27 UK public sector organizations faced ICO enforcement actions in 2024, with three fines issued, according to URM Consulting This article has been indexed from www.infosecurity-magazine.com Read the original article: Most UK GDPR Enforcement Actions Targeted Public Sector in 2024
Tag: www.infosecurity-magazine.com
Malicious AI Models on Hugging Face Exploit Novel Attack Technique
The technique, called nullifAI, allows the models to bypass Hugging Face’s protective measures against malicious AI models This article has been indexed from www.infosecurity-magazine.com Read the original article: Malicious AI Models on Hugging Face Exploit Novel Attack Technique
Third-Party Risk Management Failures Expose UK Finance Sector
Orange Cyberdefense found that over half of UK financial firms suffered at least one third-party attack in 2024, linked to significant gaps in risk management strategies This article has been indexed from www.infosecurity-magazine.com Read the original article: Third-Party Risk Management…
Cybercriminals Weaponize Graphics Files in Phishing Attacks
Sophos has observed cybercriminals ramping up their use of graphics files as part of email phishing attacks to bypass conventional security protections This article has been indexed from www.infosecurity-magazine.com Read the original article: Cybercriminals Weaponize Graphics Files in Phishing Attacks
Europol Cracks Down on Global Child Abuse Network “The Com”
US and Europol dismantle neo-Nazi child abuse network in global crackdown against online exploitation This article has been indexed from www.infosecurity-magazine.com Read the original article: Europol Cracks Down on Global Child Abuse Network “The Com”
WordPress ASE Plugin Vulnerability Threatens Site Security
Patchstack urges admins to patch new WordPress ASE plugin vulnerability that lets users restore previous admin privileges This article has been indexed from www.infosecurity-magazine.com Read the original article: WordPress ASE Plugin Vulnerability Threatens Site Security
Lazarus Group Targets Bitdefender Researcher with LinkedIn Recruiting Scam
A Bitdefender researcher was targeted by North Korea’s Lazarus with the lure of a fake job offer This article has been indexed from www.infosecurity-magazine.com Read the original article: Lazarus Group Targets Bitdefender Researcher with LinkedIn Recruiting Scam
New UK Cyber Monitoring Centre Introduces ‘Richter Scale’ for Cyber-Attacks
This new independent non-profit was set up by the UK insurance industry to bring more transparency around cyber events This article has been indexed from www.infosecurity-magazine.com Read the original article: New UK Cyber Monitoring Centre Introduces ‘Richter Scale’ for Cyber-Attacks
NCSC Issues Guidance to Protect UK Research and Innovation
The UK’s National Cyber Security Centre has published a new set of resources for startups and researchers This article has been indexed from www.infosecurity-magazine.com Read the original article: NCSC Issues Guidance to Protect UK Research and Innovation
Spanish Police Arrest Suspected NATO and US Army Hacker
Spain’s National Police force has arrested a suspected data thief who targeted government and military victims This article has been indexed from www.infosecurity-magazine.com Read the original article: Spanish Police Arrest Suspected NATO and US Army Hacker
Sophisticated Phishing Campaign Targets Ukraine’s Largest Bank
A new phishing attack by UAC-0006 has been discovered targeting PrivatBank with malicious files in password-protected archives to evade detection This article has been indexed from www.infosecurity-magazine.com Read the original article: Sophisticated Phishing Campaign Targets Ukraine’s Largest Bank
Ransomware Payments Decline 35% as Victims Resist Demands
Chainalysis found that ransomware payments fell significantly year-over-year despite a recorded increase in the number of ransomware events in 2024 This article has been indexed from www.infosecurity-magazine.com Read the original article: Ransomware Payments Decline 35% as Victims Resist Demands
Mobile Malware Targeting Indian Banks Exposes 50,000 Users
Indian banking malware attack exposes 50,000 users, stealing financial data via SMS interception and phishing This article has been indexed from www.infosecurity-magazine.com Read the original article: Mobile Malware Targeting Indian Banks Exposes 50,000 Users
Five Eyes Launch Guidance to Improve Edge Device Security
The UK and its Five Eyes partners have launched new security guidance for edge device manufacturers and network defenders This article has been indexed from www.infosecurity-magazine.com Read the original article: Five Eyes Launch Guidance to Improve Edge Device Security
