Tag: www.infosecurity-magazine.com

The threat actor Sarcoma has been held responsible for a ransomware attack on a Swiss health foundation This article has been indexed from www.infosecurity-magazine.com Read the original article: Ransomware Strike on Swiss Health Foundation Exposes Government Data

Read more →

Interpol warns that scam centers are expanding beyond Southeast Asia This article has been indexed from www.infosecurity-magazine.com Read the original article: Scam Centers Expand Global Footprint with Trafficked Victims

Read more →

Both the US authorities and Microsoft have taken action to disrupt North Korean IT worker schemes This article has been indexed from www.infosecurity-magazine.com Read the original article: US DoJ and Microsoft Target North Korean IT Workers

Read more →

Ahold Delhaize has confirmed a cyber-attack exposed personal data of over 2.2 million individuals in the US This article has been indexed from www.infosecurity-magazine.com Read the original article: Food Retailer Ahold Delhaize Discloses Data Breach Impacting 2.2 Million

Read more →

US Defense Industrial Base (DIB) companies are “at increased risk” of cyber-attacks from Iran-aligned hacking groups This article has been indexed from www.infosecurity-magazine.com Read the original article: Iranian Cyber Threats Persist Despite Ceasefire, US Intelligence Warns

Read more →

A €460m cryptocurrency fraud scheme has been disrupted by authorities, leading to five arrests in Spain This article has been indexed from www.infosecurity-magazine.com Read the original article: International Taskforce Dismantles €460m Crypto Fraud Network

Read more →

The ban on Hikvision products follows a national security review under the Investment Canada Act This article has been indexed from www.infosecurity-magazine.com Read the original article: Canada Bans Chinese CCTV Vendor Hikvision Over National Security Concerns

Read more →

The FBI alert comes amid several reported cyber incidents impacting North America-based airlines, including Hawaiian Airlines This article has been indexed from www.infosecurity-magazine.com Read the original article: Scattered Spider Actively Targeting Airlines, FBI Warns

Read more →

An IT worker has been jailed for launching a cyber-attack after he was suspended at work This article has been indexed from www.infosecurity-magazine.com Read the original article: IT Worker Jailed After Revenge Attack on Employer

Read more →

Glasgow City Council is alerting residents to a parking scam which could be linked to a recent cyber-incident This article has been indexed from www.infosecurity-magazine.com Read the original article: Glasgow City Council Warns of Parking Fine Scam

Read more →

The US airline said that incident was affecting some of its IT systems, but flights are continuing to operate safely and as scheduled This article has been indexed from www.infosecurity-magazine.com Read the original article: Hawaiian Airlines Hit by Cybersecurity Incident

Read more →

This new CitrixBleed lookalike flaw is being exploited in the wild to gain initial access, according to ReliaQuest This article has been indexed from www.infosecurity-magazine.com Read the original article: CitrixBleed 2 Vulnerability Exploited, Recalling Earlier CitrixBleed Fallout

Read more →

GreyNoise observed a surge in scanning activity targeting MOVEit Transfer systems since May 27, indicating the software could face renewed attacks This article has been indexed from www.infosecurity-magazine.com Read the original article: MOVEit Transfer Systems Face Fresh Attack Risk Following…

Read more →

Misconfigured AI-linked MCP servers are exposing users to data breaches and remote code execution threats This article has been indexed from www.infosecurity-magazine.com Read the original article: Hundreds of MCP Servers at Risk of RCE and Data Leaks

Read more →

A patient’s death was linked to the 2024 ransomware attack on Synnovis, which disrupted NHS facilities This article has been indexed from www.infosecurity-magazine.com Read the original article: Patient Death Linked to NHS Cyber-Attack

Read more →

The ClickFix social engineering technique has become the second most common attack vector, behind only phishing, according to ESET research This article has been indexed from www.infosecurity-magazine.com Read the original article: ClickFix Attacks Surge 517% in 2025

Read more →

The hackers are also suspected of being behind several cyber-attacks, including against the French Football Federation This article has been indexed from www.infosecurity-magazine.com Read the original article: French Authorities Arrest Four with Suspected Ties to Notorious BreachForums

