Tag: www.infosecurity-magazine.com

Beaming data reveals the cost of UK cybersecurity breaches surged 138% over four years to £31.5bn This article has been indexed from www.infosecurity-magazine.com Read the original article: UK Businesses Lose £31bn to Security Breaches in a Year

Read more →

Picus Security sees huge uptick in malware designed to detect and disrupt security tooling This article has been indexed from www.infosecurity-magazine.com Read the original article: Stealthy “Hunter-Killer” Malware Detections Surge 333% Annually

Read more →

Talos said the attacker utilized new “Zardoor” malware to establish persistence This article has been indexed from www.infosecurity-magazine.com Read the original article: Sophisticated Cyber-Attack Hits Islamic Charity in Saudi Arabia

Read more →

Claims include allegations of US hacking into seismic sensors at the Wuhan Earthquake Monitoring Center This article has been indexed from www.infosecurity-magazine.com Read the original article: China Targets US Hacking Ops in Media Offensive

Read more →

Proofpoint has observed an ongoing campaign targeting the Microsoft Azure applications of hundreds of individuals with operational and executive roles This article has been indexed from www.infosecurity-magazine.com Read the original article: Malicious Campaign Impacts Hundreds of Microsoft Azure Accounts

Read more →

The US government said it will pay up to $10m for information leading to the identification of Hive leaders, and up to $5m for information leading to the arrest of any affiliates This article has been indexed from www.infosecurity-magazine.com Read…

Read more →

US authorities have seized domains and arrested individuals in connection with the Warzone RAT This article has been indexed from www.infosecurity-magazine.com Read the original article: US Dismantles Warzone RAT Malware Operation

Read more →

Fraud cost US adults over $10bn in 2023, a record high, says the FTC This article has been indexed from www.infosecurity-magazine.com Read the original article: US Consumers Lose a Record $10bn+ to Fraud Last Year

Read more →

US companies using AI-generated voices during a call without prior consent could receive fines of up to $23,000 per call This article has been indexed from www.infosecurity-magazine.com Read the original article: AI-Powered Robocalls Banned Ahead of US Election

Read more →

Facebook and other social media companies struggle with trust, with only 6% globally comfortable sharing personal data, according to a 2024 Thales survey This article has been indexed from www.infosecurity-magazine.com Read the original article: 20 Years of Facebook, but Trust…

Read more →

The findings come from Check Point researchers, who published a new analysis on Wednesday This article has been indexed from www.infosecurity-magazine.com Read the original article: Raspberry Robin Evolves With Stealth Tactics, New Exploits

Read more →

The flaw allows the installation of malware that operates at the firmware level This article has been indexed from www.infosecurity-magazine.com Read the original article: Linux Devs Rush to Patch Critical Vulnerability in Shim

Read more →

The French data privacy regulator has opened an investigation following a data breach affecting two major health insurance firms This article has been indexed from www.infosecurity-magazine.com Read the original article: France: 33 Million Social Security Numbers Exposed in Health Insurance…

Read more →

Nozomi Networks reveals increasingly sophisticated attacks targeting bugs and other vectors in IoT and OT environments This article has been indexed from www.infosecurity-magazine.com Read the original article: Critical Manufacturing Vulnerabilities Surge 230% in Six Months

Read more →

The US claims to have discovered Chinese Volt Typhoon intrusions in multiple critical infrastructure sectors This article has been indexed from www.infosecurity-magazine.com Read the original article: US Warns of Destructive Chinese Cyber-Attacks

Read more →

Over 25 governments and 14 tech companies vowed to fight against the proliferation of commercial spyware This article has been indexed from www.infosecurity-magazine.com Read the original article: Governments and Tech Giants Unite Against Commercial Spyware

Read more →

Tracked as CVE-2024-23917, the flaw carries a CVSS rating of 9.8 This article has been indexed from www.infosecurity-magazine.com Read the original article: Patched Critical Flaw Exposed JetBrains TeamCity Servers

