Tag: www.infosecurity-magazine.com

OpenAI must also initiate a six-month public awareness campaign across Italian media, explaining how it processes personal data for AI training This article has been indexed from www.infosecurity-magazine.com Read the original article: Italy’s Data Protection Watchdog Issues €15m Fine to…

Read more →

The LockBitSupp persona said LockBit 4.0 will be launched in February 2025 This article has been indexed from www.infosecurity-magazine.com Read the original article: LockBit Admins Tease a New Ransomware Version

Read more →

The Security Service of Ukraine has accused Russian-linked actors of perpetrating a cyber-attack against the state registers of Ukraine This article has been indexed from www.infosecurity-magazine.com Read the original article: Ukraine’s Security Service Probes GRU-Linked Cyber-Attack on State Registers

Read more →

The FBI has issued a warning about the Hiatus RAT malware targeting Xiongmai and Hikvision web cameras and DVRs, urging users isolate these devices from networks This article has been indexed from www.infosecurity-magazine.com Read the original article: Webcams and DVRs…

Read more →

The US Cybersecurity and Infrastructure Security Agency recommended users turn on phishing-resistant MFA and switch to Signal-like apps for messaging This article has been indexed from www.infosecurity-magazine.com Read the original article: CISA Urges Encrypted Messaging After Salt Typhoon Hack

Read more →

A Dragos report observed 23 new ransomware groups targeting industrial organizations in Q3 2024 This article has been indexed from www.infosecurity-magazine.com Read the original article: Ransomware Attackers Target Industries with Low Downtime Tolerance

Read more →

Bitsight found that 40% of US organizations who used Kaspersky products before the government ban came into effect still appear to be using them This article has been indexed from www.infosecurity-magazine.com Read the original article: US Organizations Still Using Kaspersky…

Read more →

The EU Data Protection Board (EDPB) published a long-awaited opinion on how GDPR should apply to AI models This article has been indexed from www.infosecurity-magazine.com Read the original article: EU Opens Door for AI Training Using Personal Data

Read more →

Forescout identified a new type of malware capable of terminating engineering processes, used to target Siemens engineering workstations This article has been indexed from www.infosecurity-magazine.com Read the original article: New Malware Can Kill Engineering Processes in ICS Environments

Read more →

Mainly North Korean hackers stole over $2bn from crypto platforms in 2024, says Chainalysis This article has been indexed from www.infosecurity-magazine.com Read the original article: Crypto-Hackers Steal $2.2bn as North Koreans Dominate

Read more →

Cybersecurity firm Recorded Future has been listed as an “undesirable” organization by the Prosecutor General’s Office of the Russian Federation This article has been indexed from www.infosecurity-magazine.com Read the original article: Recorded Future CEO Calls Russia’s “Undesirable” Listing a “Compliment”

Read more →

A Morphisec researcher showed how an attacker could manipulate FIRST’s Exploit Prediction Scoring System (EPSS) using AI This article has been indexed from www.infosecurity-magazine.com Read the original article: Vulnerability Exploit Assessment Tool EPSS Exposed to Adversarial Attack

Read more →

Interpol wants to change the term “pig butchering” to “romance baiting” This article has been indexed from www.infosecurity-magazine.com Read the original article: Interpol Calls for an End to “Pig Butchering” Terminology

Read more →

A CISA Directive sets out actions all US federal agencies must take to identify and secure cloud tenants in their environments This article has been indexed from www.infosecurity-magazine.com Read the original article: US Government Issues Cloud Security Requirements for Federal…

Read more →

SlashNext reports a 202% increase in overall phishing messages and a 703% surge in credential-based phishing attacks in 2024 This article has been indexed from www.infosecurity-magazine.com Read the original article: Phishing Attacks Double in 2024

Read more →

Malicious campaigns targeting VSCode extensions have recently expanding to npm, risking software supply chains This article has been indexed from www.infosecurity-magazine.com Read the original article: New Attacks Exploit VSCode Extensions and npm Packages

Read more →

Trend Micro highlighted a case where an attacker posed as a client on an MS Teams call to distribute DarkGate malware This article has been indexed from www.infosecurity-magazine.com Read the original article: Attacker Distributes DarkGate Using MS Teams Vishing Technique

