Information Security Magazine

A new WEF report highlighted growing disparities in the cyber capabilities of different types of organizations and regions

Three Russian men have been indicted on money laundering charges connected to cryptocurrency mixers

Telefonica has confirmed a breach of its internal ticketing system exposing more than 236,000 lines of customer data

CrowdStrike warned it had observed a phishing campaign impersonating the firm’s recruitment process to lure victims into downloading cryptominer

A large-scale cyber-attack has targeted the information system of Slovakia’s land registry, impacting the management of land and property records

The US medical billing firm is notifying over 360,000 customers that their personal, financial and medical data may have been exposed

Trend Micro detailed how attackers are using a fake proof-of-concept for a critical Microsoft vulnerability, designed to steal sensitive data from security researchers

Critical Fancy Product Designer plugin flaws risk remote code execution and SQL injection attacks on WordPress sites

Cyber-attacks by China-linked MirrorFace targeted Japan’s national security information in major campaigns operating since 2019

A school district said that PowerSchool paid a ransom to prevent the attackers releasing data it accessed of students and teachers in North America

A court has ruled the EU Commission infringed an individual’s right to the protection of their personal data by transferring their details to the US

The UK government has pledged nearly £2m to 30 new Cyber Local projects designed to enhance cyber resilience

Ivanti customers are urged to patch two new bugs in the security vendor's products, one of which is being actively exploited

The Green Bay Packers disclosed on Monday that their official online store was breached and customer information stolen

The voluntary Cyber Trust Mark labeling program will allow consumers to assess the cybersecurity of IoT devices when making purchasing decisions

A new PayPal phishing scam used genuine money requests, bypassing security checks to deceive recipients

Electronics firm Casio revealed that ransomware attackers have leaked the personal data of employees, customers and business partners

A newly identified Mirai botnet exploits over 20 vulnerabilities, including zero-days, in industrial routers and smart home devices

Group-IB has observed scammers impersonating government officials to trick disaffected consumers into divulging card details

New research by Security Intelligence has revealed security risks in MLOps platforms including Azure ML, BigML and Google Vertex AI