Read more →

The initiative aim to tackle mobile fraud by auto-blocking apps seeking sensitive permissions This article has been indexed from www.infosecurity-magazine.com Read the original article: Google and CSA Singapore Combat Android Fraud With New Pilot

Read more →

Meta will start working on detecting AI images generated from rival services ahead of the November 2024 US presidential election This article has been indexed from www.infosecurity-magazine.com Read the original article: Meta to Introduce Labeling for AI-Generated Images Ahead of…

Read more →

Chainalysis monitoring of blockchain transactions reveals ransomware payments hit a record $1bn in 2023 This article has been indexed from www.infosecurity-magazine.com Read the original article: Ransomware Payments Hit $1bn All-Time High in 2023

Read more →

Chainalysis monitoring of blockchain transactions reveals ransomware payments hit a record $1bn in 2023 This article has been indexed from www.infosecurity-magazine.com Read the original article: Ransomware Payments Hit $1bn All-Time High Last Year

Read more →

Dutch intelligence services have blamed China for an attack last year targeting FortiGuard devices This article has been indexed from www.infosecurity-magazine.com Read the original article: Chinese Spies Hack Dutch Networks With Novel Coathanger Malware

Read more →

The Darktrace report observed an increasing cross-functional adaption of many MaaS strains in 2023 This article has been indexed from www.infosecurity-magazine.com Read the original article: Malware-as-a-Service Now the Top Threat to Organizations

Read more →

A new report suggests nearly 2 million UK adults have had their identity stolen and used by fraudsters to open a financial account in 2023 This article has been indexed from www.infosecurity-magazine.com Read the original article: Safer Internet Day: Two…

Read more →

A fake video showing US President Joe Biden touching his granddaughter’s chest remains on Facebook despite an Oversight Board investigation This article has been indexed from www.infosecurity-magazine.com Read the original article: Meta’s Oversight Board Urges a Policy Change After a…

Read more →

Shadowserver Foundation spots 170 distinct IP addresses trying to exploit Ivanti zero-day CVE-2024-21893 This article has been indexed from www.infosecurity-magazine.com Read the original article: Latest Ivanti Zero Day Exploited By Scores of IPs

Read more →

The US government will deny visas to those involved in misusing spyware This article has been indexed from www.infosecurity-magazine.com Read the original article: US Cracks Down on Spyware with Visa Restrictions

Read more →

Group-IB uncovers mass data theft campaign from Chinese-speaking ResumeLooters hackers This article has been indexed from www.infosecurity-magazine.com Read the original article: ResumeLooters Gang Raids Retail and Job Site Data

Read more →

A number of court web systems have been taken offline in the US state of Pennsylvania following a denial of service attack This article has been indexed from www.infosecurity-magazine.com Read the original article: Pennsylvania Courts’ Website Disrupted by DoS Attack

Read more →

The US has announced sanctions against six Iranians responsible for an attack on Unitronics, an Israeli manufacturer of systems used in the water sector This article has been indexed from www.infosecurity-magazine.com Read the original article: US Condemns Iran, Issues Sanctions…

Read more →

The cyber-attack that hit the remote tool provider could have a more significant impact than initially expected This article has been indexed from www.infosecurity-magazine.com Read the original article: AnyDesk Hit by Cyber-Attack and Customer Data Breach

Read more →

SEC filings reveal multimillion-dollar costs of two serious 2023 cyber-attacks on Clorox and Johnson Controls This article has been indexed from www.infosecurity-magazine.com Read the original article: Clorox and Johnson Controls Reveal $76m Cyber-Attack Bill

Read more →

KPMG research finds a similar number of high-value UK fraud cases heard in 2023 to previous year This article has been indexed from www.infosecurity-magazine.com Read the original article: UK Court Backlog Blocks Attempts to Fight Fraud Epidemic

Read more →

The Tinder-like app has countered claims of being a hot spot for sextortion scammers This article has been indexed from www.infosecurity-magazine.com Read the original article: Teen Chatting App Wizz Removed from Apple and Google Stores for Sextortion Concerns