Read more →

The suspects were apprehended in a surprise operation at their hideout in Lagos following intelligence received by Nigeria’s Economic and Financial Crimes Commission This article has been indexed from www.infosecurity-magazine.com Read the original article: Nigeria Cracks Down on Cryptocurrency Investment…

Read more →

The Irish Data Protection Commission has fined Meta $263m for a 2018 data breach impacting 29 million Facebook accounts This article has been indexed from www.infosecurity-magazine.com Read the original article: Meta Hit with Massive $263m GDPR Fine

Read more →

The European Commission is investigating whether TikTok allowed foreign actors to influence voters during recent Romanian elections This article has been indexed from www.infosecurity-magazine.com Read the original article: European Commission Opens TikTok Election Integrity Probe

Read more →

Sophisticated phishing attack targeting Turkey’s defense sector revealed TA397’s advanced tactics This article has been indexed from www.infosecurity-magazine.com Read the original article: Sophisticated TA397 Malware Targets Turkish Defense Sector

Read more →

The breach has affected 650,000 individuals at TTUHSC’s Lubbock campus and 815,000 at its El Paso branch This article has been indexed from www.infosecurity-magazine.com Read the original article: Texas Tech University Data Breach Impacts 1.4 Million

Read more →

Check Point research reveals cybercriminals are using Google Calendar and Drawings to send malicious links, bypassing traditional email security This article has been indexed from www.infosecurity-magazine.com Read the original article: Cybercriminals Exploit Google Calendar to Spread Malicious Links

Read more →

76% of security leaders favor cybersecurity-focused GenAI tools over domain-agnostic tools This article has been indexed from www.infosecurity-magazine.com Read the original article: GenAI: Security Teams Demand Expertise-Driven Solutions

Read more →

The EU announced sanctions against individuals and entities involved in cyber-attacks and disinformation campaigns on behalf of the Russian state This article has been indexed from www.infosecurity-magazine.com Read the original article: EU Sanctions Russian Cyber Actors for “Destabilizing Actions”

Read more →

Wallarm honeypot research finds potentially exposed APIs are being discovered within half a minute This article has been indexed from www.infosecurity-magazine.com Read the original article: New APIs Discovered by Attackers in Just 29 Seconds

Read more →

The draft plan is designed to help businesses understand how the government will support them during a cyber incident This article has been indexed from www.infosecurity-magazine.com Read the original article: US Unveils New National Cyber Incident Response Plan

Read more →

SecurityScorecard claims 100% of Europe’s top financial services companies have suffered a supply chain breach in the past year This article has been indexed from www.infosecurity-magazine.com Read the original article: All Major European Financial Firms Suffer Supplier Breaches

Read more →

CISA and EPA have published guidance for operators of water and wastewater systems to protect against cyber-attacks This article has been indexed from www.infosecurity-magazine.com Read the original article: CISA and EPA Warn of Cyber Risks to Water System Interfaces

Read more →

Rhode Island’s RIBridges system has suffered a major data breach, potentially exposing personal information, with Deloitte confirming the presence of malicious software This article has been indexed from www.infosecurity-magazine.com Read the original article: Deloitte Alerts Rhode Island to Significant Data…

Read more →

Large-scale campaign identified by Guardio Lans and Infoblox, exploiting malvertising and fake captchas to distribute Lumma infostealer for massive theft This article has been indexed from www.infosecurity-magazine.com Read the original article: Fake Captcha Campaign Highlights Risks of Malvertising Networks

Read more →

The Serbian authorities have been using advanced mobile forensics products made by Israeli firm Cellebrite to extract data from mobile devices illegally This article has been indexed from www.infosecurity-magazine.com Read the original article: Amnesty Accuses Serbia of Tracking Journalists and…

Read more →

New Ofcom guidance is designed to help tech companies comply with their obligations around tackling illegal online harms under the Online Safety Act This article has been indexed from www.infosecurity-magazine.com Read the original article: Ofcom Issues Guidance for Tech Firms…

Read more →

Over 200,000 YouTube creators have been targeted by malware-laden phishing emails with the aim of infecting their followers This article has been indexed from www.infosecurity-magazine.com Read the original article: YouTube Creators Targeted in Global Phishing Campaign

