Infosecurity Magazine

Exploitable Vulnerabilities Present in 87% of Organizations

Eighty-seven percent of organizations have at least one exploitable software vulnerability in production, affecting 40% of ...
Infosecurity Magazine

Global Cyber Agencies Urge Immediate Patching of Cisco SD-WAN Zero Day

The US Cybersecurity and Infrastructure Security Agency (CISA) issued an emergency directive requiring all federal agencies to find and patch the vulnerabilities by 5pm ET on February 27, 2026.
Infosecurity Magazine

Aeternum Botnet Shifts Command Control to Polygon Blockchain

A newly identified botnet loader is shifting command-and-control (C2) operations onto the Polygon blockchain, eliminating the central servers that authorities and security firms have historically ...
Infosecurity Magazine

Darktrace Flags 32 Million Phishing Emails in 2025 as Identity Attacks Intensify

More than 32 million high-confidence phishing emails were detected by Darktrace in 2025, showcasing a substantial escalation in identity-driven cyber threats. The data was collected by Darktrace from ...
Infosecurity Magazine

UK's Data Watchdog Gets a Makeover to Match Growing Demands

The UK’s Information Commissioner's Office is about to ditch single-leader model for CEO and board in a major shake-up ...
Infosecurity Magazine

Google Disrupts ‘Prolific’ and ‘Elusive’ China-Linked Global Hacking Campaign

In a blog post, Google Threat Intelligence Group (GTIG) detailed the malicious activity by UNC2814, a cyber-espionage operation with suspected links to China which has been active since 2017. The ...
Infosecurity Magazine

44% Surge in App Exploits as AI Speeds Up Cyber-Attacks, IBM Finds

Vulnerability exploitation emerged as the leading cause of incidents in 2025, accounting for 40% of cases observed by IBM X-Force. At the same time, active ransomware and extortion groups grew 49% ...
Infosecurity Magazine

AI-powered Cyber-Attacks Up Significantly in the Last Year, Warns CrowdStrike

CrowdStrike Global Threat Report warns how adversaries are leveraging AI to make campaigns more efficient and more effective ...
Infosecurity Magazine

Former Defense Contractor Boss Gets 7+ Years for Selling Zero Days

A former senior executive at a US defense contractor has been handed an 87-month jail term after selling zero-day exploits to ...
Infosecurity Magazine

Malicious NuGet Package Targets Stripe Developers

A malicious NuGet package designed to mimic Stripe's official .NET library has been uncovered by cybersecurity researchers, marking a shift in tactics from earlier cryptocurrency-focused campaigns to ...
Infosecurity Magazine

ICO’s £14m Reddit Fine Highlights Age Check Privacy Concerns

The UK’s Information Commissioner’s Office (ICO) has issued a multimillion-pound fine to Reddit for GDPR non-compliance, but experts have warned that its rules pose a risk to user security and privacy ...
Infosecurity Magazine

North Korean Lazarus Group Expands Ransomware Activity With Medusa

Medusa, operated by the Spearwing cybercrime group, emerged in 2023 as a ransomware-as-a-service (RaaS) platform. Affiliates deploy the malware in exchange for a share of ransom payments. Since its ...