Read more →

The Tinder-like app has countered claims of being a hot spot for sextortion scammers This article has been indexed from www.infosecurity-magazine.com Read the original article: Teen Dating App Wizz Removed from Apple and Google Stores for Sextortion Concerns

Read more →

New data from Lloyds found that romance scam victims increased by 22% in 2023, with the average amount lost per incident £6937 This article has been indexed from www.infosecurity-magazine.com Read the original article: Romance Scam Victims Surge in 2023

Read more →

Cloudflare revealed suspected nation-state attackers compromised its systems and accessed source code using credentials stolen in the Okta breach This article has been indexed from www.infosecurity-magazine.com Read the original article: Cloudflare Suffers Breach After Failing to Rotate Stolen Okta Credentials

Read more →

The last quarter of 2023 saw an 80% year-on-year increase in ransomware victim claims, according to ReliaQuest This article has been indexed from www.infosecurity-magazine.com Read the original article: LockBit Reigns Supreme in Soaring Ransomware Landscape

Read more →

A GAO report found that federal agencies are not assessing whether critical infrastructure sectors are implementing NIST ransomware protection guidance This article has been indexed from www.infosecurity-magazine.com Read the original article: US Agencies Failure to Oversee Ransomware Protections Threaten White…

Read more →

Global collaborative effort focused on combating the global rise of phishing, malware and ransomware This article has been indexed from www.infosecurity-magazine.com Read the original article: Interpol-Led Initiative Targets 1300 Suspicious IPs

Read more →

Chainalysis reveals that pump-and-dump schemes made Ethereum market manipulators over $240m in 2023 alone This article has been indexed from www.infosecurity-magazine.com Read the original article: Pump-and-Dump Schemes Make Crypto Fraudsters $240m

Read more →

Cycode stressed securing software supply chains amid complex dependencies and third-party actions This article has been indexed from www.infosecurity-magazine.com Read the original article: Google’s Bazel Exposed to Command Injection Threat

Read more →

US government agencies took down the botnet of Chinese APT Volt Typhoon, used to target critical infrastructure for nation-state espionage This article has been indexed from www.infosecurity-magazine.com Read the original article: US Thwarts Volt Typhoon Cyber Espionage Campaign Through Router…

Read more →

Ivanti has finally released updates to fix two zero-day bugs and two new high-severity vulnerabilities This article has been indexed from www.infosecurity-magazine.com Read the original article: Ivanti Releases Zero-Day Patches and Reveals Two New Bugs

Read more →

The voluntary scheme aims to encourage ICT providers to boost the cybersecurity of products and services across the EU This article has been indexed from www.infosecurity-magazine.com Read the original article: EU Launches First Cybersecurity Certification for Digital Products

Read more →

Trend Micro reported recent attacks focused on government sectors, including foreign affairs, energy, defense and transportation This article has been indexed from www.infosecurity-magazine.com Read the original article: Pawn Storm’s Stealthy Net-NTLMv2 Assault Revealed

Read more →

The Farm and Food Cybersecurity Act has cross-party support and aims enhance the US agriculture sector’s cyber defenses This article has been indexed from www.infosecurity-magazine.com Read the original article: US Senators Propose Cybersecurity Agriculture Bill

Read more →

The research also revealed 69% of enterprises have yet to integrate AI into cloud environments This article has been indexed from www.infosecurity-magazine.com Read the original article: Sysdig Report Exposes 91% Failure in Runtime Scans

Read more →

The US said the two Egyptian nationals provided cybersecurity training and support to ISIS leadership and supporters, as well as helping enable the group to use cryptocurrency This article has been indexed from www.infosecurity-magazine.com Read the original article: US Sanctions…

Read more →

New York attorney general launches legal case against Citi for failing to reimburse or protect fraud victims This article has been indexed from www.infosecurity-magazine.com Read the original article: Citibank Sued For Failing to Protect Fraud Victims

