Category: www.infosecurity-magazine.com

The Federal Bureau of Investigation’s Internet Crime Complaint Center (IC3) reported a 45% increase in cryptocurrency-related scams in 2023 This article has been indexed from www.infosecurity-magazine.com Read the original article: Crypto Scams Reach New Heights, FBI Reports $5.6bn in Losses

Read more →

ISC2 found that the cybersecurity workforce gap is now at 4.8 million, a 19% increase from 2023 This article has been indexed from www.infosecurity-magazine.com Read the original article: Cybersecurity Workforce Gap Rises by 19% Amid Budget Pressures

Read more →

The Polish Supreme Court has ruled that a parliamentary commission investigating the previous government’s use of the Pegasus spyware was unconstitutional This article has been indexed from www.infosecurity-magazine.com Read the original article: Poland’s Supreme Court Blocks Pegasus Spyware Probe

Read more →

The Information Commissioner’s Office and National Crime Agency have cemented ties with a memorandum of understanding This article has been indexed from www.infosecurity-magazine.com Read the original article: UK’s ICO and NCA Sign Memorandum to Boost Reporting and Resilience

Read more →

September’s Patch Tuesday fix-list features scores of CVEs including four zero-day vulnerabilities This article has been indexed from www.infosecurity-magazine.com Read the original article: Microsoft Fixes Four Actively Exploited Zero-Days

Read more →

Highline Public Schools in Washington State have now been closed for two days following the incident This article has been indexed from www.infosecurity-magazine.com Read the original article: Highline Public Schools Forced to Close By Cyber-Attack

Read more →

TIDRONE group targets military, drone and satellite industries in Taiwan This article has been indexed from www.infosecurity-magazine.com Read the original article: China-Linked Threat Actors Target Taiwan Military Industry

Read more →

The Justice Department has begun the latest round of fraud reimbursement from the Western Union Remission Fund This article has been indexed from www.infosecurity-magazine.com Read the original article: DoJ Distributes $18.5m to Western Union Fraud Victims

Read more →

Researchers have warned that a critical SonicWall vulnerability is being exploited in ransomware attacks This article has been indexed from www.infosecurity-magazine.com Read the original article: Critical SonicWall SSLVPN Bug Exploited By Ransomware Actors

Read more →

Increasingly complex regulations are stretching governance and compliance in organizations, warns the IAPP This article has been indexed from www.infosecurity-magazine.com Read the original article: Technology Causes “Digital Entropy” as Firms Struggle With Governance

Read more →

Distributed denial of service attacks continue to increase, with government the most targeted vertical This article has been indexed from www.infosecurity-magazine.com Read the original article: DDoS Attacks Double With Governments Most Targeted

Read more →

A cyber-attack on Slim CD, which handles electronic payments for US and Canadian-based merchants, has potentially exposed the credit card details of 1.7 million people This article has been indexed from www.infosecurity-magazine.com Read the original article: Cyber-Attack on Payment Gateway…

Read more →

A North Carolina resident made over $10m in unlawful royalty payments by producing hundreds of thousands of fake songs listened to by bots using AI This article has been indexed from www.infosecurity-magazine.com Read the original article: Man Charged in AI-Generated…

Read more →

Rental hire company Avis has notified 300,000 customers of a data breach This article has been indexed from www.infosecurity-magazine.com Read the original article: Car Giant Avis Reveals Breach Impacted 300,000 Customers

Read more →

Transport for London has revealed several digital services are suspended after a cyber-attack last week This article has been indexed from www.infosecurity-magazine.com Read the original article: TfL Admits Some Services Are Down Following Cyber-Attack

Read more →

The secret web of at least 435 entities across 42 countries making up the spyware landscape facilitates unpunished security and human rights violations, the Atlantic Council found This article has been indexed from www.infosecurity-magazine.com Read the original article: Spyware Vendors’…

Read more →

The joint government advisory highlighted the cyber activities of Unit 29155, which has launched destructive cyber-attacks against critical infrastructure globally This article has been indexed from www.infosecurity-magazine.com Read the original article: US and Allies Accuse Russian Military of Destructive Cyber-Attacks

