original article: Russia Linked to New Malware Targeting…

Read more →

Ukraine’s CERT-UA has identified a new AI-powered malware, dubbed “LameHug,” which executes commands on compromised Windows systems in cyber-attacks, targeting the nation’s security and defense sector This article has been indexed from www.infosecurity-magazine.com Read the original article: New “LameHug” Malware…

Read more →

Comparitech found that healthcare ransomware attacks rose 4% in H1 2025, a significantly lower rate than the cross-sector average of 50% This article has been indexed from www.infosecurity-magazine.com Read the original article: Retail Becomes New Target as Healthcare Ransomware Attacks…

Read more →

A cryptomining botnet active since 2019 has incorporated likely AI-generated Lcryx ransomware into its operations This article has been indexed from www.infosecurity-magazine.com Read the original article: AI-Generated Lcryx Ransomware Discovered in Cryptomining Botnet

Read more →

A new malware campaign uses GitHub to deliver payloads via Amadey botnet, bypassing email distribution This article has been indexed from www.infosecurity-magazine.com Read the original article: Malware-as-a-Service Campaign Exploits GitHub to Deliver Payloads

Read more →

Cybercriminals are using AI cloaking tools to evade detection, disguising phishing and malware sites This article has been indexed from www.infosecurity-magazine.com Read the original article: AI Cloaking Tools Enable Harder-to-Detect Cyber-Attacks

Read more →

Microsoft has reported Scattered Spider continues to evolve tactics to compromise both on-premises infrastructure and cloud environments This article has been indexed from www.infosecurity-magazine.com Read the original article: Microsoft Exposes Scattered Spider’s Latest Tactics

Read more →

Harmonic Security raises the alarm as one in 12 British and American employees uses Chinese GenAI tools This article has been indexed from www.infosecurity-magazine.com Read the original article: One in 12 US/UK Employees Uses Chinese GenAI Tools

Read more →

A Europol coordinated operation has taken down key infrastructure used by pro-Russian hacktivist group NoName057(16), as well as a number of arrests This article has been indexed from www.infosecurity-magazine.com Read the original article: Pro-Russian Cybercrime Network Demolished in Operation Eastwood

Read more →

A new malware campaign targeting Hong Kong finance has been identified, featuring SquidLoader to deploy Cobalt Strike Beacon This article has been indexed from www.infosecurity-magazine.com Read the original article: SquidLoader Malware Campaign Targets Hong Kong Financial Sector

Read more →

A Veeam survey found that 96% of financial services organizations believe their current levels of data resilience falls short of DORA compliance, citing major challenges This article has been indexed from www.infosecurity-magazine.com Read the original article: Most European Financial Firms…

Read more →

There were 1732 publicly reported US data breaches in the first half of 2025, according to the latest ITRC report This article has been indexed from www.infosecurity-magazine.com Read the original article: US Data Breaches Head for Another Record Year After…

Read more →

A data breach at Episource has exposed the personal information of 5.4 million individuals after attackers accessed systems for 10 days This article has been indexed from www.infosecurity-magazine.com Read the original article: Over 5.4 Million Affected in Healthcare Data Breach…

Read more →

BlackFog found that publicly disclosed ransomware attacks on retail grew significantly in Q2 compared to Q1, with UK firms heavily targeted This article has been indexed from www.infosecurity-magazine.com Read the original article: Retail Ransomware Attacks Jump 58% Globally in Q2…

Read more →

CyCognito research finds that a third of education sector APIs, web apps and cloud assets are exposed to attack This article has been indexed from www.infosecurity-magazine.com Read the original article: Education Sector is Most Exposed to Remote Attacks

Read more →

Cloudflare highlighted a huge rise in hyper-volumetric DDoS attacks in Q2 2025, with attackers seeking to overwhelm defenses This article has been indexed from www.infosecurity-magazine.com Read the original article: Cloudflare Blocks Record-Breaking 7.3 Tbps DDoS Attack

Read more →

The Co-op is teaming up with The Hacking Games to inspire pathways into ethical cybersecurity careers This article has been indexed from www.infosecurity-magazine.com Read the original article: Co-op Aims to Divert More Young Hackers into Cyber Careers

Read more →

MITRE has introduced AADAPT framework, a new cybersecurity framework aimed at mitigating risks in digital financial systems like cryptocurrency This article has been indexed from www.infosecurity-magazine.com Read the original article: MITRE Launches New Framework to Tackle Crypto Risks

Read more →

A new phishing campaign uses SVG files for JavaScript redirects, bypassing traditional detection methods This article has been indexed from www.infosecurity-magazine.com Read the original article: Threat Actors Exploit SVG Files in Stealthy JavaScript Redirects