Read more →

A new initiative led by the ICAEW and NCSC launches today to improve cybersecurity during deals and investments This article has been indexed from www.infosecurity-magazine.com Read the original article: City Cyber Taskforce Launches to Secure Corporate Finance

Read more →

Energy firm Schneider Electric said a ransomware incident, reportedly perpetrated by the Cactus group, has led to data being accessed from its Sustainability Business division This article has been indexed from www.infosecurity-magazine.com Read the original article: Schneider Electric Confirms Data…

Read more →

Resecurity discovered over 1572 compromised customers from RIPE, APNIC, AFRINIC and LACNIC This article has been indexed from www.infosecurity-magazine.com Read the original article: Orange España Breach: Dark Web Flooded With Operator Credentials

Read more →

Netenrich analized the ransom note pattern saying the group is refining their messages to victims This article has been indexed from www.infosecurity-magazine.com Read the original article: Alpha Ransomware Group Launches Data Leak Site on the Dark Web

Read more →

After analyzing the 12 Rust payloads exploiting Ivanti ConnectSecure vulnerabilities, Synacktiv found they all enabled a sophisticated post-exploitation toolkit This article has been indexed from www.infosecurity-magazine.com Read the original article: Rust Payloads Exploiting Ivanti Zero-Days Linked to Sophisticated Sliver Toolkit

Read more →

New data from Corvus found that ransomware incidents rose by 68% in 2023 compared to 2022, but law enforcement takedowns led to a fall in Q4 This article has been indexed from www.infosecurity-magazine.com Read the original article: Ransomware Incidents Hit…

Read more →

The FBI is warning the public not to fall for scams where they are urged to liquidate assets and hand them to couriers for ‘safekeeping’ This article has been indexed from www.infosecurity-magazine.com Read the original article: FBI: Scammers Are Sending…

Read more →

The House of Lords has questioned the legal basis for police use of facial recognition and wants parliament to legislate This article has been indexed from www.infosecurity-magazine.com Read the original article: UK House of Lords Calls For Legislation on Facial…

Read more →

FortiGuard said the variant was found in an Office document using a VBA script This article has been indexed from www.infosecurity-magazine.com Read the original article: Phobos Ransomware Family Expands With New FAUST Variant

Read more →

The call follows an FTC order saying data brokers must secure consent before selling user data This article has been indexed from www.infosecurity-magazine.com Read the original article: US Senator Exposes NSA Purchase of Americans’ Internet Records

Read more →

Nigeria-based cybercriminals known as Yahoo Boys are the main drivers of a financial sextortion increase on TikTok, Instagram and Snapchat, targeting English-speaking teenagers This article has been indexed from www.infosecurity-magazine.com Read the original article: Nigerian ‘Yahoo Boys’ Behind Social Media…

Read more →

Microsoft said the Russian nation-state group Midnight Blizzard obfuscated its attack through the use of an OAuth application This article has been indexed from www.infosecurity-magazine.com Read the original article: Microsoft Provides Defense Guidance After Nation-State Compromise

Read more →

Drug trafficker Banmeet Singh made $150m in cryptocurrency from dark web sales This article has been indexed from www.infosecurity-magazine.com Read the original article: Dark Web Drugs Vendor Forfeits $150m After Guilty Plea

Read more →

Customers are urged to patch now after exploits are released for critical vulnerability in Jenkins This article has been indexed from www.infosecurity-magazine.com Read the original article: CI/CD at Risk as Exploits Released For Critical Jenkins Bug

Read more →

Ukraine’s security services said that the IT specialist from Kharkiv targeted government websites and provided intelligence to Russia to carry out missile strikes This article has been indexed from www.infosecurity-magazine.com Read the original article: Ukraine Arrests Hacker for Assisting Russian…

Read more →

Recorded Future analyzed leaks describing the close relationship between the Iranian government and Iran-aligned APT groups This article has been indexed from www.infosecurity-magazine.com Read the original article: New Leaks Expose Web of Iranian Intelligence and Cyber Companies

