Vulnerability Exploitation and Credential Theft Now Top Initial Access Vectors
Mandiant’s M-Trends report found that credential theft rose significantly in 2024, driven by the growing use of infostealers
Information Security Magazine
US Data Breach Victim Count Surges 26% Annually
7 months 1 week ago
The latest ITRC data finds breach volumes remained flat in Q1 but victim numbers increased 26% annually
M&S Grapples with Cyber Incident Affecting In-Store Services
7 months 1 week ago
Marks and Spencer has confirmed that it has been managing a cyber incident for the past few days which affected its contactless payments and click and collect services
Dutch Warn of “Whole of Society” Russian Cyber-Threat
7 months 1 week ago
Dutch intelligence report warns of growing Russian aggression with hybrid warfare
UK Romance Scams Spike 20% as Online Dating Grows
7 months 1 week ago
Barclays found that romance scam victims lost £8000 on average in 2024, a significant increase from the previous year
Microsoft Reports 92% Adoption Rate for Phishing-Resistant MFA Among Corporate Users
7 months 1 week ago
The tech giant has released its second Secure Future Initiative (SFI) progress report, showcasing its ongoing efforts to improve cybersecurity
SuperCard X Enables Contactless ATM Fraud in Real-Time
7 months 1 week ago
A new malware campaign utilizing NFC-relay techniques has been identified carrying out unauthorized transactions through POS systems and ATMs
Billbug Espionage Group Deploys New Tools in Southeast Asia
7 months 1 week ago
Billbug, a China-linked espionage group, has been observed targeting critical sectors in Southeast Asia with new tools
New Cryptojacking Malware Targets Docker with Novel Mining Technique
7 months 1 week ago
Darktrace and Cado said the new campaign highlights a shift towards alternative methods of mining cryptocurrencies
Scalllywag Ad Fraud Network Generates 1.4 Billion Bid Requests Daily
7 months 1 week ago
Security firm Human lifts the lid on prolific new ad fraud scheme dubbed “scallywag”
$40bn Southeast Asian Scam Sector Growing “Like a Cancer”
7 months 1 week ago
The UN has warned that Southeast Asian fraud groups are expanding their operations
Midnight Blizzard Targets European Diplomats with Wine Tasting Phishing Lure
7 months 2 weeks ago
Russian state actor Midnight Blizzard is using fake wine tasting events as a lure to spread malware for espionage purposes, according to Check Point
NTLM Hash Exploit Targets Poland and Romania Days After Patch
7 months 2 weeks ago
An NTLM hash disclosure spoofing vulnerability that leaks hashes with minimal user interaction has been observed being exploited in the wild
Senators Urge Cyber-Threat Sharing Law Extension Before Deadline
7 months 2 weeks ago
Bipartisan support grows in Congress to extend Cybersecurity Information Sharing Act for 10 years
Identity Attacks Now Comprise a Third of Intrusions
7 months 2 weeks ago
IBM warns of infostealer surge as attackers automate credential theft and adopt AI to generate highly convincing phishing emails en masse
Microsoft Thwarts $4bn in Fraud Attempts
7 months 2 weeks ago
Microsoft has blocked fraud worth $4bn as threat actors ramp up AI use
CISA Throws Lifeline to CVE Program with Last-Minute Contract Extension
7 months 2 weeks ago
MITRE will be able to keep running the CVE program for at least the next 11 months
Network Edge Devices the Biggest Entry Point for Attacks on SMBs
7 months 2 weeks ago
Sophos found that compromise of network edge devices, such as VPN appliances, accounted for 30% of incidents impacted SMBs in 2024
ICO Issues Merseyside-Based Law Firm £60,000 Fine After Cyber-Attack
7 months 2 weeks ago
A UK Law firm has been fined £60,000 after data stolen during a 2022 cyber-attack was published on the dark web
Hertz Data Breach Exposes Customer Information in Cleo Zero-Day Attack
7 months 2 weeks ago
Hertz has confirmed a data breach exposing customer data after a zero-day attack targeting file transfer software from Cleo Communications
Checked
1 hour 27 minutes ago