The ransomware group combines IT vendor impersonation and phishing frameworks like Evilginx to breach its targets ...

Legal experts dissect how affected entities should respond to the DoJ's rule prohibiting data transactions with specific ...

A phishing campaign spoofing Booking.com has been observed targeting hospitality sector, using ClickFix to install malware ...

More than half (56%) of all compromises in Q1 2025 resulted from the theft of valid account credentials with no multi-factor authentication (MFA) in place, according to new research by Rapid7, ...

A new malware campaign using fake DocuSign verification pages to deploy the NetSupport Remote Access Trojan (RAT) has been ...

Nearly half (46%) of organizations have experienced at least two cybersecurity incidents in their supply chain over the past year, according to new research by Risk Ledger presented at Infosecurity ...

Two local information disclosure flaws in Linux crash-reporting tools have been identified exposing system data to attackers ...

The new Cyber Security and Resilience (CS&R) Bill aims to address this challenge. Announced in the King’s Speech in July 2024 ...

A newly uncovered malware campaign targeting both Windows and Linux systems has revealed advanced evasion and credential theft techniques, according to the Sysdig Threat Research Team (TRT). The ...

PA Consulting's Richard Allen discusses how sectors like retail can changes cybersecurity behaviors of employees ...

ConnectWise, the developer of remote access and support software ScreenConnect, has confirmed it was targeted by a cyber-attack from a nation-state threat actor. In a message sent to Infosecurity, a ...