Read more →

Ukrainian officials say Russian intelligence is using video games to trick children into helping the enemy This article has been indexed from www.infosecurity-magazine.com Read the original article: Russia Recruits Ukrainian Kids for Sabotage and Reconnaissance

Read more →

The US Government is offering a $5 million reward for information leading to the disruption of financial mechanisms supporting North Korea following a six-year conspiracy This article has been indexed from www.infosecurity-magazine.com Read the original article: US Uncovers North Korean…

Read more →

The US Government is offering a $5 million reward for information leading to the disruption of financial mechanisms supporting North Korea following a six-year conspiracy This article has been indexed from www.infosecurity-magazine.com Read the original article: US Offers $5M for…

Read more →

Sophos found observed a significant rise in Microsoft LOLbins abused by attackers in H1 2024 compared to 2023 This article has been indexed from www.infosecurity-magazine.com Read the original article: 2024 Sees Sharp Increase in Microsoft Tool Exploits

Read more →

Claims on ransomware groups’ data leak sites reached an all-time high in November, with 632 reported victims, according to Corvus Insurance This article has been indexed from www.infosecurity-magazine.com Read the original article: Akira and RansomHub Surge as Ransomware Claims Reach…

Read more →

IOCONTROL, a custom-built IoT/OT malware, was used by Iran-affiliated groups to attack Israel- and US-based OT/IoT devices, according to Claroty This article has been indexed from www.infosecurity-magazine.com Read the original article: Researchers Discover Malware Used by Nation-Sates to Attack Industrial…

Read more →

ISC2 research has found that cybersecurity leaders have limited skills and training in areas like communication, strategic mindset and business acumen This article has been indexed from www.infosecurity-magazine.com Read the original article: ISC2 Survey Reveals Critical Gaps in Cybersecurity Leadership…

Read more →

Almost three quarters of UK consumers believe bad bots are ruining Christmas by buying up popular gifts, forcing many to purchase expensive alternatives, according to Imperva research This article has been indexed from www.infosecurity-magazine.com Read the original article: UK Shoppers…

Read more →

Two Woffice theme vulnerabilities have been identified that allow attackers to gain unauthorized access and control of unpatched websites This article has been indexed from www.infosecurity-magazine.com Read the original article: Security Flaws in WordPress Woffice Theme Prompts Urgent Update

Read more →

Cyber-attacks involving Remcos RAT surged in Q3 2024, enabling attackers to control victim machines remotely, steal data and carry out espionage This article has been indexed from www.infosecurity-magazine.com Read the original article: Remcos RAT Malware Evolves with New Techniques

Read more →

Russian-made spyware BoneSpy and PlainGnome target former Soviet states, while public security bureaus in mainland China use Chinese surveillance tool EagleMsgSpy This article has been indexed from www.infosecurity-magazine.com Read the original article: Lookout Discovers New Spyware Deployed by Russia and…

Read more →

An insurance employee has been handed a suspended sentence after illegally accessing personal information This article has been indexed from www.infosecurity-magazine.com Read the original article: Insurance Worker Sentenced After Illegally Accessing Claimants’ Data

Read more →

HP Wolf reveals that 79% of IT security decision makers are lacking in crucial hardware and firmware expertise This article has been indexed from www.infosecurity-magazine.com Read the original article: Three-Quarters of Security Leaders Admit Gaps in Hardware Knowledge

Read more →

Microsoft detailed how Russian espionage group Secret Blizzard is leveraging infrastructure of other threat actors to target the Ukrainian military with custom malware This article has been indexed from www.infosecurity-magazine.com Read the original article: Secret Blizzard Targets Ukrainian Military with…

Read more →

Fraudsters in UAE posed as Dubai Police, targeting citizens with fake fines via calls, emails and SMS This article has been indexed from www.infosecurity-magazine.com Read the original article: Sophisticated Scam Targets UAE Residents with Fake Police Fines

Read more →

Krispy Kreme said the incident is likely to materially affect operations and short-term financial performance This article has been indexed from www.infosecurity-magazine.com Read the original article: Cyber Incident Disrupting Krispy Kreme Online Orders