Destructive Attacks on Financial Institutions Surge
Contrast Security reveals a 12.5% annual increase in destructive cyber-attacks on banks This article has been indexed from www.infosecurity-magazine.com Read the original article: Destructive Attacks on Financial Institutions Surge
Cybercriminals Eye DeepSeek, Alibaba LLMs for Malware Development
Check Point has observed cybercriminals toy with Alibaba’s Qwen LLM to develop infostealers This article has been indexed from www.infosecurity-magazine.com Read the original article: Cybercriminals Eye DeepSeek, Alibaba LLMs for Malware Development
Destructive Attacks on Financial Institutions Surge 13%
Contrast Security reveals a 12.5% annual increase in destructive cyber-attacks on banks This article has been indexed from www.infosecurity-magazine.com Read the original article: Destructive Attacks on Financial Institutions Surge 13%
DaggerFly-Linked Linux Malware Targets Network Appliances
DaggerFly’s Lunar Peek campaign is using a new malware strain, identified by FortiGuard Labs, to compromise Linux networks This article has been indexed from www.infosecurity-magazine.com Read the original article: DaggerFly-Linked Linux Malware Targets Network Appliances
Threefold Increase in Malware Targeting Credential Stores
Picus Security reports infostealer surge after revealing credentials appear in 29% of malware This article has been indexed from www.infosecurity-magazine.com Read the original article: Threefold Increase in Malware Targeting Credential Stores
Sophisticated Phishing Attack Bypasses Microsoft ADFS MFA
A sophisticated phishing campaign targeting Microsoft ADFS has been observed, affecting more than 150 organizations This article has been indexed from www.infosecurity-magazine.com Read the original article: Sophisticated Phishing Attack Bypasses Microsoft ADFS MFA
Surge in Infostealer Attacks Threatens EMEA Organizations’ Data Security
Check Point Research has found over 10 million stolen credentials associated with EMEA organizations exposed on cybercrime markets This article has been indexed from www.infosecurity-magazine.com Read the original article: Surge in Infostealer Attacks Threatens EMEA Organizations’ Data Security
Texas to Establish Cyber Command Amid “Dramatic” Rise in Attacks
Texas Governor Greg Abbott announced a Cyber Command, designed to combat surging attacks on the state by nation-states and cybercriminals This article has been indexed from www.infosecurity-magazine.com Read the original article: Texas to Establish Cyber Command Amid “Dramatic” Rise in…
Casio and Others Hit by Magento Web Skimmer Campaign
Jscambler claims at least 17 sites have been infected with web skimmers, including Casio’s This article has been indexed from www.infosecurity-magazine.com Read the original article: Casio and Others Hit by Magento Web Skimmer Campaign
CISA Warns of Backdoor Vulnerability in Contec Patient Monitors
CISA has identified a backdoor in Contec CMS8000 devices that could allow unauthorized access to patient data and disrupt monitoring functions This article has been indexed from www.infosecurity-magazine.com Read the original article: CISA Warns of Backdoor Vulnerability in Contec Patient…
High-profile X Accounts Targeted in Phishing Campaign
Hackers hijack high-profile X accounts with phishing scams to steal credentials and promote fraudulent cryptocurrency schemes This article has been indexed from www.infosecurity-magazine.com Read the original article: High-profile X Accounts Targeted in Phishing Campaign
768 CVEs Exploited in the Wild in 2024
VulnCheck observed 768 public reports of CVEs exploited in the wild for the first time in 2024, a 20% rise compared to 2023 This article has been indexed from www.infosecurity-magazine.com Read the original article: 768 CVEs Exploited in the Wild…
European Police: Data Volumes and Deletion Hindering Investigations
A new Europol report warns of major challenges accessing and analyzing data for cybercrime investigations This article has been indexed from www.infosecurity-magazine.com Read the original article: European Police: Data Volumes and Deletion Hindering Investigations
UK Announces “World-First” AI Security Standard
The UK government has launched a new AI security code of practice it believes will become an ETSI standard This article has been indexed from www.infosecurity-magazine.com Read the original article: UK Announces “World-First” AI Security Standard
Threat Actors Target Public-Facing Apps for Initial Access
