Infosecurity Magazine

GPU Rowhammer Attack Enables Privilege Escalation and Full System Compromise

A new GPU-based Rowhammer attack capable of escalating privileges to a full system compromise has been demonstrated by ...
Infosecurity Magazine

Russian APT28 Hackers Hijack Routers to Steal Credentials, UK Security Agency Warns

Newly identified malicious campaigns are linked to virtual private servers modified by APT28 to operate as malicious DNS ...
Infosecurity Magazine

Fortinet Releases Emergency Patch After FortiClient EMS Bug Is Exploited

Fortinet customers have been urged to update their FortiClient Enterprise Management Server (EMS) products after the vendor ...
Infosecurity Magazine

Storm-1175 Exploits Flaws in High-Velocity Medusa Attacks

A prolific cybercrime group has been weaponizing n-day and zero-day exploits in high-tempo Medusa ransomware attacks over the past three years, Microsoft has revealed. Storm-1175 is a financially ...
Infosecurity MagazineOpinion

When the World Splits: Are Businesses Really Ready?

Structured exercises allow leadership teams to identify decision-making bottlenecks, clarify protocols and quantify financial ...
Infosecurity Magazine

How Security Leaders Can Safeguard Against Vibe Coding Security Risks

Infosecurity outlines key recommendations for CISOs and security teams to implement safeguards for AI-assisted coding ...
Infosecurity Magazine

Google Introduces Android Dev Verification Amid Openness Debate

However, the policy has drawn criticism from open-source advocates and digital rights groups. An open letter coordinated by ...
Infosecurity Magazine

Hackers Hijack Axios npm Package to Spread RATs

Threat actors hijacked the popular npm package axios to spread RAT malware after compromising an open‑source maintainer’s ...
Infosecurity Magazine

Maryland Man Charged Over $53m Uranium Finance Crypto Hack

A Maryland man has been charged with stealing more than $53m after allegedly hacking the Uranium Finance cryptocurrency ...
Infosecurity Magazine

Phantom Project Bundles Infostealer, Crypter and RAT For Sale

The malware, known as Phantom Stealer, collects browser credentials, cookies, saved passwords, autofill data and payment card ...
Infosecurity Magazine

GitHub Used as Covert Channel in Multi-Stage Malware Campaign

A series of malicious LNK files targeting users in South Korea has been detected using a multi-stage attack chain that uses ...
Infosecurity Magazine

NCSC Urges Immediate Patching of F5 BIG-IP Bug

UK organizations have been encouraged to immediately patch a critical new vulnerability in F5’s BIG-IP Access Policy Manager ...