Tag: www.infosecurity-magazine.com

Comparitech revealed crypto heists increased in volume by 42% last year This article has been indexed from www.infosecurity-magazine.com Read the original article: Crypto Heists Surge in 2023, $16.93m Already Stolen in 2024

Read more →

Volexity detects 1700 compromised Ivanti VPN devices following publication of two zero-days last week This article has been indexed from www.infosecurity-magazine.com Read the original article: Ivanti Zero-Days Exploited By Multiple Actors Globally

Read more →

Group-IB report lifts the lid on infamous crypto-drainer malware Inferno Drainer This article has been indexed from www.infosecurity-magazine.com Read the original article: Inferno Drainer Spoofs Over 100 Crypto Brands to Steal $80m+

Read more →

Netscout found a spike from 10,000 to 143,957 devices in scans between December 2023 and early January 2024 This article has been indexed from www.infosecurity-magazine.com Read the original article: Researchers Uncover Major Surge in Global Botnet Activity

Read more →

US senators have accused the SEC of failing to properly secure its social media accounts after hackers comprised its X account and posted a fake Bitcoin announcement This article has been indexed from www.infosecurity-magazine.com Read the original article: Senators Demand…

Read more →

Discovered by the SentinelLabs team, FBot targets web servers, cloud services and SaaS platforms This article has been indexed from www.infosecurity-magazine.com Read the original article: Python-Based Tool FBot Disrupts Cloud Security

Read more →

Content delivery provider Cloudflare observed a staggering surge in DDoS attacks against environmental services during COP28 This article has been indexed from www.infosecurity-magazine.com Read the original article: Environmental Websites Hit by DDoS Surge in COP28 Crossfire

Read more →

The main British Library catalogue will be back online on Monday, January 15, as the institution continues its technical rebuild following the ransomware attack last year This article has been indexed from www.infosecurity-magazine.com Read the original article: British Library Catalogue…

Read more →

A new Recorded Future report warns of growing abuse of GitHub and recommends blocking risky services This article has been indexed from www.infosecurity-magazine.com Read the original article: Security Experts Urge IT to Lock Down GitHub Services

Read more →

The ICO has fined HelloFresh £140,000 for breaking privacy laws with a spam marketing campaign This article has been indexed from www.infosecurity-magazine.com Read the original article: HelloFresh Fined £140K After Sending 80 Million Spam Messages

Read more →

CISA’s advisory provides mitigations for vulnerabilities in ICS products used in critical infrastructure industries like energy, manufacturing and transportation This article has been indexed from www.infosecurity-magazine.com Read the original article: CISA Urges Critical Infrastructure to Patch Urgent ICS Vulnerabilities

Read more →

Email security provider Cofense outlined some of the most common HR-related scams and phishing campaigns it has observed This article has been indexed from www.infosecurity-magazine.com Read the original article: Waiting for Your Pay Raise? Cofense Warns Against HR-Related Scams

Read more →

Bitdefender researchers revealed the vulnerability allows an attacker to send commands to the thermostat and replace its firmware This article has been indexed from www.infosecurity-magazine.com Read the original article: Vulnerability Puts Bosch Smart Thermostats at Risk of Compromise

Read more →

Millions in the UK have had their data compromised because of cyber incidents involving law firms, a recent analysis of IOC data has found This article has been indexed from www.infosecurity-magazine.com Read the original article: Human Error and Insiders Expose…

Read more →

Fidelity National Financial revealed that the ransomware attack last year potentially impacted 1.3 million customers data in an updated SEC filing This article has been indexed from www.infosecurity-magazine.com Read the original article: 1.3 Million FNF Customers’ Data Potentially Exposed in…

Read more →

Mandiant has shared its findings following X account hijacking, firm blames misconfigured 2FA and X’s policy change This article has been indexed from www.infosecurity-magazine.com Read the original article: Mandiant’s X Account Was Hacked in Brute-Force Password Attack