Read more →

Revival Hijack Python Package Index supply chain attack threatens 22,000 packages through malicious downloads This article has been indexed from www.infosecurity-magazine.com Read the original article: PyPI Revival Hijack Puts Thousands of Applications at Risk

Read more →

The first legally binding international treaty on AI was adopted by all 46 Council of Europe member states in May 2024 This article has been indexed from www.infosecurity-magazine.com Read the original article: UK Signs Council of Europe AI Convention

Read more →

Despite rising threats researchers find a third of firms see flat or falling security budgets and hiring slows This article has been indexed from www.infosecurity-magazine.com Read the original article: Security Budgets Come Under Pressure as “Hypergrowth” Ends

Read more →

A security flaw exploiting side channel attacks means some Yubikeys can be cloned This article has been indexed from www.infosecurity-magazine.com Read the original article: Researcher Finds Unfixable Yet Tricky to Exploit Flaw in Yubikeys

Read more →

Hackers interested in targeting OnlyFans users have themselves been singled out by an infostealing campaign This article has been indexed from www.infosecurity-magazine.com Read the original article: OnlyFans Hackers Targeted With Infostealer Malware

Read more →

The DoJ says Russia paid a US company $10m to post disinformation that attracted millions of views online This article has been indexed from www.infosecurity-magazine.com Read the original article: Russian Blamed For Mass Disinformation Campaign Ahead of US Election

Read more →

The US White House Office of the National Cyber Director proposes improving internet security by protecting the Border Gateway Protocol This article has been indexed from www.infosecurity-magazine.com Read the original article: US Government Set Out to Improve Internet Routing Security

Read more →

US law enforcement is tracking aggressive social engineering attacks against cryptocurrency operations This article has been indexed from www.infosecurity-magazine.com Read the original article: North Korea Targeting Crypto Industry, Says FBI

Read more →

Cisco Talos has assessed that red teaming tool MacroPack is being abused by various threat actors in different geographies to deploy malware This article has been indexed from www.infosecurity-magazine.com Read the original article: Red Teaming Tool Abused for Malware Deployment

Read more →

The US-based facial recognition data company may even have to pay up to €5.1m in penalties for non-compliance This article has been indexed from www.infosecurity-magazine.com Read the original article: Clearview AI Fined €30.5m by Dutch Watchdog Over Illegal Data Collection

Read more →

Cyberint claims that initial access brokers target companies with average revenue of nearly $2bn This article has been indexed from www.infosecurity-magazine.com Read the original article: Initial Access Brokers Target $2bn Revenue Companies

Read more →

UK’s Financial Ombudsman warns fraud and scams hit a record high in Q2 2024 This article has been indexed from www.infosecurity-magazine.com Read the original article: APP Fraud Dominates as Scams Hit All-Time High

Read more →

Civil society and journalists’ organizations in Europe ask the EU to take steps to regulate spyware technologies This article has been indexed from www.infosecurity-magazine.com Read the original article: Civil Rights Groups Call For Spyware Controls

Read more →

Researchers say password reset attacks have grown fourfold in the last year and one in four password reset attempts are fraudulent This article has been indexed from www.infosecurity-magazine.com Read the original article: Rapid Growth of Password Reset Attacks Boosts Fraud…

Read more →

Searchlight Cyber observed a 56% rise in active ransomware groups in H1 2024, demonstrating the growing fragmentation of the ransomware landscape This article has been indexed from www.infosecurity-magazine.com Read the original article: Active Ransomware Groups Surge by 56% in 2024

Read more →

A variant of the WikiLoader malware was observed being delivered via SEO poisoning and spoofing Palo Alto Networks’ GlobalProtect VPN software This article has been indexed from www.infosecurity-magazine.com Read the original article: Palo Alto’s GlobalProtect VPN Spoofed to Deliver New…

Read more →

Three British men are facing jail after pleading guilty to running an MFA bypass site dubbed “OTP Agency” This article has been indexed from www.infosecurity-magazine.com Read the original article: Three Plead Guilty to Running MFA Bypass Site