Cisco Talos found that exploitation of public-facing applications made up 40% of incidents it observed in Q4 2024, marking a notable shift in initial access techniques This article has been indexed from www.infosecurity-magazine.com Read the original article: Threat Actors Target…
Tata Technologies Hit by Ransomware Attack
The Indian tech giant temporarily suspended some of its IT services, which have now been restored This article has been indexed from www.infosecurity-magazine.com Read the original article: Tata Technologies Hit by Ransomware Attack
DeepSeek’s Flagship AI Model Under Fire for Security Vulnerabilities
Cyber reports exposed major security flaws in DeepSeek’s R1 LLM This article has been indexed from www.infosecurity-magazine.com Read the original article: DeepSeek’s Flagship AI Model Under Fire for Security Vulnerabilities
International Operation Dismantles Cracked and Nulled Cybercrime Hubs
A global law enforcement operation has taken down infrastructure used by Cracked.io and Nulled.io, which provide cybercriminal tools and services This article has been indexed from www.infosecurity-magazine.com Read the original article: International Operation Dismantles Cracked and Nulled Cybercrime Hubs
Google Blocked 2.36 Million Policy-Violating Apps
Google Play blocked 2.36 million policy-violating apps and banned 158,000 harmful developer accounts in 2024 This article has been indexed from www.infosecurity-magazine.com Read the original article: Google Blocked 2.36 Million Policy-Violating Apps
Attackers Increase Use of HTTP Clients for Account Takeovers
HTTP client tools used to compromise Microsoft 365 environments with 78% of tenants targeted in 2024 This article has been indexed from www.infosecurity-magazine.com Read the original article: Attackers Increase Use of HTTP Clients for Account Takeovers
Syncjacking Attack Enables Full Browser and Device Takeover
SquareX researchers warn that browser syncjacking could lead to full browser and device hijacking This article has been indexed from www.infosecurity-magazine.com Read the original article: Syncjacking Attack Enables Full Browser and Device Takeover
DeepSeek Exposed Database Leaks Sensitive Data
Researchers at Wiz uncovered a publicly accessible database belonging to Chinese GenAI provider DeepSeek that leaked sensitive data, including chat history This article has been indexed from www.infosecurity-magazine.com Read the original article: DeepSeek Exposed Database Leaks Sensitive Data
Ransomware Attack Disrupts Blood Donation Services in US
New York Blood Center Enterprises revealed that it has been hit by a ransomware attack, disrupting activities and blood drives at its centers across the country This article has been indexed from www.infosecurity-magazine.com Read the original article: Ransomware Attack Disrupts…
UK Organizations Boosting Cybersecurity Budgets
UK organizations are significantly increasing cybersecurity budgets, with a projected 31% growth in the next year This article has been indexed from www.infosecurity-magazine.com Read the original article: UK Organizations Boosting Cybersecurity Budgets
NCSC Calls on Vendors to Eradicate “Unforgivable” Vulnerabilities
The UK’s National Cyber Security Centre has released a new paper making it easier to assess if a flaw is “unforgivable” This article has been indexed from www.infosecurity-magazine.com Read the original article: NCSC Calls on Vendors to Eradicate “Unforgivable” Vulnerabilities
AI Surge Drives Record 1205% Increase in API Vulnerabilities
AI-related API vulnerabilities surged 1,205% in 2024, with 99% tied to API flaws, according to a new report by Wallarm This article has been indexed from www.infosecurity-magazine.com Read the original article: AI Surge Drives Record 1205% Increase in API Vulnerabilities
Nation-State Hackers Abuse Gemini AI Tool
Google highlighted significant abuse of its Gemini LLM tool by nation state actors to support malicious activities, including research and malware development This article has been indexed from www.infosecurity-magazine.com Read the original article: Nation-State Hackers Abuse Gemini AI Tool
New Hellcat Ransomware Gang Employs Humiliation Tactics
Cato Networks highlighted how the recently emerged HellCat ransomware group is using novel psychological tactics to court attention and pressurize victims This article has been indexed from www.infosecurity-magazine.com Read the original article: New Hellcat Ransomware Gang Employs Humiliation Tactics
Threat Actors Exploit Government Websites for Phishing