Read more →

The UK’s National Cyber Security Centre has launched a new online security guide to help smaller organizations better manage risk This article has been indexed from www.infosecurity-magazine.com Read the original article: NCSC Publishes Practical Security Guidance For SMBs

Read more →

Ivanti has released mitigation steps after reports of active exploitation of Connect Secure and Policy Secure vulnerabilities This article has been indexed from www.infosecurity-magazine.com Read the original article: Two Ivanti Zero-Days Actively Exploited in the Wild

Read more →

Cyber-attacks and misinformation top WEF’s list of global risks, with cybercrime poised to exploit tech advancements and AI dominance raising concerns about vulnerability This article has been indexed from www.infosecurity-magazine.com Read the original article: Cyber Insecurity and Misinformation Top WEF…

Read more →

Law enforcement operations on cybercriminal infrastructure have proven efficient at hindering malware activity but are far from being a silver bullet, according to Recorded Future This article has been indexed from www.infosecurity-magazine.com Read the original article: Malware Takedowns Show Progress,…

Read more →

The Arctic Wolf report found that 14.3% of officials believe their state is not prepared at all to deal with election-targeted cyber incidents, including phishing and disinformation campaigns This article has been indexed from www.infosecurity-magazine.com Read the original article: Only…

Read more →

Market.Us found that the global cyber insurance market will be worth $90.6bn by 2033, driven by increasing cyber-threats and growing regulations This article has been indexed from www.infosecurity-magazine.com Read the original article: Cyber Insurance Market to be Worth Over $90bn…

Read more →

State-backed Ukrainian hacking group Blackjack has launched a destructive attack against a Moscow-based ISP in retaliation for Kyivstar attack This article has been indexed from www.infosecurity-magazine.com Read the original article: Ukrainian “Blackjack” Hackers Take Out Russian ISP

Read more →

Critical Hyper-V flaw one of 12 remote code execution vulnerabilities fixed this Patch Tuesday This article has been indexed from www.infosecurity-magazine.com Read the original article: Microsoft Fixes 12 RCE Bugs in January Patch Tuesday

Read more →

The vulnerability could lead to remote code execution on affected systems This article has been indexed from www.infosecurity-magazine.com Read the original article: Flaw in AI Plugin Exposes 50,000 WordPress Sites to Remote Attack

Read more →

The figure comes from XM Cyber’s 2024 State of Security Posture Report, exploring how organizations approach cybersecurity challenges This article has been indexed from www.infosecurity-magazine.com Read the original article: 82% of Companies Struggle to Manage Security Exposure

Read more →

2023 saw an increased number of deals in the cybersecurity industry, but the overall investment in the sector dropped, Pinpoint revealed This article has been indexed from www.infosecurity-magazine.com Read the original article: Cybersecurity Deals Boom as Investment Dips, Pinpoint Reports

Read more →

Cisco Talos announced that a decryption key for the Babuk Tortilla ransomware variant is available for victims to download This article has been indexed from www.infosecurity-magazine.com Read the original article: New Decryption Key Available for Babuk Tortilla Ransomware Victims

Read more →

A Nigerian national has been sentenced to a decade behind bars for his role in romance and BEC scam This article has been indexed from www.infosecurity-magazine.com Read the original article: Nigerian Gets 10 Years For Laundering Scam Funds

Read more →

Mortgage lender LoanDepot has revealed a ransomware breach resulting in stolen and encrypted data This article has been indexed from www.infosecurity-magazine.com Read the original article: LoanDepot Confirms Ransomware Attack in SEC Filing

Read more →

New research from Check Point explores the significance of code manipulation in malware analysis This article has been indexed from www.infosecurity-magazine.com Read the original article: New Research: Tackling .NET Malware With Harmony Library

Read more →

AP said departure and arrival screens displayed a message accusing Hezbollah of jeopardizing Lebanon This article has been indexed from www.infosecurity-magazine.com Read the original article: Anti-Hezbollah Groups Hack Beirut Airport Screens

