Tag: www.infosecurity-magazine.com

New Generation of Malicious QR Codes Uncovered by Researchers

Barracuda researchers have identified a new wave of QR code phishing attacks that evade traditional security measures and pose a significant threat to email security This article has been indexed from www.infosecurity-magazine.com Read the original article: New Generation of Malicious…

UK Launches New Competition to Spur Cybersecurity Careers

The UK government’s Cyber Team Competition offer applicants the chance to receive advanced training, mentorship and networking opportunities This article has been indexed from www.infosecurity-magazine.com Read the original article: UK Launches New Competition to Spur Cybersecurity Careers

Australia Introduces First Standalone Cybersecurity Law

The Australian government’s Cyber Security Bill 2024 will mandate cybersecurity standards for smart devices and introduce ransomware reporting requirements This article has been indexed from www.infosecurity-magazine.com Read the original article: Australia Introduces First Standalone Cybersecurity Law

American Water Hit by Cyberattack, Billing Systems Disrupted

American Water, the largest water utility in the US, discovered a cyber-attack impacting internal systems on October 3 This article has been indexed from www.infosecurity-magazine.com Read the original article: American Water Hit by Cyberattack, Billing Systems Disrupted

Cloud Security Risks Surge as 38% of Firms Face Exposures

Tenable’s latest report reveals 38% of organizations face risks from a “toxic cloud triad” of security gaps This article has been indexed from www.infosecurity-magazine.com Read the original article: Cloud Security Risks Surge as 38% of Firms Face Exposures

31 New Ransomware Groups Join the Ecosystem in 12 Months

Secureworks reports a 30% increase in active ransomware groups despite law enforcement efforts, with 31 new groups emerging in the past year This article has been indexed from www.infosecurity-magazine.com Read the original article: 31 New Ransomware Groups Join the Ecosystem…

Cyber Fraud Cost up to $37bn in Southeast Asia Last Year

A UN report found that organized crime groups in the region have rapidly integrated malware, generative AI and deepfakes to enhance their fraud activities This article has been indexed from www.infosecurity-magazine.com Read the original article: Cyber Fraud Cost up to…

Universal Music Group Admits Data Breach

UMG, a major music corporation, reported a July 2024 data breach affecting 680 US residents This article has been indexed from www.infosecurity-magazine.com Read the original article: Universal Music Group Admits Data Breach

ICO Releases New Data Protection Audit Framework

The UK’s ICO said the framework is designed to help businesses build trust and encourage a positive data protection culture This article has been indexed from www.infosecurity-magazine.com Read the original article: ICO Releases New Data Protection Audit Framework

EU Urged to Harmonize Incident Reporting Requirements

Risk managers association FERMA has warned that new EU cyber legislation means there is an inconsistent approach to incident reporting requirements This article has been indexed from www.infosecurity-magazine.com Read the original article: EU Urged to Harmonize Incident Reporting Requirements

Tech Professionals Highlight Critical AI Security Skills Gap

A new O’Reilly survey showed a shortage of AI security skills, while AI-enabled security tools become tech professionals’ top priority for the coming year This article has been indexed from www.infosecurity-magazine.com Read the original article: Tech Professionals Highlight Critical AI…

Get Safe Online Launches New Scam Detector

A new scam detection tool from Get Safe Online uses AI to help individuals and small businesses protect themselves This article has been indexed from www.infosecurity-magazine.com Read the original article: Get Safe Online Launches New Scam Detector

How Confidence Between Teams Impacts Cyber Incident Outcomes

Infosecurity recently joined an Immersive Labs Cyber Drill to experience how organizations can enhance their preparedness through training and simulations This article has been indexed from www.infosecurity-magazine.com Read the original article: How Confidence Between Teams Impacts Cyber Incident Outcomes

New MedusaLocker Ransomware Variant Deployed by Threat Actor

Cisco Talos has observed the financially motivated threat actor targeting organizations globally with a MedusaLocker ransomware variant called “BabyLockerKZ” This article has been indexed from www.infosecurity-magazine.com Read the original article: New MedusaLocker Ransomware Variant Deployed by Threat Actor

Sellafield Fined for Cybersecurity Failures at Nuclear Site

A UK court has fined Sellafield Ltd £332,500 for cybersecurity failings related to the running of the Sellafield nuclear facility This article has been indexed from www.infosecurity-magazine.com Read the original article: Sellafield Fined for Cybersecurity Failures at Nuclear Site

CRI Releases Guidance on Avoiding Ransomware Payments

The Counter Ransomware Initiative has released new guidance discouraging organizations from making ransomware payments This article has been indexed from www.infosecurity-magazine.com Read the original article: CRI Releases Guidance on Avoiding Ransomware Payments

Litespeed Cache Plugin Flaw Allows XSS Attack, Update Now

The new LiteSpeed Cache flaw (CVE-2024-47374) allows unauthenticated code injection across more than six million active installations This article has been indexed from www.infosecurity-magazine.com Read the original article: Litespeed Cache Plugin Flaw Allows XSS Attack, Update Now