Read more →

London’s transport body, TfL, is playing down the impact of a cybersecurity incident on its services This article has been indexed from www.infosecurity-magazine.com Read the original article: TfL Claims Cyber-Incident is Not Impacting Services

Read more →

Fota Wildlife Park in Co Cork has told visitors to its website to cancel credit and debit cards, following a cyber-attack This article has been indexed from www.infosecurity-magazine.com Read the original article: Irish Wildlife Park Warns Customers to Cancel Credit…

Read more →

Agencies under the #Stopransomware banner publish details of RansomHub group’s tactics, indicators of compromise and essential mitigations This article has been indexed from www.infosecurity-magazine.com Read the original article: US Authorities Issue RansomHub Ransomware Alert

Read more →

The Asian country’s law enforcement suspects the instant messaging app of abetting deepfake sex crimes This article has been indexed from www.infosecurity-magazine.com Read the original article: South Korea Police Investigates Telegram Over Deepfake Porn

Read more →

The US FTC has proposed a $2.95m fine for security camera firm Verkada for alleged security failings that allowed hackers to access customers’ video footage This article has been indexed from www.infosecurity-magazine.com Read the original article: Verkada Facing $3m Penalty…

Read more →

Truesec claims new Cicada3301 ransomware-as-a-service group could have ties to ALPHV/BlackCat and Brutus This article has been indexed from www.infosecurity-magazine.com Read the original article: Cicada3301 Ransomware Group Emerges From the Ashes of ALPHV

Read more →

Proofpoint has uncovered a new cyber-espionage campaign deploying new malware dubbed “Voldemort” This article has been indexed from www.infosecurity-magazine.com Read the original article: Scores of Organizations Hit By Novel Voldemort Malware

Read more →

Forescout highlighted a 43% increase in published vulnerabilities in H1 2024, with attackers targeting flaws in VPNs and network infrastructure for initial access This article has been indexed from www.infosecurity-magazine.com Read the original article: Published Vulnerabilities Surge by 43%

Read more →

In a campaign targeting Mongolian government websites, Russian-backed APT29 leveraged exploits previously used by spyware vendors NSO Group and Intellexa This article has been indexed from www.infosecurity-magazine.com Read the original article: Russian Hackers Use Commercial Spyware Exploits to Target Victims

Read more →

North Korean groups exploited npm packages in coordinated attacks, targeting developers and cryptocurrency wallet browser extensions This article has been indexed from www.infosecurity-magazine.com Read the original article: North Korean Hackers Launch New Wave of npm Package Attacks

Read more →

BlackByte, linked to the Conti group, exploited VMware ESXi CVE-2024-37085 to control virtual machines This article has been indexed from www.infosecurity-magazine.com Read the original article: BlackByte Adopts New Tactics, Targets ESXi Hypervisors

Read more →

Threat actors are exploiting a vulnerability found in CCTV cameras used in critical infrastructure to spread a Mirai malware variant This article has been indexed from www.infosecurity-magazine.com Read the original article: Unpatched CCTV Cameras Exploited to Spread Mirai Variant

Read more →

Chainalysis report reveals a likely increase in new internet scams this year as fraudsters adapt to increasing enforcement efforts This article has been indexed from www.infosecurity-magazine.com Read the original article: Surge in New Scams as Pig Butchering Dominates

Read more →

CISA and the FBI warned that Iranian APT group, Fox Kitten, has helped ransomware groups to attack US organizations since 2017 This article has been indexed from www.infosecurity-magazine.com Read the original article: Iranian Hackers Secretly Aid Ransomware Attacks on US

Read more →

A virtual machine specialist was arrested after a foiled data extortion plot targeting his former employer This article has been indexed from www.infosecurity-magazine.com Read the original article: IT Engineer Charged For Attempting to Extort Former Employer

Read more →

Ransomware attacks on US schools and colleges have surged, with 491 incidents since 2018, affecting over 8000 institutions This article has been indexed from www.infosecurity-magazine.com Read the original article: Ransomware Attacks Exposed 6.7 Million Records in US Schools