Cybercriminals exploit government websites using open redirects and phishing tactics, bypassing secure email gateway protections This article has been indexed from www.infosecurity-magazine.com Read the original article: Threat Actors Exploit Government Websites for Phishing
Breakout Time Accelerates 22% as Cyber-Attacks Speed Up
ReliaQuest warns threat actor innovation and infostealer activity helped to accelerate breakout time by 22% in 2024 This article has been indexed from www.infosecurity-magazine.com Read the original article: Breakout Time Accelerates 22% as Cyber-Attacks Speed Up
Chinese GenAI Startup DeepSeek Sparks Global Privacy Debate
Government agencies and privacy watchdogs have started investigating the Chinese AI chatbot provider over data privacy concerns This article has been indexed from www.infosecurity-magazine.com Read the original article: Chinese GenAI Startup DeepSeek Sparks Global Privacy Debate
Scores of Critical UK Government IT Systems Have Major Security Holes
The National Audit Office warns of major gaps in cyber resilience across UK government departments This article has been indexed from www.infosecurity-magazine.com Read the original article: Scores of Critical UK Government IT Systems Have Major Security Holes
ENGlobal Cyber-Attack Exposes Sensitive Data
Energy contractor ENGlobal reported that sensitive personal data was stolen by threat actors, with the incident disrupting operations for six weeks This article has been indexed from www.infosecurity-magazine.com Read the original article: ENGlobal Cyber-Attack Exposes Sensitive Data
Lynx Ransomware Group Unveiled with Sophisticated Affiliate Program
Group-IB researchers have exposed the highly organized affiliate platform and sophisticated operations of the Lynx Ransomware-as-a-Service group This article has been indexed from www.infosecurity-magazine.com Read the original article: Lynx Ransomware Group Unveiled with Sophisticated Affiliate Program
58% of Ransomware Victims Forced to Shut Down Operations
A Ponemon Institute survey highlighted the growing impact of ransomware attacks on victims’ revenue and reputation This article has been indexed from www.infosecurity-magazine.com Read the original article: 58% of Ransomware Victims Forced to Shut Down Operations
API Supply Chain Attacks Put Millions of Airline Users at Risk
An API supply-chain attack affecting a popular online travel booking service put millions of airline users at risk This article has been indexed from www.infosecurity-magazine.com Read the original article: API Supply Chain Attacks Put Millions of Airline Users at Risk
Mega Data Breaches Push US Victim Count to 1.7 Billion
The number of data breach victims increased 312% annually to exceed 1.7 billion in 2024, according to the ITRC 2024 Annual Data Breach Report This article has been indexed from www.infosecurity-magazine.com Read the original article: Mega Data Breaches Push US…
EU Sanctions Three Russians For 2020 Cyber-Attack on Estonia
The three Russian hackers are believed to be part of Unit 29155 of the GRU, also known as Cadet Blizzard, Ember Bear and Ruinous Ursa This article has been indexed from www.infosecurity-magazine.com Read the original article: EU Sanctions Three Russians…
British Vishing-as-a-Service Trio Sentenced
Three men have been sentenced after pleading guilty to running an account hijacking service for fraudsters This article has been indexed from www.infosecurity-magazine.com Read the original article: British Vishing-as-a-Service Trio Sentenced
Hidden Text Salting Disrupts Brand Name Detection Systems
A new phishing tactic has been identified by Cisco Talos, using hidden text salting to evade email security measures This article has been indexed from www.infosecurity-magazine.com Read the original article: Hidden Text Salting Disrupts Brand Name Detection Systems
SaaS Breaches Skyrocket 300% as Traditional Defenses Fall Short
Obsidian found that threat actors are focusing on SaaS applications to steal sensitive data, with most organizations’ security measures not set up to deal with these attacks This article has been indexed from www.infosecurity-magazine.com Read the original article: SaaS Breaches…
New Phishing Campaign Targets Mobile Devices with Malicious PDFs
A novel phishing campaign identified by Zimperium targets mobile users with malicious PDFs, impersonating USPS to steal credentials This article has been indexed from www.infosecurity-magazine.com Read the original article: New Phishing Campaign Targets Mobile Devices with Malicious PDFs
CISOs Boost Crisis Simulation Budgets Amid High-Profile Cyber-Attacks
74% of CISOs plan to increase their cyber crisis simulation budgets in 2025 This article has been indexed from www.infosecurity-magazine.com Read the original article: CISOs Boost Crisis Simulation Budgets Amid High-Profile Cyber-Attacks