Read more →

Interpol claims cybercrime has risen sharply in Africa with cyber-offences accounting for a “medium-to-high” share of all crime This article has been indexed from www.infosecurity-magazine.com Read the original article: Interpol Warns of Rapid Rise in Cybercrime on African Continent

Read more →

Glasgow City Council has warned of service disruption and potential data loss after a security incident This article has been indexed from www.infosecurity-magazine.com Read the original article: Supply Chain Incident Imperils Glasgow Council Services and Data

Read more →

The threat actor used a combination of open-source and publicly available tools to establish their attack framework This article has been indexed from www.infosecurity-magazine.com Read the original article: Hackers Use Open-Source Offensive Cyber Tools to Attack Financial Businesses in Africa

Read more →

NSA and CISA are urging developers to adopt memory safe languages (MSLs) to combat vulnerabilities in software This article has been indexed from www.infosecurity-magazine.com Read the original article: NSA and CISA Urge Adoption of Memory Safe Languages for Safety

Read more →

Semperis estimates that at least 15,000 enterprise SaaS applications are still vulnerable to a flaw discovered in 2023 This article has been indexed from www.infosecurity-magazine.com Read the original article: Microsoft nOAuth Flaw Still Exposes SaaS Apps Two Years After Discovery

Read more →

Two SAP GUI vulnerabilities have been identified exposing sensitive data due to weak encryption in input history features This article has been indexed from www.infosecurity-magazine.com Read the original article: SAP GUI Input History Found Vulnerable to Weak Encryption

Read more →

NCC Group found that ransomware attacks fell for the third consecutive month in May 2025, despite a surge in incidents impacting retailers This article has been indexed from www.infosecurity-magazine.com Read the original article: Ransomware Attacks Dip in May Despite Persistent…

Read more →

UK ransomware victims are paying extortionists twice as much as a year ago This article has been indexed from www.infosecurity-magazine.com Read the original article: UK Ransom Payments Double as Victims Fall Behind Global Peers

Read more →

The Common Good Cyber Fund will receive funding from the UK and Canadian governments, with further pledges from G7 nations This article has been indexed from www.infosecurity-magazine.com Read the original article: Common Good Cyber Fund Launched to Support Non-Profit Security…

Read more →

Okta says over 46% of new customer registrations are bot-driven fraud attempts This article has been indexed from www.infosecurity-magazine.com Read the original article: Half of Customer Signups Are Now Fraudulent

Read more →

A representative of NCSC-FI shared some lessons learned from a 2024 data breach affecting the Finnish capital This article has been indexed from www.infosecurity-magazine.com Read the original article: Lessons from Helsinki: NCSC-FI’s Role in Mitigating a Major Data Breach

Read more →

A long-running malware campaign targeting WordPress via a rogue plugin has been observed skimming data, stealing credentials and user profiling This article has been indexed from www.infosecurity-magazine.com Read the original article: Malware Campaign Uses Rogue WordPress Plugin to Skim Credit…

Read more →

Data breach at McLaren Health Care affecting over 743,000 individuals has been linked to a ransomware attack This article has been indexed from www.infosecurity-magazine.com Read the original article: Mclaren Health Care Data Breach Impacts Over 743,000 Patients

Read more →

Cobalt found that many security professionals believe a “strategic pause” in genAI deployment is necessary to recalibrate defenses This article has been indexed from www.infosecurity-magazine.com Read the original article: Half of Security Pros Want GenAI Deployment Pause

Read more →

New ITRC data reveals identity crimes are down but impersonation scams now account for a third of all scams This article has been indexed from www.infosecurity-magazine.com Read the original article: Reported Impersonation Scams Surge 148% as AI Takes Hold

Read more →

The NCSC says its Cyber Advisor program is not growing fast enough This article has been indexed from www.infosecurity-magazine.com Read the original article: NCSC Urges Experts to Join Cyber Advisor Program

Read more →

Draugnet is a new anonymous threat reporting platform built for the MISP ecosystem This article has been indexed from www.infosecurity-magazine.com Read the original article: Cyber Intel Pros and Hobbyists Can Now Report Threats Anonymously

