Information Security Magazine

NCSC CEO Richard Horne said the cyber agency has managed twice as many nationally significant cyber incidents in the period from September 2024 to May 2025

A prolific DDoS-for-hire network has been dismantled by Polish authorities as part of a coordinated international crackdown

The UK government has announced that it will be replace its current SMS verification system with passkeys by the end of 2025

The Israeli spyware maker must pay $444,719 in compensatory damages to Meta and $167.25m in punitive damages

UK government minister Pat McFadden said during CYBERUK that the incidents affecting M&S, Co-op and Harrods show that cybersecurity is a necessity

Marsh says ransomware drove cyber insurance claims to second highest on record in 2024

Half of UK firms have over 10 cyber positions unfilled, according to Cisco

The Alvin Independent School District in Texas has notified over 47,000 individuals affected by a data breach exposing sensitive personal information

Global smishing campaigns linked to Chinese cybercriminals escalate with Smishing Triad’s new tools and techniques

Individuals allegedly linked to the DragonForce cybercriminal syndicate have claimed the attack on the three UK retailers

Prolific PhaaS operation Darcula uses Magic Cat software to steal over 800,000 cards in a seven-month period

The National Cyber Security Centre has published advice for retailers while the Co-op admits customer data was stolen

Ireland’s data protection watchdog accuses the Chinese social media giant of violating GDPR with transfers of European users’ data to China

Comparitech observed a significant decline in ransomware attacks in April, partly as a result of the RansomHub gang “going dark”

The US Cybersecurity and Infrastructure Security Agency has added two flaws affecting SonicWall products to its catalog of Known Exploited Vulnerabilities

NSC’s Alexei Bulazel said that failing to robustly respond to constant Chinese intrusions into critical infrastructure is in itself “escalatory”

FIDO Alliance found an uptick in awareness and takeup of passkeys as an alternative method to passwords

UK retailers including Harrods, M&S, and the Co-op are under a surge of cyber-attacks that may be linked by a common supplier or shared technological vulnerability

Anthropic has found its Claude chatbot is being used for automated political messaging, enabling AI-driven influence campaigns

Concerned about the fate of sensitive genetic information, the ICO and OPC have demanded that 23andMe prioritize customer data protection throughout its bankruptcy process