Subaru Bug Enabled Remote Vehicle Tracking and Hijacking
A now-patched vulnerability could have enabled threat actors to remotely control Subaru cars This article has been indexed from www.infosecurity-magazine.com Read the original article: Subaru Bug Enabled Remote Vehicle Tracking and Hijacking
Change Healthcare Breach Almost Doubles in Size to 190 Million Victims
Change Healthcare has claimed 190 million customers were affected by a mega-breach last year This article has been indexed from www.infosecurity-magazine.com Read the original article: Change Healthcare Breach Almost Doubles in Size to 190 Million Victims
AWS Announces £5m Grant for Cyber Education in the UK
Amazon Web Services has launched its Cyber Education Grant Program in the UK This article has been indexed from www.infosecurity-magazine.com Read the original article: AWS Announces £5m Grant for Cyber Education in the UK
Russian Scammers Target Crypto Influencers with Infostealers
Crazy Evil, a group of crypto scammers, exploit NFTs and cryptocurrencies with malware targeting influencers and tech professionals This article has been indexed from www.infosecurity-magazine.com Read the original article: Russian Scammers Target Crypto Influencers with Infostealers
North Korean IT Workers Holding Data Hostage for Extortion, FBI Warns
A new FBI advisory warned that North Korean IT worker schemes have escalated their activities in recent months to include data extortion This article has been indexed from www.infosecurity-magazine.com Read the original article: North Korean IT Workers Holding Data Hostage…
Ransomware Gangs Linked by Shared Code and Ransom Notes
SentinelOne researchers highlighted similarities in the approaches used by the HellCat and Morpheus ransomware groups, suggesting shared infrastructure This article has been indexed from www.infosecurity-magazine.com Read the original article: Ransomware Gangs Linked by Shared Code and Ransom Notes
Chained Vulnerabilities Exploited in Ivanti Cloud Service Appliances
Threat actors chained Ivanti CSA vulnerabilities for RCE, credential theft & webshell deployment This article has been indexed from www.infosecurity-magazine.com Read the original article: Chained Vulnerabilities Exploited in Ivanti Cloud Service Appliances
Bookmakers Ramp Up Efforts to Combat Arbitrage Betting Fraud
Arbitrage betting fraud rises, forcing bookmakers to adopt stricter measures against automated scams This article has been indexed from www.infosecurity-magazine.com Read the original article: Bookmakers Ramp Up Efforts to Combat Arbitrage Betting Fraud
CISOs Dramatically Increase Boardroom Influence but Still Lack Soft Skills
Splunk reveals that 82% of CISOs now report directly to the CEO, but many lack EQ This article has been indexed from www.infosecurity-magazine.com Read the original article: CISOs Dramatically Increase Boardroom Influence but Still Lack Soft Skills
Cisco Fixes Critical Vulnerability in Meeting Management
The network equipment giant urged customers to patch immediately This article has been indexed from www.infosecurity-magazine.com Read the original article: Cisco Fixes Critical Vulnerability in Meeting Management
New GhostGPT AI Chatbot Facilitates Malware Creation and Phishing
Cybercriminals are selling access to the malicious GenAI chatbot via Telegram, providing rapid assistance for a range of nefarious activities, according to Abnormal Security This article has been indexed from www.infosecurity-magazine.com Read the original article: New GhostGPT AI Chatbot Facilitates…
Trump Pardons Silk Road Founder Ulbricht
President Trump has pardoned the founder of original dark web marketplace Silk Road This article has been indexed from www.infosecurity-magazine.com Read the original article: Trump Pardons Silk Road Founder Ulbricht
Tycoon 2FA Phishing Kit Upgraded to Bypass Security Measures
Threat researchers analyzed the updated Tycoon 2FA phishing kit, which bypasses MFA This article has been indexed from www.infosecurity-magazine.com Read the original article: Tycoon 2FA Phishing Kit Upgraded to Bypass Security Measures
PlushDaemon APT Targeted South Korean VPN Software
PlushDaemon APT hacked South Korean VPN software with SlowStepper backdoor as part of a 2023 espionage campaign This article has been indexed from www.infosecurity-magazine.com Read the original article: PlushDaemon APT Targeted South Korean VPN Software
73% of UK Education Sector Hit by Cyber-Attacks in Past Five Years