Read more →

The latest report from AppOmni has revealed 91% confidence in SaaS security while 75% of organizations have faced incidents This article has been indexed from www.infosecurity-magazine.com Read the original article: SaaS Security Adoption Grows Amid Rising Breach Rates

Read more →

Socket has identified a new malware loader called XORIndex incorporated into malicious packages published to the npm registry, with over 9000 downloads so far This article has been indexed from www.infosecurity-magazine.com Read the original article: North Korean Actors Expand Contagious…

Read more →

Darknet giant Abacus Market has gone offline due to a likely exit scam, according to TRM Labs This article has been indexed from www.infosecurity-magazine.com Read the original article: Abacus Market Shutters After Exit Scam, Say Experts

Read more →

The NCSC’s new Vulnerability Research Institute will help it develop outreach with the external cybersecurity community This article has been indexed from www.infosecurity-magazine.com Read the original article: NCSC Launches Vulnerability Research Institute to Boost UK Resilience

Read more →

Grok-4 was jailbroken 48 hours post-launch using Echo Chamber and Crescendo attack methods This article has been indexed from www.infosecurity-magazine.com Read the original article: Grok-4 Jailbroken Two Days After Release Using Combined Attack

Read more →

CTM360 has identified over 17,000 fake news sites mimicking reputable brands like CNN, BBC and CNBC, spreading investment fraud across 50 countries This article has been indexed from www.infosecurity-magazine.com Read the original article: Fake News Sites Mimicking CNN, BBC and…

Read more →

A vulnerability in Kigen eUICC cards has exposed billions of IoT devices via flawed eSIM profile management This article has been indexed from www.infosecurity-magazine.com Read the original article: IoT Devices at Risk Due to eSIM Flaw in Kigen eUICC Cards

Read more →

The NCSC has warned that there are still a significant number of organizations using Windows 10, which will soon be unsupported with security updates This article has been indexed from www.infosecurity-magazine.com Read the original article: NCSC Urges Enterprises to Upgrade…

Read more →

Interlock ransomware continues to develop custom tooling and a new RAT has been detected by researchers This article has been indexed from www.infosecurity-magazine.com Read the original article: Interlock Ransomware Unleashes New RAT in Widespread Campaign

Read more →

Louis Vuitton’s UK business has notified customers of a personal data breach This article has been indexed from www.infosecurity-magazine.com Read the original article: Louis Vuitton UK Latest Retailer Hit by Data Breach

Read more →

Operation Chakra-V scores success as a fraud syndicate is busted following the raid of a scam call center operating in Noida, Uttar Pradesh This article has been indexed from www.infosecurity-magazine.com Read the original article: Indian Police Raid Tech Support Scam…

Read more →

The new CISA Associate designation recognizes ISACA members who have passed the CISA exam, but do not yet have the required experience This article has been indexed from www.infosecurity-magazine.com Read the original article: ISACA Addresses Experience Gap with CISA Associate…

Read more →

The man was handed a suspended prison sentence for offenses relating to the hack of Network Rail public Wi-Fi, exposing customers to offensive messaging This article has been indexed from www.infosecurity-magazine.com Read the original article: British Man Sentenced for Network…

Read more →

DoNot APT, also known as APT-C-35, traditionally operates exclusively in South Asia This article has been indexed from www.infosecurity-magazine.com Read the original article: Indian Cyber Espionage Group Targets Italian Government

Read more →

British bank TSB warns of rise of “finfluencers” who dispense dubious financial advice online This article has been indexed from www.infosecurity-magazine.com Read the original article: Over Half of “Finfluencer” Victims Have Lost Money, Says TSB

Read more →

The Intelligence and Security Committee has warned of Iran’s “aggressive” and “extensive” cyber capabilities This article has been indexed from www.infosecurity-magazine.com Read the original article: MPs Warn of “Significant” Iranian Cyber-Threat to UK

Read more →

Forescout found that most LLMs are unreliable in vulnerability research and exploit tasks, with threat actors still skeptical about using tools for these purposes This article has been indexed from www.infosecurity-magazine.com Read the original article: LLMs Fall Short in Vulnerability…

Read more →

The NCA has arrested four individuals on suspicion of involvement in the attacks on M&S, Co-op and Harrods This article has been indexed from www.infosecurity-magazine.com Read the original article: Four Arrested in Connection with April UK Retail Attacks

Read more →

A new probe, opened two months after a €530m fine to TikTok, will investigate the tech giant’s storage of EU users’ data in China This article has been indexed from www.infosecurity-magazine.com Read the original article: TikTok’s Handling of EU User…

Read more →

Personal data of Nippon Steel Solutions’ customers, partners and employees may be compromised This article has been indexed from www.infosecurity-magazine.com Read the original article: Nippon Steel IT Subsidiary Hit by “Zero-Day Attack,” Causing Data Breach