Read more →

The Korean Financial Security Institute (K-FSI) disrupted a fraudulent network that made $6.3m by stealing money from fake personal trading platforms This article has been indexed from www.infosecurity-magazine.com Read the original article: South Korea Takes Down Fraudulent Online Trading Network…

Read more →

Microsoft MFA flaw exposed that allowed attackers to bypass security within an hour, putting 400m Office 365 accounts at risk This article has been indexed from www.infosecurity-magazine.com Read the original article: Microsoft Azure MFA Flaw Allowed Easy Access Bypass

Read more →

Operation PowerOFF has dismantled a network of 27 DDoS platforms, leading to the arrests of three administrators and the identification of over 300 users This article has been indexed from www.infosecurity-magazine.com Read the original article: Operation PowerOFF Takes Down DDoS…

Read more →

The US government has sanctioned Sichuan Silence and one of its employees for the mass compromise of firewalls which led to the deployment of malware and ransomware This article has been indexed from www.infosecurity-magazine.com Read the original article: US Sanctions…

Read more →

Microsoft has patched dozens of vulnerabilities in December, including one zero-day being exploited in the wild This article has been indexed from www.infosecurity-magazine.com Read the original article: Microsoft Fixes 71 CVEs Including Actively Exploited Zero-Day

Read more →

A zero-day vulnerability in Cleo file transfer software is being exploited in data theft attacks This article has been indexed from www.infosecurity-magazine.com Read the original article: Zero Day in Cleo File Transfer Software Exploited En Masse

Read more →

The multi-cloud data warehousing platform said it will completely phase out single factor authentication with passwords by November 2025 This article has been indexed from www.infosecurity-magazine.com Read the original article: Snowflake Pledges to Make MFA Mandatory

Read more →

Hackers exploited AWS misconfigurations, leaking 2TB of sensitive data, including customer information, credentials and proprietary source code This article has been indexed from www.infosecurity-magazine.com Read the original article: Hackers Exploit AWS Misconfigurations in Massive Data Breach

Read more →

The utilities sector saw a 42% surge in ransomware incidents over the past year, with groups like Play focusing on targets with IT and OT systems This article has been indexed from www.infosecurity-magazine.com Read the original article: Utility Companies Face…

Read more →

New AppLite Banker malware targets Android devices, employing advanced phishing techniques to steal credentials and data This article has been indexed from www.infosecurity-magazine.com Read the original article: New AppLite Malware Targets Banking Apps in Phishing Campaign

Read more →

Researchers found that the broad accessibility of streams of Scottish Parliamentary proceedings make them highly susceptible to deepfake attacks This article has been indexed from www.infosecurity-magazine.com Read the original article: Scottish Parliament TV at Risk of Deepfake Attacks

Read more →

Artivion has revealed in an SEC filing that it suffered a double-extortion ransomware attack This article has been indexed from www.infosecurity-magazine.com Read the original article: Heart Device Maker Artivion Suffers Ransomware Breach

Read more →

The UK’s privacy regulator the Information Commissioner’s Office has welcomed a Court of Appeal ruling This article has been indexed from www.infosecurity-magazine.com Read the original article: Court Ruling Provides Clarity on Appeals Against ICO Fines

Read more →

A Hack The Box Freedom of Information request has shown a significant drop in cyber-attacks reported to the Financial Conduct Authority (FCA) in 2024 This article has been indexed from www.infosecurity-magazine.com Read the original article: Major Drop in Cyber-Attack Reports…

Read more →

Appeals court upheld law forcing TikTok divestiture, citing national security risks over China ties This article has been indexed from www.infosecurity-magazine.com Read the original article: Federal Appeals Court Upholds Law Threatening US TikTok Ban

Read more →

The compromised ultralytics AI library delivered XMRig miner via GitHub Actions exploit This article has been indexed from www.infosecurity-magazine.com Read the original article: Compromised AI Library Delivers Cryptocurrency Miner via PyPI

Read more →

The UK’s ICO has published its findings following a two-year trial of its Public Sector Approach, which aimed to improve data protection compliance and deter data breaches This article has been indexed from www.infosecurity-magazine.com Read the original article: Public Reprimands,…