Read more →

Turkey-aligned espionage group Sea Turtle has been conducting campaigns targeting Dutch telecommunication and media organizations This article has been indexed from www.infosecurity-magazine.com Read the original article: Turkish APT Sea Turtle Resurfaces, Spies on Dutch IT Firms

Read more →

North Korean hackers remain effective in stealing cryptocurrency despite growing international law enforcement action This article has been indexed from www.infosecurity-magazine.com Read the original article: North Korean Hackers Stole $600m in Crypto in 2023

Read more →

Pharma giant Merck has reached a settlement with cyber-insurers that refused to pay out for “acts of war” This article has been indexed from www.infosecurity-magazine.com Read the original article: Merck Settles With Insurers Over $700m NotPetya Claim

Read more →

Blockchain security firm Certik had its own social media account hacked to push a crypto scam This article has been indexed from www.infosecurity-magazine.com Read the original article: Security Firm Certik’s Account Hijacked to Spread Crypto Drainer

Read more →

The dark web site’s infrastructure was taken down in 2019 following an international law enforcement operation This article has been indexed from www.infosecurity-magazine.com Read the original article: 19 xDedic Cybercrime Market Users and Admins Face Prison

Read more →

A Certik report found there was $1.84bn in losses across 751 cybersecurity incidents targeting Web3 in 2023 This article has been indexed from www.infosecurity-magazine.com Read the original article: Cyber-Attacks Drain $1.84bn from Web3 in 2023

Read more →

This effort is the first step in NIST’s broader mission to support the development of trustworthy AI This article has been indexed from www.infosecurity-magazine.com Read the original article: NIST Fortifies Chatbots and Self-Driving Cars Against Digital Threats

Read more →

A 23andMe letter sent to a legal firm representing victims of the data breach claims that users were at fault for recycling passwords This article has been indexed from www.infosecurity-magazine.com Read the original article: 23andMe Blames User “Negligence” for Data…

Read more →

Password manager provider LastPass has started implementing stricter password measures for its customers This article has been indexed from www.infosecurity-magazine.com Read the original article: LastPass Enforces 12-Character Master Passwords

Read more →

Ukraine’s security service says Sandworm accessed Kyivstar’s system at least six months before launching the attack This article has been indexed from www.infosecurity-magazine.com Read the original article: Ukraine Blames Russian Sandworm Hackers for Kyivstar Attack

Read more →

Security measures top Kaspersky’s annual digital resolutions survey This article has been indexed from www.infosecurity-magazine.com Read the original article: Using Stronger Passwords Among Top 2024 Digital Resolutions

Read more →

HealthEC said that sensitive medical data was exposed in the breach, which is now thought to have impacted 4.5 million people This article has been indexed from www.infosecurity-magazine.com Read the original article: HealthEC Data Breach Impacts 4.5 Million Patients

Read more →

Emsisoft has called for a complete ban on ransomware payments after another record-breaking year of attacks This article has been indexed from www.infosecurity-magazine.com Read the original article: Experts Clash Over Ransomware Payment Ban

Read more →

A Nigerian man is facing a 100-year jail term after being arrested on multimillion-dollar BEC charges This article has been indexed from www.infosecurity-magazine.com Read the original article: Nigerian Faces $7.5m BEC Charges After Charities Are Swindled

Read more →

The European Central Bank (ECB) will undertake a stress test on 109 European banks’ cyber-attack response capabilities after IT risk management shortfalls identified This article has been indexed from www.infosecurity-magazine.com Read the original article: Over 100 European Banks Face Cyber…

Read more →

CloudSEK explored some of the techniques threat actors have been using to forge or steal X Gold accounts since Elon Musk’s firm introduced its new verified accounts program This article has been indexed from www.infosecurity-magazine.com Read the original article: Fake…

Read more →

Ukraine’s security services revealed Russia has hacked surveillance cameras to spy on air defense activities and critical infrastructure in Kyiv ahead of missile strikes This article has been indexed from www.infosecurity-magazine.com Read the original article: Russia Spies on Kyiv Defenses…