Northern Ireland Police Data Leak Sees Service Fined by ICO

The ICO blamed the Police Service of Northern Ireland for procedural failings that exposed the personal data of 9843 personnel, putting police officers at risk This article has been indexed from www.infosecurity-magazine.com Read the original article: Northern Ireland Police Data…

FIN7 Gang Hides Malware in AI “Deepnude” Sites

Threat group FIN7 is hiding infostealer malware on sites promising AI deepnude downloads This article has been indexed from www.infosecurity-magazine.com Read the original article: FIN7 Gang Hides Malware in AI “Deepnude” Sites

ACSC and CISA Launch Critical OT Cybersecurity Guidelines

The ACSC, in collaboration with CISA and international partners, has released a guide for securing operational technology in critical sectors This article has been indexed from www.infosecurity-magazine.com Read the original article: ACSC and CISA Launch Critical OT Cybersecurity Guidelines

80% of Manufacturing Firms Have Critical Vulnerabilities

A Black Kite report found that 67% of manufacturing firms have at least one vulnerability from CISA’s Known Exploited Vulnerabilities (KEV) catalog This article has been indexed from www.infosecurity-magazine.com Read the original article: 80% of Manufacturing Firms Have Critical Vulnerabilities

Meta Teams Up with Banks to Target Fraudsters

Meta has announced a new information-sharing partnership with UK financial institutions to target social media fraud This article has been indexed from www.infosecurity-magazine.com Read the original article: Meta Teams Up with Banks to Target Fraudsters

Share of Women in UK Cyber Roles Now Just 17%

Socura finds the percentage of women in cybersecurity positions has fallen seven percentage points since 2021 to 17% This article has been indexed from www.infosecurity-magazine.com Read the original article: Share of Women in UK Cyber Roles Now Just 17%

British Hacker Charged in the US For $3.75m Insider Trading Scheme

UK hacker Robert Westbrook allegedly gained unauthorized access to corporate executives’ email accounts to profit from confidential financial information This article has been indexed from www.infosecurity-magazine.com Read the original article: British Hacker Charged in the US For $3.75m Insider Trading…

T-Mobile to Pay $15.75m Penalty for Multiple Data Breaches

T-Mobile will pay $15.75m to the US Treasury for multiple data breaches in 2021, 2022 and 2023 and has agreed to invest in improved cybersecurity defenses This article has been indexed from www.infosecurity-magazine.com Read the original article: T-Mobile to Pay…

Ten Million Brits Hit By Fraud in Just Three Years

New Santander research claims 10 million UK consumers have suffered fraud since 2021, costing the economy £16bn This article has been indexed from www.infosecurity-magazine.com Read the original article: Ten Million Brits Hit By Fraud in Just Three Years

Cyber-Attacks Hit Over a Third of English Schools

A survey by Ofqual found that 20% of English schools and colleges were unable to immediately recover after being hit by a cyber incident This article has been indexed from www.infosecurity-magazine.com Read the original article: Cyber-Attacks Hit Over a Third…

PwC Urges Boards to Give CISOs a Seat at the Table

PwC claims fewer than 50% of businesses involve their CISOs in strategic planning on cyber This article has been indexed from www.infosecurity-magazine.com Read the original article: PwC Urges Boards to Give CISOs a Seat at the Table

UK and US Warn of Growing Iranian Spear Phishing Threat

Security agencies from the UK and US are urging individuals with Middle East links to beware of Iranian spear phishing attacks This article has been indexed from www.infosecurity-magazine.com Read the original article: UK and US Warn of Growing Iranian Spear…

Man Arrested Over UK Railway Station Wi-Fi Hack

The suspect is an employee of Global Reach Technology, which provides some Wi-Fi services to Network Rail This article has been indexed from www.infosecurity-magazine.com Read the original article: Man Arrested Over UK Railway Station Wi-Fi Hack

Russian Hackers Target Ukrainian Servicemen via Messaging Apps

Russian cyber-attacks on Ukrainian servicemen underscore the escalating use of digital warfare tactics in the ongoing conflict This article has been indexed from www.infosecurity-magazine.com Read the original article: Russian Hackers Target Ukrainian Servicemen via Messaging Apps

Data Breach at MC2 Data Leaves 100 Million at Risk of Fraud

The data leak exposed personal data of 100m US citizens, resulting from a misconfigured database made accessible online This article has been indexed from www.infosecurity-magazine.com Read the original article: Data Breach at MC2 Data Leaves 100 Million at Risk of…

First Mobile Crypto Drainer Found on Google Play

Researchers discover mobile crypto drainer malware hidden in WalletConnect app garnering 10,000 downloads This article has been indexed from www.infosecurity-magazine.com Read the original article: First Mobile Crypto Drainer Found on Google Play

82% of Phishing Sites Now Target Mobile Devices

82% of all phishing sites target mobile devices, with 76% using HTTPS to appear secure This article has been indexed from www.infosecurity-magazine.com Read the original article: 82% of Phishing Sites Now Target Mobile Devices