Read more →

A cyber-attack by pro-Iranian group Cyber Fattah has leaked personal information from the Saudi Games online This article has been indexed from www.infosecurity-magazine.com Read the original article: Cyber Fattah Leaks Data from Saudi Games in Alleged Iranian Operation

Read more →

A cyber-attack on CoinMarketCap exposed users to a fake Web3 wallet prompt, draining $43,266 from wallets This article has been indexed from www.infosecurity-magazine.com Read the original article: Fake Web3 Wallet Prompt Steals $43,000 from CoinMarketCap Users

Read more →

The DHS warned of a heightened risk of cyber and physical attacks on US targets by Iran in retaliation for strikes on Iranian nuclear facilities over the weekend This article has been indexed from www.infosecurity-magazine.com Read the original article: US…

Read more →

The UK government’s Cyber Essentials scheme hits 10,000 certifications for the first time in a quarter but challenges persist This article has been indexed from www.infosecurity-magazine.com Read the original article: Cyber Essentials Breaks Quarterly Record for Certifications

Read more →

SecurityScorecard has discovered a covert cyber-espionage botnet dubbed “LapDogs” linked to China This article has been indexed from www.infosecurity-magazine.com Read the original article: Chinese “LapDogs” ORB Network Targets US and Asia

Read more →

The UK’s Cyber Monitoring Centre (CMC) assessed the incident as a Category 2 systemic event, based on the significant economic impact This article has been indexed from www.infosecurity-magazine.com Read the original article: M&S and Co-op Hacks Classified as Single Cyber…

Read more →

Oxford City Council revealed that attackers accessed data of individuals who worked on Council-administered elections between 2001 and 2022 This article has been indexed from www.infosecurity-magazine.com Read the original article: Personal Data of Oxford City Council Officers Exposed

Read more →

Around half of the world’s top 100 websites have already integrated passkey support This article has been indexed from www.infosecurity-magazine.com Read the original article: Meta To Introduce Full Passkey Support for Facebook on Mobiles

Read more →

Bridewell’s analysis of advertised UK cybersecurity roles revealed that the public sector offers one the lowest average salaries across all industries This article has been indexed from www.infosecurity-magazine.com Read the original article: UK Gov Cybersecurity Jobs Average Salary is Under…

Read more →

A prominent expert on Russian information operations was targeted by a sophisticated spear phishing attack likely coming from Russian hackers This article has been indexed from www.infosecurity-magazine.com Read the original article: Russia Expert Falls Prey to Elite Hackers Disguised as…

Read more →

Banana Squad exploited GitHub to distribute malicious Python code disguised as legitimate tools This article has been indexed from www.infosecurity-magazine.com Read the original article: Banana Squad’s Stealthy GitHub Malware Campaign Targets Devs

Read more →

Doughnut maker Krispy Kreme has revealed that sensitive financial and personal data of over 160,000 individuals has been impacted following a November 2024 cyber incident This article has been indexed from www.infosecurity-magazine.com Read the original article: Krispy Kreme Data Breach…

Read more →

Python RAT PylangGhost, linked to Famous Chollima, targeted crypto professionals via fake job sites This article has been indexed from www.infosecurity-magazine.com Read the original article: North Korean Hackers Deploy Python-Based Trojan Targeting Crypto

Read more →

Banking giant UBS revealed it had suffered a data breach following a cyber-attack on procurement service provider Chain IQ This article has been indexed from www.infosecurity-magazine.com Read the original article: UBS Employee Data Reportedly Exposed in Third Party Attack

Read more →

Cato Networks researchers demonstrated an attack leveraging Atlassian’s AI agent-enabling server This article has been indexed from www.infosecurity-magazine.com Read the original article: Researchers Warn of ‘Living off AI’ Attacks After PoC Exploits Atlassian’s AI Agent Protocol

Read more →

An alleged former member of the infamous Ryuk ransomware group has been extradited to the US This article has been indexed from www.infosecurity-magazine.com Read the original article: Alleged Ryuk Initial Access Broker Extradited to the US

