Nine in Ten Healthcare Organizations Use the Most Vulnerable IoT Devices
Claroty revealed that 89% of healthcare organizations use the top 1% of riskiest Internet-of-Medical-Things (IoMT) devices
Information Security Magazine
Trump CISA Cuts Threaten US Election Integrity, Experts Warn
2 weeks 3 days ago
Expert speakers discussed the impact of reported cutbacks to CISA on the ability of local officials to protect against surging cyber-attacks on US election infrastructure
Morphing Meerkat PhaaS Platform Spoofs 100+ Brands
2 weeks 3 days ago
A PhaaS platform, dubbed 'Morphing Meerkat,' uses DNS MX records to spoof over 100 brands and steal credentials, according to Infoblox Threat Intel
CoffeeLoader Malware Loader Linked to SmokeLoader Operations
2 weeks 4 days ago
Newly identified CoffeeLoader uses multiple evasion techniques and persistence mechanisms to deploy payloads and bypass endpoint security
PJobRAT Malware Targets Users in Taiwan via Fake Apps
2 weeks 4 days ago
PJobRAT malware targets Taiwan Android users, stealing data through fake messaging platforms
No MFA? Expect Hefty Fines, UK’s ICO Warns
2 weeks 4 days ago
The ICO’s Deputy Commissioner told Infosecurity that organizations that fail to implement MFA and suffer a breach can expect heavy penalties
Chinese Spy Group FamousSparrow Back with a Vengeance, Targets US
2 weeks 4 days ago
Once considered inactive, the Chinese cyber espionage group FamousSparrow has reemerged, targeting organizations across the US, Mexico and Honduras
NCA Warns of Sadistic Online “Com” Networks
2 weeks 4 days ago
The UK’s National Crime Agency is warning of a growing cyber and physical threat from homegrown teens
NCSC Urges Domain Registrars to Improve Security
2 weeks 4 days ago
The UK’s National Cyber Security Centre has released new guidance to help domain registrars enhance security
SecurityScorecard Observes Surge in Third-Party Breaches
2 weeks 5 days ago
In its 2025 Global Third-Party Breach Report, SecurityScorecard has found that 35.5% of all cyber breaches in 2024 were third-party related, up from 29% in 2023
Threat Actors Abuse Trust in Cloud Collaboration Platforms
2 weeks 5 days ago
Threat actors are exploiting cloud platforms like Adobe and Dropbox to evade email gateways and steal credentials
Malicious npm Packages Deliver Sophisticated Reverse Shells
2 weeks 5 days ago
A newly discovered malware campaign uses malicious npm packages to deploy reverse shells, compromising development environments
ETSI Publishes New Quantum-Safe Encryption Standards
2 weeks 5 days ago
Standards body ETSI has defined a scheme for key encapsulation mechanisms with access control (KEMAC), enabling quantum-secure encryption
ENISA Probes Space Threat Landscape in New Report
2 weeks 5 days ago
EU security agency ENISA has released a new report outlining the threats and potential mitigations for the space sector
UK Government’s New Fraud Strategy to Focus on Tech-Enabled Threats
2 weeks 5 days ago
The UK government’s new fraud minister will today announce plans for a newly expanded fraud strategy
New Android Malware Uses .NET MAUI to Evade Detection
2 weeks 6 days ago
McAfee researchers have identified a new wave of Android malware campaigns leveraging .NET MAUI to steal sensitive user information through fake apps
Cybercriminals Use Atlantis AIO to Target 140+ Platforms
2 weeks 6 days ago
Cybercriminals are increasingly leveraging Atlantis AIO, which automates credential stuffing attacks across more than 140 platforms
NIST Warns of Significant Limitations in AI/ML Security Mitigations
2 weeks 6 days ago
NIST has urged more research and emphasis on developing mitigations for attacks on AI and ML systems
China-Linked Weaver Ant Hackers Exposed After Four-Year Telco Infiltration
2 weeks 6 days ago
Sygnia has uncovered Weaver Ant, a Chinese threat actor that spied on telecommunications networks for years
Dark Web Mentions of Malicious AI Tools Spike 200%
2 weeks 6 days ago
Kela researchers detect a 200%+ increase in dark web chatter about malicious AI tools
Checked
4 hours 48 minutes ago