Information Security Magazine

SonicWall has claimed an uptick in Akira ransomware intrusions is due to legacy password use

Claroty researchers have uncovered four vulnerabilities in a proprietary protocol used by surveillance equipment manufacturer Axis Communications

According to Infoblox’s new report, the VexTrio cybercrime-enabling network originates from Italy and Eastern Europe

The incident, reported to be ransomware-related, has resulted in attackers stealing sensitive personal and clinical data, including lab test results

GenAI company OpenAI has launched its first-ever open-weight models alongside a red teaming challenge

A Nigerian man accused of hacking, fraud and identity theft has been extradited from France to the US to face charges

During the pre-Black Hat AI Summit, Sean Morgan, Protect AI’s Chief Architect, highlighted the three most prominent security risks of using AI agents

Adversaries are prioritizing stealth over scale, according to OPSWAT’s latest Threat Landscape Report

Trend Micro has released a temporary fix for the flaws, which enable remote code execution on on-prem Apex One machines

Ransomware actors deploy a range of activities to make it harder for victims to recover and increase the consequences of not paying demands

The UK’s National Cyber Security Centre has released the Cyber Assessment Framework 4.0

Chanel and Pandora have revealed data breaches reportedly linked to attacks on their Salesforce instances

SecAlliance highlighted the evolution in smishing campaigns orchestrated by Chinese syndicates, which exploit digital wallet tokenization

Experts, including Allan Friedman, CISA's leading voice on SBOMs until July 2025, emphasized that AI BOMs should be standardized before being implemented

Critical vulnerabilities in NVIDIA's Triton Inference Server, discovered by researchers, could allow unauthenticated attackers to gain full server control through remote code execution

IANS found that stagnant budget growth rates have significantly impacted CISOs ability to increase their teams’ headcount

SecurityScorecard analysis highlights wide variety of Iranian threat actors and coordination with military activity

Cifas noted a record number of filings in its National Fraud Database for the first half of 2025

Python-based PXA Stealer has stolen data from more than 4000 victims in over 62 countries, according to SentinalLabs

Forescout also observed a big rise in CVEs added to CISA’s KEV catalog, some of which impacted end-of-life products