New ESET research reveals that 73% of UK educational institutions experienced at least one cyber-attack or breach in the past five years This article has been indexed from www.infosecurity-magazine.com Read the original article: 73% of UK Education Sector Hit by…
Ransomware Attacks Surge to Record High in December 2024
NCC Group observed 574 global ransomware attacks in December, the highest monthly volume it has recorded This article has been indexed from www.infosecurity-magazine.com Read the original article: Ransomware Attacks Surge to Record High in December 2024
Major Cybersecurity Vendors’ Credentials Found on Dark Web
Cyble has found thousands of security vendors’ credentials on the dark web, likely pulled from infostealer logs This article has been indexed from www.infosecurity-magazine.com Read the original article: Major Cybersecurity Vendors’ Credentials Found on Dark Web
Account Compromise and Phishing Top Healthcare Security Incidents
Netwrix claims 84% of healthcare organizations detected a cyber-attack in the past year This article has been indexed from www.infosecurity-magazine.com Read the original article: Account Compromise and Phishing Top Healthcare Security Incidents
Cloudflare Mitigates Record-Breaking 5.6Tbps DDoS Attack
Cloudflare warns of a surge in hyper-volumetric DDoS after revealing it stopped a massive 5.6Tbps attack This article has been indexed from www.infosecurity-magazine.com Read the original article: Cloudflare Mitigates Record-Breaking 5.6Tbps DDoS Attack
New Mirai Malware Variant Targets AVTECH Cameras, Huawei Routers
Murdoc_Botnet used Mirai malware to exploit IoT vulnerabilities, targeting devices globally This article has been indexed from www.infosecurity-magazine.com Read the original article: New Mirai Malware Variant Targets AVTECH Cameras, Huawei Routers
UK’s New Digital IDs Raise Security and Privacy Fears
Security experts have outlined security and privacy concerns around the UK government’s GOV.UK Wallet, which will allow citizens to store all their ID documents in a single place This article has been indexed from www.infosecurity-magazine.com Read the original article: UK’s…
Phishing Risks Rise as Zendesk Subdomains Facilitate Attacks
A CloudSEK report revealed Zendesk’s platform can be exploited for phishing and investment scams This article has been indexed from www.infosecurity-magazine.com Read the original article: Phishing Risks Rise as Zendesk Subdomains Facilitate Attacks
GDPR Fines Total €1.2bn in 2024
Data from DLA Piper showed a 33% year-on-year fall in GDPR fines issued in Europe in 2024, with total penalties reaching €1.2bn This article has been indexed from www.infosecurity-magazine.com Read the original article: GDPR Fines Total €1.2bn in 2024
Oracle To Address 320 Vulnerabilities in January Patch Update
Critical flaws include those in Oracle Supply Chain products This article has been indexed from www.infosecurity-magazine.com Read the original article: Oracle To Address 320 Vulnerabilities in January Patch Update
Russian Ransomware Groups Deploy Email Bombing and Teams Vishing
Sophos has warned of IT impersonation vishing attacks designed to remotely deploy ransomware This article has been indexed from www.infosecurity-magazine.com Read the original article: Russian Ransomware Groups Deploy Email Bombing and Teams Vishing
Most European Privacy Teams Are Understaffed and Underfunded
ISACA research claims privacy budgets are set to decline further in 2025 This article has been indexed from www.infosecurity-magazine.com Read the original article: Most European Privacy Teams Are Understaffed and Underfunded
HPE Launches Investigation After Hacker Claims Data Breach
HPE is investigating claims of data breach by hacker IntelBroker, who offered stolen files for sale This article has been indexed from www.infosecurity-magazine.com Read the original article: HPE Launches Investigation After Hacker Claims Data Breach
Indian APT Group DONOT Misuses App for Intelligence Gathering
Android apps, linked to APT group DONOT, disguised as a chat platform for intelligence gathering This article has been indexed from www.infosecurity-magazine.com Read the original article: Indian APT Group DONOT Misuses App for Intelligence Gathering
Ukraine’s State Registers Restored Following Cyber-Attack
The December 2024 cyber-attack on the country’s state registers, was attributed to Russian military intelligence services This article has been indexed from www.infosecurity-magazine.com Read the original article: Ukraine’s State Registers Restored Following Cyber-Attack
US Sanctions Chinese Hackers for Treasury, Telecom Breaches