Read more →

This new ransomware group is likely a new variant of Babuk, said Cyble threat intelligence analysts This article has been indexed from www.infosecurity-magazine.com Read the original article: Unmasking Termite, the Ransomware Gang Claiming the Blue Yonder Attack

Read more →

CERT-UA has issued a warning about phishing emails targeting Ukrainian defense companies and security forces This article has been indexed from www.infosecurity-magazine.com Read the original article: Phishing Scam Targets Ukrainian Defense Companies

Read more →

Massachusetts’ Anna Jacques Hospital notifies over 316,000 patients of a data breach a year ago This article has been indexed from www.infosecurity-magazine.com Read the original article: Anna Jacques Hospital Ransomware Breach Hits 316K Patients

Read more →

Dutch and Belgian police have arrested eight in connection with a long-running phone phishing operation This article has been indexed from www.infosecurity-magazine.com Read the original article: European Police Disrupt Phone Phishing Gang with Arrests

Read more →

The Salt Typhoon hack against US telecommunications firms has prompted the FCC to suggest stricter security rules to protect the sector from future cyber threats This article has been indexed from www.infosecurity-magazine.com Read the original article: FCC Proposes Stricter Cybersecurity…

Read more →

Cǎlin Georgescu went from polling around 1% a month before the Romanian presidential election to winning the first round This article has been indexed from www.infosecurity-magazine.com Read the original article: Romania Exposes TikTok Propaganda Campaign Supporting Pro-Russian Candidate

Read more →

Despite claims by Brain Cipher that the ransomware gang had targeted Deloitte, the consultancy firm says its systems have not been affected This article has been indexed from www.infosecurity-magazine.com Read the original article: Deloitte Denies Breach, Claims Cyber-Attack Targeted Single…

Read more →

A European law enforcement operation took down a specialized online marketplace that operated as a central hub for the trade of illegally obtained information This article has been indexed from www.infosecurity-magazine.com Read the original article: Europol Dismantles Major Online Fraud…

Read more →

A supply chain attack on the Solana library utilizing malicious npm versions has exposed private keys, putting crypto funds at risk This article has been indexed from www.infosecurity-magazine.com Read the original article: Solana Library Supply Chain Attack Exposes Cryptocurrency Wallets

Read more →

Veeam has released patches for critical VSPC flaws, requiring immediate attention from affected service providers This article has been indexed from www.infosecurity-magazine.com Read the original article: Veeam Urges Immediate Update to Patch Severe Vulnerabilities

Read more →

An FBI alert warned that GenAI tools are improving the believability of fraud schemes and enabling large scale attacks This article has been indexed from www.infosecurity-magazine.com Read the original article: FBI Warns GenAI is Boosting Financial Fraud

Read more →

Microsoft has found that Russian APT Secret Blizzard piggybacks on other cybercriminals’ infr4asytructure to conduct cyber espionage This article has been indexed from www.infosecurity-magazine.com Read the original article: Russian Hackers Exploit Rival Attackers’ Infrastructure for Espionage

Read more →

World Economic Forum data shows G20 executives are more concerned about economic risks that cyber-threats This article has been indexed from www.infosecurity-magazine.com Read the original article: G20 Leaders Fear Economic Over Cyber Risks

Read more →

The National Crime Agency has made scores of arrests in a bid to bring down two major Russian money laundering networks This article has been indexed from www.infosecurity-magazine.com Read the original article: UK’s NCA Disrupts Multibillion-Dollar Russian Money Launderers

Read more →

Orange Cyberdefense found that hacktivist gang Noname has almost exclusively targeted European countries since March 2022, with no attacks impacting the US This article has been indexed from www.infosecurity-magazine.com Read the original article: Pro-Russian Hacktivist Group Claims 6600 Attacks Targeting…

Read more →

Ransomware attacks cost manufacturing $17bn in downtime since 2018, with $1.9m daily losses, according to Comparitech This article has been indexed from www.infosecurity-magazine.com Read the original article: Ransomware Costs Manufacturing Sector $17bn in Downtime