Read more →

LummaC2, a C-based MaaS tool first identified in 2022, has resurfaced to exfiltrate credentials and personal data This article has been indexed from www.infosecurity-magazine.com Read the original article: LummaC2 Infostealer Resurfaces With Obfuscated PowerShell Tactics

Read more →

The hacking subsidiary of the Iranian Islamic Revolutionary Guard Corps (RGC) has targeted satellite, communications, oil and gas and government sectors in the US and UAE This article has been indexed from www.infosecurity-magazine.com Read the original article: Iran-Backed Peach Sandstorm…

Read more →

KPMG research finds money laundering accounted for the majority of fraud cases heard in the first half of 2024 This article has been indexed from www.infosecurity-magazine.com Read the original article: Money Laundering Dominates UK Fraud Cases

Read more →

ESET uncovers a South Korean cyber-espionage campaign featuring a zero-day exploit for WPS Office This article has been indexed from www.infosecurity-magazine.com Read the original article: South Korean Spies Exploit WPS Office Zero-Day

Read more →

The flaw in Microsoft 365 Copilot allowed data theft using ASCII smuggling and prompt injection This article has been indexed from www.infosecurity-magazine.com Read the original article: Microsoft 365 Copilot Vulnerability Exposes User Data Risks

Read more →

The Texas Dow Employees Credit Union told the Maine Attorney General the MOVEit data breach compromised information of over 500,000 members This article has been indexed from www.infosecurity-magazine.com Read the original article: MOVEit Hack Exposed Personal Data of Half Million…

Read more →

A US Justice Department watchdog has found “significant weaknesses” in the FBI’s physical and online media storage and disposal processes This article has been indexed from www.infosecurity-magazine.com Read the original article: FBI Flawed Data Handling Raises Security Concerns

Read more →

The Port of Seattle revealed system outages at the city’s airport may have been caused by a cyber-attack, affecting early Labor Day travel This article has been indexed from www.infosecurity-magazine.com Read the original article: Suspected Cyber-Attack Causes Travel Chaos at…

Read more →

The Dutch data protection regulator has imposed a €290m GDPR fine on Uber for storing driver data in the US without adequate safeguards This article has been indexed from www.infosecurity-magazine.com Read the original article: Uber Hit With €290m GDPR Fine

Read more →

AppOmni report claims number of companies suffering SaaS-related data breaches has jumped five percentage points over past year This article has been indexed from www.infosecurity-magazine.com Read the original article: A Third of Organizations Suffer SaaS Data Breaches

Read more →

Greasy Opal is a Czech Republic-based hacking group selling products that can be used for deploying cyber-attacks This article has been indexed from www.infosecurity-magazine.com Read the original article: Newly Discovered Group Offers CAPTCHA-Solving Services to Cybercriminals

Read more →

The National Security Agency has published a guide to help organizations defend against APT attacks that leverage living off the land techniques This article has been indexed from www.infosecurity-magazine.com Read the original article: NSA Releases Guide to Combat Living Off…

Read more →

The Chinese cyber espionage group was observed jailbreaking a Cisco switch appliance using a zero-day exploit This article has been indexed from www.infosecurity-magazine.com Read the original article: Chinese Velvet Ant Uses Cisco Zero-Day to Deploy Custom Malware

Read more →

The US government has filed a lawsuit against Georgia Tech for alleged cybersecurity violations as a Department of Defense contractor This article has been indexed from www.infosecurity-magazine.com Read the original article: Georgia Tech Sued Over Cybersecurity Violations

Read more →

Browser credential harvesting is an unusual activity for a ransomware group This article has been indexed from www.infosecurity-magazine.com Read the original article: Qilin Caught Red-Handed Stealing Credentials in Google Chrome

Read more →

YouTube’s new AI troubleshooting tool is designed to help users recover and secure their accounts after they’ve been hacked This article has been indexed from www.infosecurity-magazine.com Read the original article: YouTube Launches AI Tool to Recover Hacked Accounts

Read more →

Liverpool fans were the most frequent and highest-value targets for ticket scams last season, losing over £17,000 to fraudsters This article has been indexed from www.infosecurity-magazine.com Read the original article: Liverpool Fans Lose Big in Premier League Ticket Scams