CrowdStrike Apologizes for IT Outage, Defends Microsoft Kernel Access

Adam Meyers, CrowdStrike VP for counter-adversary operations, appeared before a US congressional committee to answer questions about its July faulty software update This article has been indexed from www.infosecurity-magazine.com Read the original article: CrowdStrike Apologizes for IT Outage, Defends Microsoft…

Threat Actors Shift to JavaScript-Based Phishing Attacks

Cybercriminals are increasingly prioritizing script-based phishing techniques over one based on traditional malicious documents This article has been indexed from www.infosecurity-magazine.com Read the original article: Threat Actors Shift to JavaScript-Based Phishing Attacks

US Mulls Ban on Russian, Chinese Parts in Connected Vehicles

The US Commerce Department wants to prohibit the sale or import of connected vehicles with Russian or Chinese-made hardware and software This article has been indexed from www.infosecurity-magazine.com Read the original article: US Mulls Ban on Russian, Chinese Parts in…

Telegram Boss Agrees to Closer Police Cooperation

Pavel Durov says he will share details of “bad actors” and clean up Telegram’s search function This article has been indexed from www.infosecurity-magazine.com Read the original article: Telegram Boss Agrees to Closer Police Cooperation

Kryptina Ransomware Resurfaces in Enterprise Attacks By Mallox

Kryptina, a free Ransomware-as-a-Service tool available on dark web forums, is now being used by Mallox ransomware affiliates This article has been indexed from www.infosecurity-magazine.com Read the original article: Kryptina Ransomware Resurfaces in Enterprise Attacks By Mallox

Vulnerabilities Found in Popular Houzez Theme and Plugin

The flaws are dangerous as the Houzez theme and Login Register plugin could allow privilege escalation by unauthenticated users This article has been indexed from www.infosecurity-magazine.com Read the original article: Vulnerabilities Found in Popular Houzez Theme and Plugin

LinkedIn Pauses GenAI Training Following ICO Concerns

The Information Commissioner’s Office says it’s pleased that LinkedIn has temporarily suspended its generative AI model training This article has been indexed from www.infosecurity-magazine.com Read the original article: LinkedIn Pauses GenAI Training Following ICO Concerns

German Police Shutter 47 Criminal Crypto Exchanges

Officers in Germany have shut down 47 cryptocurrency exchanges they accused of facilitating cybercrime This article has been indexed from www.infosecurity-magazine.com Read the original article: German Police Shutter 47 Criminal Crypto Exchanges

Cybersecurity Skills Gap Leaves Cloud Environments Vulnerable

A new report by Check Point Software highlights a significant increase in cloud security incidents, largely due to a lack of cybersecurity expertise and employee training This article has been indexed from www.infosecurity-magazine.com Read the original article: Cybersecurity Skills Gap…

Western Agencies Warn Risk from Chinese-Controlled Botnet

Cyber and law enforcement agencies across the “Five Eyes” countries issue warning about large-scale botnet linked to Chinese firm and Flax Typhoon group This article has been indexed from www.infosecurity-magazine.com Read the original article: Western Agencies Warn Risk from Chinese-Controlled…

Cryptojacking Gang TeamTNT Makes a Comeback

Group-IB claims to have found evidence of a new TeamTNT cryptojacking campaign This article has been indexed from www.infosecurity-magazine.com Read the original article: Cryptojacking Gang TeamTNT Makes a Comeback

Insecure APIs and Bot Attacks Cost Global Firms $186bn

Thales claims API insecurity and automated bot abuse is costing organizations an estimated $186bn annually This article has been indexed from www.infosecurity-magazine.com Read the original article: Insecure APIs and Bot Attacks Cost Global Firms $186bn

Google Street View Images Used For Extortion Scams

Attackers use Google Street View images to put pressure on victims of “sextortion” scams This article has been indexed from www.infosecurity-magazine.com Read the original article: Google Street View Images Used For Extortion Scams

CISA Issues Advice to Help Eliminate XSS Bugs

The US Cybersecurity and Infrastructure Security Agency is trying to eradicate cross-site scripting vulnerabilities This article has been indexed from www.infosecurity-magazine.com Read the original article: CISA Issues Advice to Help Eliminate XSS Bugs

US Looks to Align Security Across Government

CISA project will align cybersecurity polices across the Federal Civilian Executive Branch of US government This article has been indexed from www.infosecurity-magazine.com Read the original article: US Looks to Align Security Across Government

ICO Acts Against Sky Betting and Gaming Over Cookies

Online gambling site, Sky Betting and Gaming, found to have “unlawfully” processed data through advertising cookies This article has been indexed from www.infosecurity-magazine.com Read the original article: ICO Acts Against Sky Betting and Gaming Over Cookies

Singapore Launches Accelerator for International Cybersecurity Startups

The CyberBoost: Catalyse is supported by the Cyber Security Agency of Singapore, the National University of Singapore and UK-based innovation hub Plexal This article has been indexed from www.infosecurity-magazine.com Read the original article: Singapore Launches Accelerator for International Cybersecurity Startups