Read more →

Pro-Israel Predatory Sparrow Group steals $90m in crypto from Iranian exchange Nobitex This article has been indexed from www.infosecurity-magazine.com Read the original article: Israeli Hacktivists Steal and Burn $90m+ from Iranian Crypo Biz

Read more →

Two critical Linux flaws allow unprivileged users to gain root access, affecting major distributions This article has been indexed from www.infosecurity-magazine.com Read the original article: Critical Linux Flaws Discovered Allowing Root Access Exploits

Read more →

Barracuda observed a big spike in spam emails generated using AI tools, making up the majority detected in April 2025 This article has been indexed from www.infosecurity-magazine.com Read the original article: AI Now Generates Majority of Spam and Malicious Emails

Read more →

Upgraded GodFather banking malware now uses on-device virtualization to hijack apps, enabling real-time fraud This article has been indexed from www.infosecurity-magazine.com Read the original article: GodFather Malware Upgraded to Hijack Legitimate Mobile Apps

Read more →

ClickFix techniques are enabling threat actors to bypass defenses using tools like MSHTA, says ReliaQuest This article has been indexed from www.infosecurity-magazine.com Read the original article: ClickFix Helps Infostealers Use MHSTA for Defense Evasion

Read more →

The new Cyber Growth Action Plan aims to support the UK’s cyber industry, including the development of innovative new technologies and startups This article has been indexed from www.infosecurity-magazine.com Read the original article: UK Government Publishes Plan to Boost Cyber…

Read more →

The group positions itself “not just as a ransomware group, but as a full-service cybercrime platform”, according to Cybereason This article has been indexed from www.infosecurity-magazine.com Read the original article: Ransomware Group Qilin Offers Legal Counsel to Affiliates

Read more →

Payment processor Paddle has agreed to settle with the FTC over allegations related to tech support scams This article has been indexed from www.infosecurity-magazine.com Read the original article: Paddle Pays $5m to Settle Tech Support Scam Allegations

Read more →

New SEO poisoning attacks identified, using Hacklink to hijack search rankings and inject malicious links into sites This article has been indexed from www.infosecurity-magazine.com Read the original article: Hacklink Marketplace Fuels Surge in Covert SEO Poisoning Attacks

Read more →

23andMe has been fined over £2m by the UK ICO for failing to adequately protect genetic data This article has been indexed from www.infosecurity-magazine.com Read the original article: UK ICO Fines 23andMe £2.3m for Data Protection Failings

Read more →

Phishing campaign targeting Taiwan has been identified, using tax-themed emails and malware like Winos and HoldingHands This article has been indexed from www.infosecurity-magazine.com Read the original article: Taiwan Hit by Sophisticated Phishing Campaign

Read more →

WatchTowr has found three vulnerabilities in the Sitecore Experience Platform, used by HSBC and L’Oréal This article has been indexed from www.infosecurity-magazine.com Read the original article: Chained Flaws in Enterprise CMS Provider Sitecore Could Allow Remote Code Execution

Read more →

Microsoft’s Sovereign Cloud solutions are designed to ensure European cloud data is stored and processed in Europe This article has been indexed from www.infosecurity-magazine.com Read the original article: Microsoft Promises to Keep European Cloud Data in Europe

Read more →

New City of London Police data reveals British men and women lost over £100m to romance fraudsters in 2024 This article has been indexed from www.infosecurity-magazine.com Read the original article: Brits Lose £106m to Romance Fraud in a Year

Read more →

Cyber-attacks using HijackLoader and DeerStealer have been identified exploiting phishing tactics via ClickFix This article has been indexed from www.infosecurity-magazine.com Read the original article: Threat Actors Target Victims with HijackLoader and DeerStealer

Read more →

Operation DEEP Sentinel has shut down Archetyp Market, the longest-running dark web drug marketplace This article has been indexed from www.infosecurity-magazine.com Read the original article: Archetyp Market Shut Down in Europe-wide Law Enforcement Operation

Read more →

Nessus users should update patches as soon as possible This article has been indexed from www.infosecurity-magazine.com Read the original article: Tenable Fixes Three High-Severity Flaws in Vulnerability Scanner Nessus