Read more →

Cthulhu Stealer targets macOS, posing a major threat by disguising as legitimate software via DMG files This article has been indexed from www.infosecurity-magazine.com Read the original article: Cthulhu Stealer Malware Targets macOS With Deceptive Tactics

Read more →

The US FAA has proposed new rules for aircraft to address cyber vulnerabilities caused by the increased interconnectivity of critical systems This article has been indexed from www.infosecurity-magazine.com Read the original article: FAA Admits Gaps in Aircraft Cybersecurity Rules: New…

Read more →

The United States bore most of these cyber-threats, with a 46.15% rise in attacks compared to 2023 This article has been indexed from www.infosecurity-magazine.com Read the original article: Over 3400 High and Critical Cyber Alerts Recorded in First Half of…

Read more →

FCC charges Lingo Telecom with $1m fine over voice deepfake during the 2024 New Hampshire primary election This article has been indexed from www.infosecurity-magazine.com Read the original article: Company Fined $1m for Fake Joe Biden AI Calls

Read more →

ESET claims new NGate Android malware relays NFC data to steal card details for ATM cash-out This article has been indexed from www.infosecurity-magazine.com Read the original article: Novel Android Malware Steals Card NFC Data For ATM Withdrawals

Read more →

The donation websites of the UK’s seven major political parties are missing critical security features to protect the accounts of donors, according to DataDome This article has been indexed from www.infosecurity-magazine.com Read the original article: Security Flaws in UK Political…

Read more →

Quarklabs researchers claim millions of contactless key cards could be cloned via a backdoor This article has been indexed from www.infosecurity-magazine.com Read the original article: Backdoor in Mifare Smart Cards Could Open Doors Around the World

Read more →

The LiteSpeed Cache flaw may expose millions of WordPress sites to severe security risks This article has been indexed from www.infosecurity-magazine.com Read the original article: Critical LiteSpeed Cache Plugin Flaw Exposes WordPress Sites

Read more →

The MoonPeak RAT as used by UAT-5394 showed a possible connection to North Korean threat Kimsuky This article has been indexed from www.infosecurity-magazine.com Read the original article: New MoonPeak RAT Linked to North Korean Threat Group UAT-5394

Read more →

Oregon Zoo revealed that an unauthorized actor potentially obtained payment card information used in transactions over six months This article has been indexed from www.infosecurity-magazine.com Read the original article: Oregon Zoo Warns Over 100,000 Customers of Payment Card Compromise

Read more →

Australia’s data protection watchdog has decided to stop its investigation into US facial recognition company Clearview AI This article has been indexed from www.infosecurity-magazine.com Read the original article: Australia Calls Off Clearview AI Investigation Despite Lack of Compliance

Read more →

The building, located in Washington, DC, will be the new home of the US Cybersecurity and Infrastructure Security This article has been indexed from www.infosecurity-magazine.com Read the original article: CISA to Get New Headquarters as $524M Contract Awarded

Read more →

Healthcare has been the most targeted sector according to Barracuda analysis of 200 reported ransomware incidents from August 2023 to July 2024 This article has been indexed from www.infosecurity-magazine.com Read the original article: Healthcare Hit by a Fifth of Ransomware…

Read more →

Malwarebytes report warns security teams to be on high alert for ransomware attacks at night This article has been indexed from www.infosecurity-magazine.com Read the original article: Most Ransomware Attacks Now Happen at Night

Read more →

US chip firm Microchip reveals operational disruption stemming from cyber incident This article has been indexed from www.infosecurity-magazine.com Read the original article: Microchip Technology Says IT Incident Impacted Operations

Read more →

ESET detected a new phishing technique using progressive web applications (PWAs) as part of a large-scale mobile financial scam This article has been indexed from www.infosecurity-magazine.com Read the original article: Novel Phishing Method Used in Android/iOS Financial Fraud Campaigns

Read more →

The Msupedge backdoor communicates with a command-and-control server by using DNS traffic This article has been indexed from www.infosecurity-magazine.com Read the original article: New DNS-Based Backdoor Threat Discovered at Taiwanese University

