News

Infosecurity Magazine7h
New Wiper Malware Targets Ukrainian Infrastructure
A new wiper malware known as PathWiper has been used in a destructive cyber-attack against a Ukrainian critical ...
Infosecurity Magazine6h
PayU Plugin Flaw Allows Account Takeover on 5000 WordPress Sites
A critical vulnerability in the PayU CommercePro plugin has put thousands of WordPress sites at risk by allowing ...
Infosecurity Magazine13h
FBI Warns Smart Home Users of Badbox 2.0 Botnet Threat
“The Badbox 2.0 botnet consists of millions of infected devices and maintains numerous backdoors to proxy services that ...
Infosecurity Magazine12h
US Tries to Claw Back $7m Taken by North Korean IT Workers
The $7.7m in funds were originally seized by the government in 2023 in a case involving Sim Hyon Sop – a staffer at the North ...
Infosecurity Magazine11h
Trump Administration Revises Cybersecurity Rules, Replaces Biden and Obama Orders
A new Trump Executive Order limits the use of cybersecurity-related sanctions only against foreign malicious actors ...
Infosecurity Magazine12h
Predicting Primes: Is This Discovery a Problem for Encryption?
New research claims prime numbers can now be predicted, potentially weakening encryption methods like RSA. While this poses ...
Infosecurity Magazine3d
Scattered Spider Uses Tech Vendor Impersonation and Phishing Kits to Target Helpdesks
The ransomware group combines IT vendor impersonation and phishing frameworks like Evilginx to breach its targets ...
Infosecurity Magazine5d
Phishing Campaign Uses Fake Booking.com Emails to Deliver Malware
A phishing campaign spoofing Booking.com has been observed targeting hospitality sector, using ClickFix to install malware ...
Infosecurity Magazine6d
Fake Docusign Pages Deliver Multi-Stage NetSupport RAT Malware
A new malware campaign using fake DocuSign verification pages to deploy the NetSupport Remote Access Trojan (RAT) has been ...
Infosecurity Magazine3dOpinion
DOJ Cross-Border Data Transfers Rule: Key Implications for Companies Operating in the US
Legal experts dissect how affected entities should respond to the DoJ's rule prohibiting data transactions with specific ...
Infosecurity-magazine.com5d
#Infosec2025: Majority of Compromises Caused by Stolen Credentials, No MFA
More than half (56%) of all compromises in Q1 2025 resulted from the theft of valid account credentials with no multi-factor authentication (MFA) in place, according to new research by Rapid7, ...
Infosecurity-magazine.com7d
Sophisticated Malware Campaign Targets Windows and Linux Systems
A newly uncovered malware campaign targeting both Windows and Linux systems has revealed advanced evasion and credential theft techniques, according to the Sysdig Threat Research Team (TRT). The ...