US Data Breaches Hit Record High but Victim Numbers Decline
Fuites de donnéesInfosecurity Magazineil y a 61 jours
Non-profit ITRC says the number of data breaches increased 5% annually to reach a record total in 2025
Flux RSS
— Sources secondaires283articles RSS
ReinitialiserNumber of Cybersecurity Pros Surges 194% in Four Years
GénéralInfosecurity Magazineil y a 61 jours
Cybersecurity is now the fifth fastest-growing occupation in the UK, says Socura
Cybersecurity Teams Embrace AI, Just Not at the Scale Marketing Suggests
GénéralInfosecurity Magazineil y a 61 jours
Despite the seemingly widespread adoption of AI for security operations, security leaders primarily use it for “relatively basic use cases,” said a Sumo Logic study
Autonomous System Uncovers Long-Standing OpenSSL Flaws
Gouvernance & RégulationInfosecurity Magazineil y a 61 jours
A recent update has fixed 12 vulnerabilities in OpenSSL, some existing in the codebase for years
Critical and High Severity n8n Sandbox Flaws Allow RCE
Gouvernance & RégulationInfosecurity Magazineil y a 62 jours
Two critical security flaws in n8n have exposed sandboxing vulnerabilities, enabling remote code execution for attackers
Emojis in PureRAT’s Code Point to AI-Generated Malware Campaign
Malware & RansomwareInfosecurity Magazineil y a 62 jours
Researchers discover that PureRAT’s code now contains emojis – indicating it has been written by AI based-on comments ripped from social media.
AI Security Threats Loom as Enterprise Usage Jumps 91%
Fuites de donnéesInfosecurity Magazineil y a 62 jours
Zscaler analysts found critical vulnerabilities in 100% of enterprise AI systems, with 90% compromised in under 90 minutes
Researchers Uncover 454,000+ Malicious Open Source Packages
Vulnérabilités & PatchesInfosecurity Magazineil y a 62 jours
Sonatype warns that open source threats became industrialized with a surge in malicious packages in 2025
Chinese Money Launderers Drive Global Ecosystem Worth $82bn
GénéralInfosecurity Magazineil y a 62 jours
Chainalysis claims Chinese money launderers now account for 20% of global activity
Pyodide Sandbox Escape Enables Remote Code Execution in Grist-Core
Vulnérabilités & PatchesInfosecurity Magazineil y a 62 jours
Critical sandbox escape vulnerability in Grist-Core enables remote code execution via a malicious formula
PeckBirdy Framework Tied to China-Aligned Cyber Campaigns
Gouvernance & RégulationInfosecurity Magazineil y a 63 jours
PeckBirdy command-and-control framework targeting gambling, government sectors in Asia since 2023 has been linked to China-aligned APTs
Over 80% of Ethical Hackers Now Use AI
Outils & RechercheInfosecurity Magazineil y a 63 jours
Bugcrowd study reveals 82% of security researchers now use AI, a big increase from 2023 figures
Microsoft Releases Patch for Office Zero Day Amid Evidence of Exploitation
Gouvernance & RégulationInfosecurity Magazineil y a 63 jours
Microsoft urged customers running Microsoft Office 2016 and 2019 to apply the patch to be protected
World Leaks Ransomware Group Claims 1.4TB Nike Data Breach
Malware & RansomwareInfosecurity Magazineil y a 63 jours
Nike is investigating after the World Leaks ransomware group posted a 1.4TB data dump
CISA Releases List of Post-Quantum Cryptography Product Categories
GénéralInfosecurity Magazineil y a 64 jours
CISA released initial list of PQC-capable hardware and software to guide companies amid quantum threats
Researchers Uncover “Haxor” SEO Poisoning Marketplace
Outils & RechercheInfosecurity Magazineil y a 64 jours
Fortra researchers have discovered a new SEO poisoning operation known as “HaxorSEO”
Law Firm Investigates Coupang Security Failures Ahead of Class Action Deadline
Gouvernance & RégulationInfosecurity Magazineil y a 64 jours
The US law firm Hagens Berman will lead a class action lawsuit against Coupang over security failures that led to a June 2025 data breach
Okta Flags Customized, Reactive Vishing Attacks Which Bypass MFA
Gouvernance & RégulationInfosecurity Magazineil y a 64 jours
Threat actors posing as IT support teams use phishing kits to generate fake login sites in real-time to trick victims into handing over credentials
Wiper Attack on Polish Power Grid Linked to Russia’s Sandworm
Malware & RansomwareInfosecurity Magazineil y a 64 jours
A destructive cyber attack targeting Poland’s energy sector has been linked to Russian APT group Sandworm
NHS Issues Open Letter Demanding Improved Cybersecurity Standards from Suppliers
GénéralInfosecurity Magazineil y a 67 jours
Open letter by NHS technology leaders outlines plans to identify risks to software supply chain security across health and social care system