Read more →

Imaging giant Xerox says it suffered a security incident, as ransomware group INC Ransom claims scalp This article has been indexed from www.infosecurity-magazine.com Read the original article: Xerox Business Solutions Reveals Security Breach

Read more →

California-based XCast Labs says it will settle FTC charges of facilitating illegal robocalls This article has been indexed from www.infosecurity-magazine.com Read the original article: VoIP Firm XCast Agrees to Settle $10m Illegal Robocall Case

Read more →

Orbit Chain said that the stolen cryptocurrency currently remains unmoved This article has been indexed from www.infosecurity-magazine.com Read the original article: Over $80m in Crypto Stolen in Cyber-Attack on Orbit Chain

Read more →

Court Services Victoria said the incident may have compromised recordings involving people whose identities are protected This article has been indexed from www.infosecurity-magazine.com Read the original article: Australian Court Service Hacked, Hearing Recordings at Risk

Read more →

A Chinese foreign exchange student has been found after online scammers extorted money from his parents This article has been indexed from www.infosecurity-magazine.com Read the original article: Teen Found Alive After “Cyber-Kidnapping” Incident

Read more →

Researchers at SRLabs have revealed a new suite of decryption tools for Black Basta ransomware This article has been indexed from www.infosecurity-magazine.com Read the original article: Black Basta Ransomware Decryptor Published

Read more →

The MOVEit hack, OpenAI service targeting and Android spyware top the threat landscape in H2 2023, according to ESET This article has been indexed from www.infosecurity-magazine.com Read the original article: Second Half of 2023 Threat Landscape Dominated by AI and…

Read more →

Kaspersky reported an average of 411,000 malicious files deployed every day in 2023, according to its Security Bulletin: Statistics of the Year Report This article has been indexed from www.infosecurity-magazine.com Read the original article: Daily Malicious Files Soar 3% in…

Read more →

The number of victims listed on ransomware leak sites is up 110% year-on-year in November, according to Corvus Insurance This article has been indexed from www.infosecurity-magazine.com Read the original article: Ransomware Leak Site Victims Reached Record-High in November

Read more →

Telco EE warns of surge in text-based phishing messages as Christmas approaches This article has been indexed from www.infosecurity-magazine.com Read the original article: SMS Scams Set to Peak on Saturday in UK

Read more →

Justice secretary Robert Buckland has warned that deepfakes could be used to spread election disinformation This article has been indexed from www.infosecurity-magazine.com Read the original article: Justice Secretary in Deepfake General Election Warning

Read more →

Researchers are warning of new phishing campaigns using crypto drainer malware to steal virtual currency This article has been indexed from www.infosecurity-magazine.com Read the original article: Crypto Drainer Steals $59m Via Google and X Ads

Read more →

The breach, which unfolded on September 28, compelled ESO to shut down systems temporarily This article has been indexed from www.infosecurity-magazine.com Read the original article: Healthcare Provider ESO Hit in Ransomware Attack, 2.7 Million Impacted

Read more →

Proofpoint said the cluster’s use of multiple attack chains highlights a new trend among cybercriminals This article has been indexed from www.infosecurity-magazine.com Read the original article: BattleRoyal Cluster Signals DarkGate Surge

Read more →

Ivanti releases updates to fix 22 vulnerabilities in its Avalanche mobile device management product This article has been indexed from www.infosecurity-magazine.com Read the original article: Ivanti Urges Customers to Patch 13 Critical Vulnerabilities

Read more →

Police in Germany have dismantled notorious drugs and cybercrime marketplace Kingdom Market This article has been indexed from www.infosecurity-magazine.com Read the original article: German Police Take Down Kingdom Market Dark Web Marketplace

Read more →

Group-IB says phishing sites mimicking postal operators have increased by a third in first 10 days of December This article has been indexed from www.infosecurity-magazine.com Read the original article: Fake Delivery Websites Surge By 34% in December