Read more →

The UK ICO has welcomed a ruling in its favor in a long-running battle to issue a fine to TikTok This article has been indexed from www.infosecurity-magazine.com Read the original article: Tribunal Ruling Brings ICO’s £12.7m TikTok Fine Closer

Read more →

Qantas says nearly six million passengers were impacted by a recent data breach This article has been indexed from www.infosecurity-magazine.com Read the original article: Qantas Confirms 5.7 Million Customers Hit by Data Breach

Read more →

Nova Scotia Power revealed that a ransomware attack has prevented meters from sending energy usage data to its systems, impacting billing This article has been indexed from www.infosecurity-magazine.com Read the original article: Ransomware Attack Stops Nova Scotia Power Meter Readings

Read more →

CVE-2025-47981 has the “unfortunate hallmarks of becoming a significant problem,” said WatchTowr’s CEO This article has been indexed from www.infosecurity-magazine.com Read the original article: Microsoft Patch Tuesday: One Zero-Day and A Potential ‘Wormable’ Flaw

Read more →

The US allege that the hacker stole critical COVID-19 research from universities at the behest of the Chinese government This article has been indexed from www.infosecurity-magazine.com Read the original article: Chinese State-Sponsored Hacker Charged Over COVID-19 Research Theft

Read more →

The addition of a backdoor to the Atomic macOS Stealer marks a pivotal shift in one of the most active macOS threats, said Moonlock This article has been indexed from www.infosecurity-magazine.com Read the original article: MacOS Infostealer AMOS Evolves with…

Read more →

M&S chairman Archie Norman provided more insights into the April ransomware attack, but did not confirm whether a payment was made to the attackers This article has been indexed from www.infosecurity-magazine.com Read the original article: M&S Chair Details Ransomware Attack,…

Read more →

Researchers from Koi Security have detected 18 malicious Chrome and Edge extensions masquerading as benign productivity and entertainment tools This article has been indexed from www.infosecurity-magazine.com Read the original article: Researchers Reveal 18 Malicious Chrome and Edge Extensions Disguised as…

Read more →

Check Point discovered around 500 suspected Scattered Spider phishing domains, suggesting the group is preparing to expand its targeting This article has been indexed from www.infosecurity-magazine.com Read the original article: Over 500 Scattered Spider Phishing Domains Poised to Target Multiple…

Read more →

Sonatype’s latest Open Source Malware Index report has identified more than 16,000 malicious open source packages, representing a 188% annual increase This article has been indexed from www.infosecurity-magazine.com Read the original article: Malicious Open Source Packages Surge 188% Annually

Read more →

The company behind AV/EDR evasion tool Shellter has confirmed the product is being used by threat actors This article has been indexed from www.infosecurity-magazine.com Read the original article: Red Team Tool Developer Shellter Admits ‘Misuse’ by Adversaries

Read more →

China’s Hikvision vows legal battle after Canada bans its operations, citing national security concerns This article has been indexed from www.infosecurity-magazine.com Read the original article: Chinese Video Surveillance Vendor Hikvision to Fight Canadian Ban

Read more →

Trend Micro has observed the Bert ransomware group in operation since April 2025, with confirmed victims in sectors including healthcare, technology and event services This article has been indexed from www.infosecurity-magazine.com Read the original article: New Bert Ransomware Group Strikes…

Read more →

Iran-aligned BladedFeline group has been observed targeting the government of Iraq and KRG with advanced malware This article has been indexed from www.infosecurity-magazine.com Read the original article: Iran-Aligned Hacking Group Targets Middle Eastern Governments

Read more →

Vulnerability research company WatchTowr published a detection analysis for the Citrix Blled 2 flaw This article has been indexed from www.infosecurity-magazine.com Read the original article: Researchers Share CitrixBleed 2 Detection Analysis After Initial Hold

Read more →

Cybersecurity researchers have observed a 156% increase in credential theft incidents between 2024 and Q1 2025 This article has been indexed from www.infosecurity-magazine.com Read the original article: Hackers Target Employee Credentials Amid Spike in ID Attacks

Read more →

Qantas said it is currently validating the contact, and has informed law enforcement This article has been indexed from www.infosecurity-magazine.com Read the original article: Qantas Contacted by Potential Cybercriminal Following Data Breach

Read more →

Check Point has discovered over 1000 suspicious domains registered in the run-up to Amazon Prime Day This article has been indexed from www.infosecurity-magazine.com Read the original article: Hundreds of Malicious Domains Registered Ahead of Prime Day

Read more →

Distributor Ingram Micro says it has found ransomware on its internal systems This article has been indexed from www.infosecurity-magazine.com Read the original article: IT Giant Ingram Micro Reveals Ransomware Breach

Read more →

Some admins of Hunters International are now part of the encryption-less cyber extortion group World Leaks This article has been indexed from www.infosecurity-magazine.com Read the original article: Ransomware: Hunters International Is Not Shutting Down, It’s Rebranding