Read more →

Cisco found that privacy and data security risks have led to over a quarter of organizations banning generative AI, at least temporarily, while a majority have instituted controls This article has been indexed from www.infosecurity-magazine.com Read the original article: Data…

Read more →

ESET said Blackwood has been actively engaged in cyber-espionage since at least 2018 This article has been indexed from www.infosecurity-magazine.com Read the original article: China-Aligned APT Group Blackwood Unleashes NSPX30 Implant

Read more →

Bugcrowd’s latest report also recorded a 30% surge in web submissions in 2023 This article has been indexed from www.infosecurity-magazine.com Read the original article: Government Security Vulnerabilities Surge By 151%, Report Finds

Read more →

A global drop in DeFi hacking gains prompted North Korean threat actors to diversify and extend their victim portfolio, Chainalysis found This article has been indexed from www.infosecurity-magazine.com Read the original article: North Korea Hacks Crypto: More Targets, Lower Gains

Read more →

Over 350 million individuals were impacted by data breaches in the US in 2023 and 11% of all publicly traded companies have been compromised This article has been indexed from www.infosecurity-magazine.com Read the original article: Data Privacy Week: US Data…

Read more →

Southern Water confirmed a data breach had occurred after the Black Basta ransomware group purportedly published personal information held by the firm This article has been indexed from www.infosecurity-magazine.com Read the original article: Southern Water Confirms Data Breach Following Black…

Read more →

The Zero Day Initiative’s first Pwn2Own Automotive competition has handed out over $1m for 24 zero-days This article has been indexed from www.infosecurity-magazine.com Read the original article: Pwn2Own Contest Unearths Dozens of Zero-Day Vulnerabilities

Read more →

Hewlett Packard Enterprise reveals that Russian state APT29 hackers stole data from corporate mailboxes This article has been indexed from www.infosecurity-magazine.com Read the original article: HPE Says SolarWinds Hackers Accessed its Emails

Read more →

Kaspersky said cybercriminals are exploring schemes to implement ChatGPT in malware development This article has been indexed from www.infosecurity-magazine.com Read the original article: ChatGPT Cybercrime Surge Revealed in 3000 Dark Web Posts

Read more →

Finding comes from Menlo Security’s recently released 2023 State of Browser Security Report This article has been indexed from www.infosecurity-magazine.com Read the original article: Browser Phishing Threats Grew 198% Last Year

Read more →

As a critical infrastructure service for cybercriminals, bulletproof hosting should be tracked and blocked by defenders, Intel471 argued in a new blog post This article has been indexed from www.infosecurity-magazine.com Read the original article: Why Bulletproof Hosting is Key to…

Read more →

X (formerly Twitter) has announced that passkeys are available as a login option for US-based users on iOS following a spate of high-profile account hijacks This article has been indexed from www.infosecurity-magazine.com Read the original article: X Makes Passkeys Available…

Read more →

Researchers have released exploit code for a critical bug in managed file transfer software Fortra GoAnywhere This article has been indexed from www.infosecurity-magazine.com Read the original article: Exploit Code Released For Critical Fortra GoAnywhere Bug

Read more →

The National Cyber Security Centre claims in a new report that AI will increase volume and impact of ransomware attacks This article has been indexed from www.infosecurity-magazine.com Read the original article: AI Set to Supercharge Ransomware Threat, Says NCSC

Read more →

ReversingLabs noted a 1300% surge in harmful open-source packages between 2020 and 2023 This article has been indexed from www.infosecurity-magazine.com Read the original article: Malicious npm Packages Used to Target GitHub Developer SSH Keys

Read more →

Shadowserver reported over 39,000 exploitation attempts from 600 unique IP addresses, mainly Russian This article has been indexed from www.infosecurity-magazine.com Read the original article: Hackers Target Atlassian Confluence With RCE Exploits

Read more →

The UK government has published a draft code that aims to establish cybersecurity as a key focus for business leaders, on par with financial and legal risks This article has been indexed from www.infosecurity-magazine.com Read the original article: New Cybersecurity…