Read more →

Trend Micro identified a novel “wipe mode” included in Anubis ransomware to prevent file recovery, increasing pressure on victims to give in to demands This article has been indexed from www.infosecurity-magazine.com Read the original article: Anubis Ransomware Adds File-Wiping Capability

Read more →

Some 36% of Grafana instances are vulnerable to account takeover bug, putting DevOps teams at risk This article has been indexed from www.infosecurity-magazine.com Read the original article: Over a Third of Grafana Instances Exposed to XSS Flaw

Read more →

Canadian airline WestJet is investigating a cyber-attack that struck on June 13 This article has been indexed from www.infosecurity-magazine.com Read the original article: WestJet Investigates Cyber-Attack Impacting Customers

Read more →

Jen Easterly and Ciaran Martin called for a universal, vendor-neutral cyber threat actor naming system This article has been indexed from www.infosecurity-magazine.com Read the original article: Former CISA and NCSC Heads Warn Against Glamorizing Threat Actor Names

Read more →

This is the first forensic evidence that journalists’ devices have been infected with Paragon’s Graphite spyware This article has been indexed from www.infosecurity-magazine.com Read the original article: European Journalists Targeted by Paragon Spyware, Citizen Lab Confirms

Read more →

A CISA advisory urged all software vendors and downstream customers to check if they are impacted by unpatched versions of the SimpleHelp RMM tool This article has been indexed from www.infosecurity-magazine.com Read the original article: Ransomware Gang Exploits SimpleHelp RMM…

Read more →

Researchers have found a flaw in Microsoft 365 Copilot that allows the exfiltration of sensitive corporate data with a simple email This article has been indexed from www.infosecurity-magazine.com Read the original article: Microsoft 365 Copilot: New Zero-Click AI Vulnerability Allows…

Read more →

The cybersecurity provider also implemented recent fixes in Chromium that affected its Prisma Access Browser This article has been indexed from www.infosecurity-magazine.com Read the original article: Palo Alto Networks Patches Series of Vulnerabilities

Read more →

The new NIST guidance sets out 19 example implementations of zero trust using commercial, off-the-shelf technologies This article has been indexed from www.infosecurity-magazine.com Read the original article: NIST Publishes New Zero Trust Implementation Guidance

Read more →

Europol warns of “vicious circle” of data breaches and cybercrime This article has been indexed from www.infosecurity-magazine.com Read the original article: Europol Says Criminal Demand for Data is “Skyrocketing”

Read more →

Erie Insurance reveals suspected network breach and ongoing outage This article has been indexed from www.infosecurity-magazine.com Read the original article: Phishing Alert as Erie Insurance Reveals Cyber “Event”

Read more →

The legislation aims to expand the federal government’s role in helping healthcare providers protect and respond to cyber-attacks This article has been indexed from www.infosecurity-magazine.com Read the original article: Congress Introduces Bill to Strengthen Healthcare Cybersecurity

Read more →

Interpol-coordinated Operation Secure led to 32 arrests, including the suspected ringleader of a cybercriminal organization This article has been indexed from www.infosecurity-magazine.com Read the original article: 20,000 Asian IPs and Domains Dismantled in Infostealer Crackdown

Read more →

An ISC2 study found that 90% of security hiring managers would consider entry-level candidates with only previous IT work experience This article has been indexed from www.infosecurity-magazine.com Read the original article: Hands-On Skills Now Key to Landing Your First Cyber…

Read more →

The products affected by the issues are part of the Salesforce OmniStudio suite, including FlexCards and Data Mappers This article has been indexed from www.infosecurity-magazine.com Read the original article: Researcher Finds Five Zero-Days and 20+ Misconfigurations in Salesforce Cloud

Read more →

Malwarebytes claims 44% of mobile users are exposed to scams every day This article has been indexed from www.infosecurity-magazine.com Read the original article: Half of Mobile Users Now Face Daily Scams

Read more →

Microsoft has patched two zero days this month, one of which is being exploited in the wild This article has been indexed from www.infosecurity-magazine.com Read the original article: Two Microsoft Zero-Days for Admins to Fix in June Patch Tuesday

