Information Security Magazine

A new scam detection tool from Get Safe Online uses AI to help individuals and small businesses protect themselves

Infosecurity recently joined an Immersive Labs Cyber Drill to experience how organizations can enhance their preparedness through training and simulations

Cisco Talos has observed the financially motivated threat actor targeting organizations globally with a MedusaLocker ransomware variant called “BabyLockerKZ”

A UK court has fined Sellafield Ltd £332,500 for cybersecurity failings related to the running of the Sellafield nuclear facility

The Counter Ransomware Initiative has released new guidance discouraging organizations from making ransomware payments

The new LiteSpeed Cache flaw (CVE-2024-47374) allows unauthenticated code injection across more than six million active installations

Microsoft and the US government have collectively seized over 100 websites used by Russian nation-state actor Star Blizzard

China-aligned CeranaKeeper discovered targeting Thai govt institutions using cloud services for data exfiltration

A new report by Red Canary has found that while cybersecurity budgets have risen, many security leaders still feel overwhelmed by the growing threat landscape

The ICO blamed the Police Service of Northern Ireland for procedural failings that exposed the personal data of 9843 personnel, putting police officers at risk

Researchers see an uptick in crypto-doubling investment scams following the first presidential debate

Egress found that attackers are becoming more adept at bypassing email security, such as using compromised accounts and the use of commodity campaigns

Threat group FIN7 is hiding infostealer malware on sites promising AI deepnude downloads

The ACSC, in collaboration with CISA and international partners, has released a guide for securing operational technology in critical sectors

North Korean APT Stonefly continues to launch cyber-attacks on US firms despite July indictment

A Black Kite report found that 67% of manufacturing firms have at least one vulnerability from CISA’s Known Exploited Vulnerabilities (KEV) catalog

Meta has announced a new information-sharing partnership with UK financial institutions to target social media fraud

Socura finds the percentage of women in cybersecurity positions has fallen seven percentage points since 2021 to 17%

UK hacker Robert Westbrook allegedly gained unauthorized access to corporate executives’ email accounts to profit from confidential financial information

The UK has sanctioned 16 members of the notorious Russian hacking group Evil Corp, exposing their links to the prolific LockBit ransomware group