Read more →

Sophos researchers said that the attackers’ social engineering tactics covered a range of guest scenarios This article has been indexed from www.infosecurity-magazine.com Read the original article: Hospitality Industry Faces New Password-Stealing Malware

Read more →

The IT industry bore the brunt of shadow IT incidents, with a 16% impact in 2022 and 2023 This article has been indexed from www.infosecurity-magazine.com Read the original article: New Report: 85% Firms Face Cyber Incidents, 11% From Shadow IT

Read more →

BlackCat ransomware resurfaces after FBI takedown attempt, defying law enforcement takedown This article has been indexed from www.infosecurity-magazine.com Read the original article: BlackCat Rises: Infamous Ransomware Gang Defies Law Enforcement

Read more →

S-RM study finds the direct cost of a cyber-incident increased by 11% in 2023 to an average of $1.7m This article has been indexed from www.infosecurity-magazine.com Read the original article: Cyber-Incident Costs Surge 11% as Budgets Remain Muted

Read more →

Interpol says its HAECHI IV operation led to the seizure of $300m linked to cyber scams and thousands of arrests This article has been indexed from www.infosecurity-magazine.com Read the original article: Global Police Seize $300m Linked to Online Scams

Read more →

Comcast Cable business Xfinity has suffered a data breach affecting almost 36 million customers This article has been indexed from www.infosecurity-magazine.com Read the original article: Xfinity Discloses Data Breach Impacting Nearly 36 Million

Read more →

The FBI has developed a decryption key it believes will save over 500 victims around $68m This article has been indexed from www.infosecurity-magazine.com Read the original article: Law Enforcement Confirms BlackCat Take Down, Decryption Key Offered to Victims

Read more →

The Resecurity team discovered the threat and promptly notified UAE law enforcement agencies This article has been indexed from www.infosecurity-magazine.com Read the original article: Smishing Triad Targets UAE Residents in Identity Theft Campaign

Read more →

The US intelligence community found no evidence of hacking but detected foreign influence operations during the 2022 federal elections This article has been indexed from www.infosecurity-magazine.com Read the original article: Foreign Actors Targeted 2022 US Elections, Intelligence Community Reveals

Read more →

The Qualys report also showed over 7000 vulnerabilities had proof-of-concept exploit code This article has been indexed from www.infosecurity-magazine.com Read the original article: More Than 26,000 Vulnerabilities Discovered in 2023

Read more →

The Qualys report also showed over 7000 vulnerabilities had proof-of-concept exploit code This article has been indexed from www.infosecurity-magazine.com Read the original article: 2023 Cyber Threats: 26,000+ Vulnerabilities, 97 Beyond CISA List

Read more →

A joint advisory by US and Australian government agencies urges organizations to protect themselves against Play group’s tactics This article has been indexed from www.infosecurity-magazine.com Read the original article: US and Australia Warn of Play Ransomware Threat

Read more →

VulnCheck claims the potential impact of Log4Shell was exaggerated This article has been indexed from www.infosecurity-magazine.com Read the original article: Impact of Log4Shell Bug Was Overblown, Say Researchers

Read more →

Iranian minister confirms cyber-attack was cause of widespread disruption at petrol stations This article has been indexed from www.infosecurity-magazine.com Read the original article: Iranian Fuel Supplies Crippled By Cyber-Attack

Read more →

One of America’s biggest lenders, Mr Cooper, has revealed a breach impacted 14.7 million customers This article has been indexed from www.infosecurity-magazine.com Read the original article: Over 14 Million Mortgage Customers Hit By Mr Cooper Breach

Read more →

Unauthorized actors breached health data, including details related to dental procedures and claims This article has been indexed from www.infosecurity-magazine.com Read the original article: MOVEit Vulnerability Hits Delta Dental: 7 Million Records Exposed

Read more →

Researchers observed malicious files advancing through email, PDF, URL and MSI This article has been indexed from www.infosecurity-magazine.com Read the original article: Qakbot’s Low-Volume Resurgence Targets Hospitality