Read more →

Taiwan warned that popular Chinese-owned apps, including TikTok and Weibo, are harvesting personal data and sending it back to servers in China This article has been indexed from www.infosecurity-magazine.com Read the original article: Taiwan Flags Chinese Apps Over Data Security…

Read more →

The EU’s Quantum Strategy includes plans to develop secure quantum communication infrastructure across the region This article has been indexed from www.infosecurity-magazine.com Read the original article: EU Launches Plan to Implement Quantum-Secure Infrastructure

Read more →

A severe flaw identified in the Forminator WordPress plugin allows arbitrary file deletion and potential site takeover This article has been indexed from www.infosecurity-magazine.com Read the original article: WordPress Plugin Flaw Exposes 600,000 Sites to File Deletion

Read more →

A critical Azure Machine Learning flaw allows privilege escalation, risking subscription compromise This article has been indexed from www.infosecurity-magazine.com Read the original article: Privilege Escalation Flaw Found in Azure Machine Learning Service

Read more →

The CVE Board has launched a Consumer Working Group and a Researcher Working Group, allowing new stakeholders to shape the future of the CVE Program This article has been indexed from www.infosecurity-magazine.com Read the original article: CVE Program Launches Two…

Read more →

ReliaQuest warns that initial access vulnerability exploitation is driving successful ransomware attacks This article has been indexed from www.infosecurity-magazine.com Read the original article: Automation and Vulnerability Exploitation Drive Mass Ransomware Breaches

Read more →

SentinelLabs observed North Korean actors deploying novel TTPs to target crypto firms, including a mix of programming languages and signal-based persistence This article has been indexed from www.infosecurity-magazine.com Read the original article: North Korean Hackers Target Crypto Firms with Novel…

Read more →

Two elevation of privilege vulnerabilities have been discovered on the popular Sudo utility, affecting 30-50 million endpoints in the US alone This article has been indexed from www.infosecurity-magazine.com Read the original article: Linux Users Urged to Patch Critical Sudo CVE

Read more →

New Android malware Qwizzserial has infected 100,000 devices, primarily in Uzbekistan, stealing SMS data via Telegram distribution This article has been indexed from www.infosecurity-magazine.com Read the original article: Android SMS Stealer Infects 100,000 Devices in Uzbekistan

Read more →

A third of AI-generated login URLs lead to incorrect or dangerous domains, according to Netcraft This article has been indexed from www.infosecurity-magazine.com Read the original article: AI Models Mislead Users on Login URLs

Read more →

The French cybersecurity agency identified Houken, a new Chinese intrusion campaign targeting various industries in France This article has been indexed from www.infosecurity-magazine.com Read the original article: Chinese Hackers Target France in Ivanti Zero-Day Exploit Campaign

Read more →

The Treasury said that Aeza Group has provided infrastructure services for notorious infostealer and ransomware operators This article has been indexed from www.infosecurity-magazine.com Read the original article: US Treasury Sanctions Russian Bulletproof Hosting Service Aeza Group

Read more →

Benefits admin specialist Kelly Benefits has revealed a breach impacting over 500,000 individuals across 45 client organizations This article has been indexed from www.infosecurity-magazine.com Read the original article: Dozens of Corporates Caught in Kelly Benefits Data Breach

Read more →

Qantas admits that a “significant” volume of customer data may have been stolen from a contact center This article has been indexed from www.infosecurity-magazine.com Read the original article: Qantas Reveals “Significant” Contact Center Data Breach

Read more →

Cloudflare now blocks AI web crawlers by default, requiring permission from site owners for access This article has been indexed from www.infosecurity-magazine.com Read the original article: Cloudflare Now Blocks AI Web Scraping by Default

Read more →

Google has patched a critical type confusion vulnerability in Chrome, the fourth zero-day fix in 2025 This article has been indexed from www.infosecurity-magazine.com Read the original article: Google Issues Emergency Patch for Fourth Chrome Zero-Day of 2025

Read more →

Proofpoint has identified similarities between the tactics of a pro-Russian cyber espionage group and a cybercriminal gang This article has been indexed from www.infosecurity-magazine.com Read the original article: New Report Uncovers Major Overlaps in Cybercrime and State-Sponsored Espionage

Read more →

The ICC said the new incident was the second “of its type” it has faced in recent years, relating to an espionage attack in 2023 This article has been indexed from www.infosecurity-magazine.com Read the original article: International Criminal Court Hit…

Read more →

CertiK found $2.47bn in crypto was stolen in H1 2025, largely due to two major security incidents – ByBit and Cetus This article has been indexed from www.infosecurity-magazine.com Read the original article: Crypto Hack Losses in First Half of 2025…

Read more →