Read more →

The French CNIL has fined Amazon France Logistique $35m for an “excessively intrusive” surveillance system set up to monitor the performance of its staff This article has been indexed from www.infosecurity-magazine.com Read the original article: French Watchdog Slams Amazon with…

Read more →

The Australian government has sanctioned Russian national Aleksandr Ermakov for his role in the Medibank data breach This article has been indexed from www.infosecurity-magazine.com Read the original article: Australia Sanctions Russian Hacker Behind Medibank Breach

Read more →

A haul of 26 billion records found online was compiled from historic breaches This article has been indexed from www.infosecurity-magazine.com Read the original article: Mega-Breach Database Exposes 26 Billion Records

Read more →

The Securities and Exchange Commission says hackers hijacked its X account in a SIM swap attack after MFA was disabled This article has been indexed from www.infosecurity-magazine.com Read the original article: SEC Confirms SIM Swap Attack Behind X Account Takeover

Read more →

A haul of 26 billion records found online was compiled from historic breaches This article has been indexed from www.infosecurity-magazine.com Read the original article: “Mother of All Breaches” Unlikely to Contain New Data

Read more →

The US loan giant confirmed 16.6 million customers had “sensitive personal” information stolen in a cyber-attack This article has been indexed from www.infosecurity-magazine.com Read the original article: LoanDepot Data Breach Hits 16.6 Million Customers

Read more →

The US loan giant confirmed 16.6 million customers had “sensitive personal” information stolen in a cyber-attack This article has been indexed from www.infosecurity-magazine.com Read the original article: LoanDepot Data Breach Hits 16.6 Customers

Read more →

Thailand’s data breaches fell in 2022-2023, but Resecurity is warning of rising cyber-threats This article has been indexed from www.infosecurity-magazine.com Read the original article: Thai Court Blocks 9near.org to Avoid Exposure of 55M Citizens

Read more →

Kaspersky said the malware targeted macOS Ventura 13.6 and newer versions This article has been indexed from www.infosecurity-magazine.com Read the original article: New macOS Malware Targets Cracked Apps

Read more →

According to ISACA, two-thirds of professionals don’t fully understand the privacy regulations their organization needs to comply with This article has been indexed from www.infosecurity-magazine.com Read the original article: Data Privacy Week: Lack of Understanding, Underfunding Threaten Data Privacy and…

Read more →

US security agency CISA orders all civilian federal agencies to take immediate steps to mitigate two Ivanti zero-day flaws This article has been indexed from www.infosecurity-magazine.com Read the original article: CISA Emergency Directive Demands Action on Ivanti Zero-Days

Read more →

Russian intelligence hackers compromise emails of senior Microsoft leadership with simple password spray attacks This article has been indexed from www.infosecurity-magazine.com Read the original article: Russian Spies Brute Force Senior Microsoft Staff Accounts

Read more →

Google has warned that the Russia-linked Coldriver has expanded its targeting of Western officials by deploying malware to exfiltrate sensitive data This article has been indexed from www.infosecurity-magazine.com Read the original article: Russian Coldriver Hackers Deploy Malware to Target Western…

Read more →

South Africa’s cyber defenses have been lacking direction and resources for too long, researchers from the Carnegie Endowment for International Peace argued This article has been indexed from www.infosecurity-magazine.com Read the original article: Experts Urge Clearer Direction in South Africa’s…

Read more →

Proofpoint said it thwarted a large-scale campaign on January 11 primarily targeting North America This article has been indexed from www.infosecurity-magazine.com Read the original article: TA866 Resurfaces in Targeted OneDrive Campaign

Read more →

Discovered by Cado Security, the campaign deploys two containers to vulnerable Docker instances This article has been indexed from www.infosecurity-magazine.com Read the original article: New Malware Campaign Exploits 9hits in Docker Assault

Read more →

Microsoft said the social engineering campaign aims to steal sensitive data from experts deemed to be able to influence intelligence and policies relating to the Israel-Hamas War This article has been indexed from www.infosecurity-magazine.com Read the original article: Iranian Phishing…

Read more →