Read more →

The group was second behind only LockBit in attacks targeting North America and Europe between January 2022 and October 2023 This article has been indexed from www.infosecurity-magazine.com Read the original article: ALPHV Second Most Prominent Ransomware Strain Before Reported Downtime

Read more →

RDP is singled out as insurer Coalition records 17 million cyber-attacks per day in the UK in 2023 This article has been indexed from www.infosecurity-magazine.com Read the original article: Insurer’s UK Honeypots Attacked 17 Million Times Per Day

Read more →

Data platform provider MongoDB has discovered a data breach impacting customers This article has been indexed from www.infosecurity-magazine.com Read the original article: MongoDB Investigates Customer Account Data Breach

Read more →

New CISA document promotes secure-by-design shift to ditch default password use This article has been indexed from www.infosecurity-magazine.com Read the original article: Technology Manufacturers Urged to Eliminate Passwords

Read more →

Four men have been charged with money laundering offenses linked to a major pig butchering operation This article has been indexed from www.infosecurity-magazine.com Read the original article: Four Charged in Connection With $80m Pig Butchering Scheme

Read more →

The British government is proposing minimum mandatory requirements for datacenter security and resilience This article has been indexed from www.infosecurity-magazine.com Read the original article: UK Plans Tough New Security Rules For Datacenters

Read more →

Idaho National Laboratory says 45,000 employees had personal information compromised in data breach This article has been indexed from www.infosecurity-magazine.com Read the original article: Over 45,000 Employees Hit By Nuclear Research Lab Breach

Read more →

The FBI and CISA detected that hackers linked to the Russian foreign intelligence service (SVR) have been targeting a JetBrains TeamCity vulnerability since September 2023 This article has been indexed from www.infosecurity-magazine.com Read the original article: Cozy Bear Hackers Target…

Read more →

Romance scammers have used the technique to great effect in recent years This article has been indexed from www.infosecurity-magazine.com Read the original article: Approval Phishing Scams Drain $1bn of Cryptocurrency from Victims

Read more →

More ransomware attacks now start with vulnerability exploitation than phishing, says Corvus Insurance This article has been indexed from www.infosecurity-magazine.com Read the original article: Vulnerabilities Now Top Initial Access Route For Ransomware

Read more →

Group-IB warns of new threat actor GambleForce, which uses SQL injection attacks to steal data from websites This article has been indexed from www.infosecurity-magazine.com Read the original article: GambleForce Group Targets Websites With SQL Injection

Read more →

Microsoft disrupts Vietnam based threat group Storm-1152, which has sold 750 million fake accounts This article has been indexed from www.infosecurity-magazine.com Read the original article: Microsoft Targets Prolific Outlook Fraudster Storm-1152

Read more →

MITRE’s EMB3D provides industrial manufacturers with a shared understanding to mitigate cyber threats This article has been indexed from www.infosecurity-magazine.com Read the original article: MITRE Launches Critical Infrastructure Threat Model Framework

Read more →

Russian cyber campaigns aim to disrupt Western allies’ ability and motivation to support Ukraine’s war effort This article has been indexed from www.infosecurity-magazine.com Read the original article: Russia Set to Ramp Up Attacks on Ukraine’s Allies This Winter

Read more →

A UK parliament report found that large swathes of critical national infrastructure are vulnerable to ransomware This article has been indexed from www.infosecurity-magazine.com Read the original article: UK at High Risk of Catastrophic Ransomware Attack, Government Ill-Prepared

Read more →

Microsoft has released updates for dozens of vulnerabilities including one zero-day flaw This article has been indexed from www.infosecurity-magazine.com Read the original article: Microsoft Fixes 34 CVEs and One Zero-Day in December Patch Tuesday

Read more →

The ICO has fined the Ministry of Defence after an email data breach put lives in danger This article has been indexed from www.infosecurity-magazine.com Read the original article: UK Ministry of Defence Fined For Afghan Data Breach

Read more →