The US has issued sanctions against an individual and a company involved in recent high-profile compromises of government officials by Chinese state-affiliated hackers This article has been indexed from www.infosecurity-magazine.com Read the original article: US Sanctions Chinese Hackers for Treasury,…
Former CIA Analyst Pleads Guilty to Sharing Top Secret Files
CIA analysts Asif William Rahman has pleaded guilty to sharing classified documents about an Israeli attack This article has been indexed from www.infosecurity-magazine.com Read the original article: Former CIA Analyst Pleads Guilty to Sharing Top Secret Files
Data on Half a Million Hotel Guests Exposed After Otelier Breach
At least half a million accounts have been compromised after a breach at hotel management software firm Otelier This article has been indexed from www.infosecurity-magazine.com Read the original article: Data on Half a Million Hotel Guests Exposed After Otelier Breach
US Supreme Court Gives Green Light to TikTok Ban
The Supreme Court has upheld a law that could potentially ban TikTok in the US This article has been indexed from www.infosecurity-magazine.com Read the original article: US Supreme Court Gives Green Light to TikTok Ban
Lazarus Group Targets Developers in New Data Theft Campaign
SecurityScorecard identified a new campaign in which the North Korean Lazarus group aims to steal source code, secrets and cryptocurrency wallet keys from developer environments This article has been indexed from www.infosecurity-magazine.com Read the original article: Lazarus Group Targets Developers…
Star Blizzard Targets WhatsApp in New Campaign
Microsoft highlighted a new Star Blizzard campaign targeting WhatsApp accounts, as the group adapts its TTPs following the takedown of its infrastructure by law enforcement This article has been indexed from www.infosecurity-magazine.com Read the original article: Star Blizzard Targets WhatsApp…
Noyb Files GDPR Complaints Against TikTok and Five Chinese Tech Giants
AliExpress, Shein, Temu, TikTok, WeChat and Xiaomi are accused of operating unlawful data transfers to China This article has been indexed from www.infosecurity-magazine.com Read the original article: Noyb Files GDPR Complaints Against TikTok and Five Chinese Tech Giants
DORA Takes Effect: Financial Firms Still Navigating Compliance Headwinds
The EU’s DORA regulation is in effect as of January 17, with mixed evidence around compliance levels among financial firms This article has been indexed from www.infosecurity-magazine.com Read the original article: DORA Takes Effect: Financial Firms Still Navigating Compliance Headwinds
Middle Eastern Real Estate Fraud Grows with Online Listings
Middle East real estate scams are surging as fraudsters exploit online listings and bypassed due diligence checks This article has been indexed from www.infosecurity-magazine.com Read the original article: Middle Eastern Real Estate Fraud Grows with Online Listings
Trump’s Truth Social Users Targeted by Rampant Scams Online
Truth Social, launched by the Trump Media & Technology Group in 2022, has become a hotspot for scams like phishing and investment fraud This article has been indexed from www.infosecurity-magazine.com Read the original article: Trump’s Truth Social Users Targeted by…
Biden Tightens Software Supply Chain Security Requirements Ahead of Trump Takeover
The US President’s second cybersecurity Executive Order will impose stricter security standards on software providers This article has been indexed from www.infosecurity-magazine.com Read the original article: Biden Tightens Software Supply Chain Security Requirements Ahead of Trump Takeover
DORA Compliance Costs Soar Past €1m for Many UK and EU Businesses
Compliance with the Digital Operational Resilience Act (DORA) has cost many businesses over €1 million, according to research from Rubrik This article has been indexed from www.infosecurity-magazine.com Read the original article: DORA Compliance Costs Soar Past €1m for Many UK…
New Hacking Group Leaks Configuration of 15,000 Fortinet Firewalls
The leak likely comes from a zero-day exploit affecting Fortinet’s products This article has been indexed from www.infosecurity-magazine.com Read the original article: New Hacking Group Leaks Configuration of 15,000 Fortinet Firewalls
Hackers Use Image-Based Malware and GenAI to Evade Email Security
HP Wolf highlighted novel techniques used by attackers to bypass email protections, including embedding malicious code inside images and utilizing GenAI This article has been indexed from www.infosecurity-magazine.com Read the original article: Hackers Use Image-Based Malware and GenAI to Evade…