Researcher Finds Unfixable Yet Tricky to Exploit Flaw in Yubikeys Information Security Magazine 2 months 3 weeks ago A security flaw exploiting side channel attacks means some Yubikeys can be cloned
OnlyFans Hackers Targeted With Infostealer Malware Information Security Magazine 2 months 3 weeks ago Hackers interested in targeting OnlyFans users have themselves been singled out by an infostealing campaign
Russian Blamed For Mass Disinformation Campaign Ahead of US Election Information Security Magazine 2 months 3 weeks ago The DoJ says Russia paid a US company $10m to post disinformation that attracted millions of views online
US Government Set Out to Improve Internet Routing Security Information Security Magazine 2 months 3 weeks ago The US White House Office of the National Cyber Director proposes improving internet security by protecting the Border Gateway Protocol
North Korea Targeting Crypto Industry, Says FBI Information Security Magazine 2 months 3 weeks ago US law enforcement is tracking aggressive social engineering attacks against cryptocurrency operations
Red Teaming Tool Abused for Malware Deployment Information Security Magazine 2 months 3 weeks ago Cisco Talos has assessed that red teaming tool MacroPack is being abused by various threat actors in different geographies to deploy malware
Clearview AI Fined €30.5m by Dutch Watchdog Over Illegal Data Collection Information Security Magazine 2 months 3 weeks ago The US-based facial recognition data company may even have to pay up to €5.1m in penalties for non-compliance
Initial Access Brokers Target $2bn Revenue Companies Information Security Magazine 2 months 3 weeks ago Cyberint claims that initial access brokers target companies with average revenue of nearly $2bn
APP Fraud Dominates as Scams Hit All-Time High Information Security Magazine 2 months 3 weeks ago UK’s Financial Ombudsman warns fraud and scams hit a record high in Q2 2024
Civil Rights Groups Call For Spyware Controls Information Security Magazine 2 months 3 weeks ago Civil society and journalists’ organizations in Europe ask the EU to take steps to regulate spyware technologies
Rapid Growth of Password Reset Attacks Boosts Fraud and Account Takeovers Information Security Magazine 2 months 3 weeks ago Researchers say password reset attacks have grown fourfold in the last year and one in four password reset attempts are fraudulent
Active Ransomware Groups Surge by 56% in 2024 Information Security Magazine 2 months 3 weeks ago Searchlight Cyber observed a 56% rise in active ransomware groups in H1 2024, demonstrating the growing fragmentation of the ransomware landscape
Palo Alto's GlobalProtect VPN Spoofed to Deliver New Malware Variant Information Security Magazine 2 months 3 weeks ago A variant of the WikiLoader malware was observed being delivered via SEO poisoning and spoofing Palo Alto Networks’ GlobalProtect VPN software
Three Plead Guilty to Running MFA Bypass Site Information Security Magazine 2 months 3 weeks ago Three British men are facing jail after pleading guilty to running an MFA bypass site dubbed “OTP Agency”
TfL Claims Cyber-Incident is Not Impacting Services Information Security Magazine 2 months 3 weeks ago London’s transport body, TfL, is playing down the impact of a cybersecurity incident on its services
Irish Wildlife Park Warns Customers to Cancel Credit Cards Following Breach Information Security Magazine 2 months 3 weeks ago Fota Wildlife Park in Co Cork has told visitors to its website to cancel credit and debit cards, following a cyber-attack
US Authorities Issue RansomHub Ransomware Alert Information Security Magazine 2 months 3 weeks ago Agencies under the #Stopransomware banner publish details of RansomHub group’s tactics, indicators of compromise and essential mitigations
South Korea Police Investigates Telegram Over Deepfake Porn Information Security Magazine 2 months 3 weeks ago The Asian country’s law enforcement suspects the instant messaging app of abetting deepfake sex crimes
Verkada Facing Penalty After Hackers Viewed Sensitive Video Footage Information Security Magazine 2 months 3 weeks ago The US FTC has proposed a $2.95m fine for security camera firm Verkada for alleged security failings that allowed hackers to access customers' video footage
Cicada3301 Ransomware Group Emerges From the Ashes of ALPHV Information Security Magazine 2 months 3 weeks ago Truesec claims new Cicada3301 ransomware-as-a-service group could have ties to ALPHV/BlackCat and Brutus