Read more →

TA453, also known as Charming Kitten, launched a targeted phishing attack using PowerShell malware BlackSmith This article has been indexed from www.infosecurity-magazine.com Read the original article: Iranian Group TA453 Launches Phishing Attacks with BlackSmith

Read more →

Ukraine detected cyber-attacks using malicious emails containing photos of alleged prisoners of war from the Kursk direction This article has been indexed from www.infosecurity-magazine.com Read the original article: Vermin Cyber-Attacks Target Ukraine, Exploiting Kursk Battle

Read more →

The ODNI, FBI and CISA confirmed Iran was behind a reported hack of a Trump campaign website as part of efforts to stoke discord and undermine the US elections This article has been indexed from www.infosecurity-magazine.com Read the original article:…

Read more →

Healthcare organization Jewish Home Lifecare has revealed that a 2024 data breach hit over 100,000 customers This article has been indexed from www.infosecurity-magazine.com Read the original article: Jewish Home Lifecare Notifies 100,000 Victims of Ransomware Breach

Read more →

Former US Representative George Santos pleads guilty to multiple fraud and identity theft charges This article has been indexed from www.infosecurity-magazine.com Read the original article: Former Congressman Santos Admits Identity Theft and Fraud

Read more →

The FBI and CISA said ransomware on local networks may cause delays but won’t impact voting system integrity This article has been indexed from www.infosecurity-magazine.com Read the original article: FBI and CISA Assure Public on Election Ransomware Security

Read more →

Xeon Sender features SMS spam via APIs, Nexmo/Twilio credentials validation and phone number generation This article has been indexed from www.infosecurity-magazine.com Read the original article: New Tool Xeon Sender Enables Large-Scale SMS Spam Attacks

Read more →

Cisco Talos researchers found a flaw in eight Microsoft apps for macOS that could enable library injection attacks, putting sensitive data at risk This article has been indexed from www.infosecurity-magazine.com Read the original article: Microsoft Apps for macOS Exposed to…

Read more →

Cyber insurance claims in the UK have fallen by over a third between 2022 and 2024 as businesses refuse ransom payments This article has been indexed from www.infosecurity-magazine.com Read the original article: Ransomware Resilience Drives Down Cyber Insurance Claims

Read more →

The UK’s National Cyber Security Centre wants prospective auditors to check compliance with its Cyber Assessment Framework This article has been indexed from www.infosecurity-magazine.com Read the original article: NCSC Opens Cyber Resilience Audit Scheme to Applicants

Read more →

Employees at crypto firm Unicoin couldn’t access Google services for four days during a recent breach This article has been indexed from www.infosecurity-magazine.com Read the original article: Unicoin Staff Locked Out of G-Suite in Mystery Attack

Read more →

Two Congressmen fear that the Chinese government might use TP-Link Wi-Fi routers to deploy hacking and espionage campaigns in the US This article has been indexed from www.infosecurity-magazine.com Read the original article: US Bipartisan Committee Urges Investigation Into Chinese Wi-Fi…

Read more →

Microsoft is mandating MFA for all Azure sign-ins, with customers given 60-day advance notices to start implementation This article has been indexed from www.infosecurity-magazine.com Read the original article: Microsoft Mandates MFA for All Azure Sign-Ins

Read more →

The US data broker did not address the threat actor’s claim that the breach concerns 2.9 billion records This article has been indexed from www.infosecurity-magazine.com Read the original article: Florida-Based National Public Data Confirms Data Breach

Read more →

Radware found that Web DDoS attacks rose by 265% in H1 2024, driven by hacktivist groups amid rising geopolitical tensions This article has been indexed from www.infosecurity-magazine.com Read the original article: Geopolitical Tensions Drive Explosion in DDoS Attacks

Read more →

166 Olympics-related domains displayed signs of DNS abuse like keyword stuffing and typosquatting This article has been indexed from www.infosecurity-magazine.com Read the original article: Cyber-criminals Exploited Paris Olympics With Fake Domains

Read more →