Read more →

Wirral University Teaching Hospital is recovering from a cybersecurity incident that occurred on November 25, with some patient services still disrupted as systems are being restored This article has been indexed from www.infosecurity-magazine.com Read the original article: Wirral Hospital Recovery…

Read more →

In a settlement announced on Tuesday, the FTC banned Gravy Analytics and Mobilewalla from selling sensitive location data This article has been indexed from www.infosecurity-magazine.com Read the original article: FTC Safeguards US Consumers from Location Data Misuse

Read more →

Alder Hey Children’s NHS Foundation Trust said a single attack compromised the systems of three NHS entities This article has been indexed from www.infosecurity-magazine.com Read the original article: Liverpool Children’s Hospital Confirms Cyber-Attack

Read more →

Law enforcers in Germany have taken down dark web marketplace Crimenetwork and arrested a suspected administrator This article has been indexed from www.infosecurity-magazine.com Read the original article: German Police Shutter Country’s Largest Dark Web Market

Read more →

Russian vodka-maker Stoli Group has filed for bankruptcy in the US after ransomware attack and alleged persecution by the Putin regime This article has been indexed from www.infosecurity-magazine.com Read the original article: Vodka Giant Stoli Files for Bankruptcy After Ransomware…

Read more →

The NIS2 directive requires the EU cybersecurity agency to produce a biennial report on the state of cybersecurity in the Union This article has been indexed from www.infosecurity-magazine.com Read the original article: ENISA Launches First State of EU Cybersecurity Report

Read more →

An analysis by the Linux Foundation, OpenSSF and Harvard University found that there continues to be significant cybersecurity risks in open source software practices This article has been indexed from www.infosecurity-magazine.com Read the original article: Security Risks Persist in Open…

Read more →

Spreading malware via Telegram channels allows threat actors to bypass traditional detection mechanisms and reach a broad, unsuspecting audience This article has been indexed from www.infosecurity-magazine.com Read the original article: Lumma Stealer Proliferation Fueled by Telegram Activity

Read more →

The BianLian ransomware group has shifted exclusively to exfiltration-based extortion and is deploying multiple new TTPs for initial access and persistence This article has been indexed from www.infosecurity-magazine.com Read the original article: BianLian Ransomware Group Adopts New Tactics, Posing Significant…

Read more →

One of these flaws detected using LLMs was in the widely used OpenSSL library This article has been indexed from www.infosecurity-magazine.com Read the original article: Google OSS-Fuzz Harnesses AI to Expose 26 Hidden Security Vulnerabilities

Read more →

Group-IB revealed key differences in VietCredCare and DuckTail infostealer malware targeting Facebook Business accounts This article has been indexed from www.infosecurity-magazine.com Read the original article: Vietnam’s Infostealer Crackdown Reveals VietCredCare and DuckTail

Read more →

New Linux malware WolfsBane and FireWood have been linked to Gelsemium APT, a cyber-espionage group targeting critical systems This article has been indexed from www.infosecurity-magazine.com Read the original article: Linux Malware WolfsBane and FireWood Linked to Gelsemium APT

Read more →

The security provider has elevated its warning about a vulnerability affecting firewall management interfaces after observing active exploitation This article has been indexed from www.infosecurity-magazine.com Read the original article: Palo Alto Networks Confirms New Zero-Day Being Exploited by Threat Actors

Read more →

Ilya Lichtenstein hacked into the cryptocurrency exchange in 2016 and stole around 120,000 bitcoins This article has been indexed from www.infosecurity-magazine.com Read the original article: Bitfinex Hacker Jailed for Five Years Over Billion Dollar Crypto Heist

Read more →

The new vulnerability was named “FortiJump Higher” due to its similarity with the “FortiJump” vulnerability discovered in October This article has been indexed from www.infosecurity-magazine.com Read the original article: watchTowr Finds New Zero-Day Vulnerability in Fortinet Products

Read more →

SentinelOne described some of ransomware groups’ favorite techniques for targeting cloud services This article has been indexed from www.infosecurity-magazine.com Read the original article: Ransomware Groups Use Cloud Services For Data Exfiltration

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from www.infosecurity-magazine.com Read the original article: O2’s AI Granny Outsmarts Scam Callers with Knitting Tales

Read more →