Read more →

Microsoft has patched two zero days this month, one of which is being exploited in the wild This article has been indexed from www.infosecurity-magazine.com Read the original article: Two Microsoft Zero Days for Admins to Fix in June Patch Tuesday

Read more →

Android Enterprise has introduced features for mobile security, device management and user productivity in its latest update This article has been indexed from www.infosecurity-magazine.com Read the original article: Android Enterprise Rolls Out Security and Productivity Updates

Read more →

A ransomware attack on Mastery Schools, Philadelphia, has compromised personal information of 37,031 individuals, exposing sensitive data This article has been indexed from www.infosecurity-magazine.com Read the original article: Mastery Schools Notifies 37,031 of Major Data Breach

Read more →

The financial sector was the industry most targeted by distributed denial-of-service (DDoS) attacks in 2024, with a peak in October This article has been indexed from www.infosecurity-magazine.com Read the original article: DDoS Attacks on Financial Sector Surge in Scale and…

Read more →

SentinelOne revealed details of two new intrusion attempts by China-nexus actors This article has been indexed from www.infosecurity-magazine.com Read the original article: SentinelOne Warns Cybersecurity Vendors of Chinese Attacks

Read more →

UNFI says it is investigating unauthorized network activity, and that some operations are affected This article has been indexed from www.infosecurity-magazine.com Read the original article: Wholesale Food Giant UNFI Admits Security Breach

Read more →

New PathWiper malware targeted Ukrainian critical infrastructure, using legitimate tools for cyber-attacks This article has been indexed from www.infosecurity-magazine.com Read the original article: New Wiper Malware Targets Ukrainian Infrastructure

Read more →

Vulnerability in PayU CommercePro plugin allows account hijacking on thousands of WordPress sites This article has been indexed from www.infosecurity-magazine.com Read the original article: PayU Plugin Flaw Allows Account Takeover on 5000 WordPress Sites

Read more →

A new Trump Executive Order limits the use of cybersecurity-related sanctions only against foreign malicious actors This article has been indexed from www.infosecurity-magazine.com Read the original article: Trump Administration Revises Cybersecurity Rules, Replaces Biden and Obama Orders

Read more →

The Justice Department has filed a civil forfeiture complaint alleging North Korean IT workers amassed $7m+ This article has been indexed from www.infosecurity-magazine.com Read the original article: US Tries to Claw Back $7m Taken by North Korean IT Workers

Read more →

The FBI says mainly Chinese-made IoT devices pose a threat from Badbox 2.0 malware This article has been indexed from www.infosecurity-magazine.com Read the original article: FBI Warns Smart Home Users of Badbox 2.0 Botnet Threat

Read more →

The ransomware group combines IT vendor impersonation and phishing frameworks like Evilginx to breach its targets This article has been indexed from www.infosecurity-magazine.com Read the original article: Scattered Spider Uses Tech Vendor Impersonation and Phishing Kits to Target Helpdesks

Read more →

Experts at Infosecurity Europe 2025 highlighted a range of major industry trends, from advanced social engineering techniques to vulnerability exploits This article has been indexed from www.infosecurity-magazine.com Read the original article: #Infosec2025: Top Six Cyber Trends CISOs Need to Know

Read more →

2017 ransomware attack on shipping company A P Moller Maersk marked a turning point for the cybersecurity industry, according to its former CISO Adam Banks This article has been indexed from www.infosecurity-magazine.com Read the original article: #Infosec2025: Cybersecurity Lessons From…

Read more →

Engagement with ransomware actors doesn’t necessarily mean payment; it’s about getting the best outcomes, a leading negotiator had argued This article has been indexed from www.infosecurity-magazine.com Read the original article: #Infosec2025: Ransomware Victims Urged to Engage to Take Back Control

Read more →

During Infosecurity Europe 2025, Nick Woodcraft, from the UK Government, shared his experience in implementing measures to protect domains within the .gov.uk DNS namespace This article has been indexed from www.infosecurity-magazine.com Read the original article: #Infosec2025: DNS Hijacking, A Major…

Read more →