Beth Maundrill

𝐍𝐄𝐖 🐞 𝐒𝐡𝐚𝐫𝐞𝐏𝐨𝐢𝐧𝐭 ‘𝐓𝐨𝐨𝐥𝐒𝐡𝐞𝐥𝐥’ 𝐕𝐮𝐥𝐧𝐬 𝐄𝐱𝐩𝐥𝐨𝐢𝐭𝐞𝐝 𝐛𝐲 𝐂𝐡𝐢𝐧𝐞𝐬𝐞 𝐇𝐚𝐜𝐤𝐞𝐫𝐬

Microsoft has observed three China-based threat actors, Linen Typhoon, Violet Typhoon and Storm-2603, exploiting the SharePoint vulnerabilities dubbed as 'ToolShell.'

www.infosecurity-magazine.com/news/sharepo...

Hunters International Ransomware Is Not Shutting Down, It’s Rebranding Some admins of Hunters International are now part of the encryption-less cyber extortion group World Leaks

🚨 𝐑𝐚𝐧𝐬𝐨𝐦𝐰𝐚𝐫𝐞: 𝐇𝐮𝐧𝐭𝐞𝐫𝐬 𝐈𝐧𝐭𝐞𝐫𝐧𝐚𝐭𝐢𝐨𝐧𝐚𝐥 𝐈𝐬 𝐍𝐨𝐭 𝐒𝐡𝐮𝐭𝐭𝐢𝐧𝐠 𝐃𝐨𝐰𝐧, 𝐈𝐭'𝐬 𝐑𝐞𝐛𝐫𝐚𝐧𝐝𝐢𝐧𝐠

Despite an announced shutdown, Group-IB believes Hunters International admins are likely seeking to shift away from encryption under the rebranded name 'World Leaks.'

www.infosecurity-magazine.com/news/ransomw...

The Rising Cyber Threats Impacting Major Airlines Data extortion attacks are impacting carriers like Qantas, WestJet and Hawaiian Airlines, as the FBI issues a critical warning ahead of the busy summer travel season

I took a look at the recent cyber incidents affecting airlines for this latest news feature on Infosecurity Magazine.

Read here: www.infosecurity-magazine.com/news-feature...

Are you offering to open up the BH offices for some remote work? I'll book a flight....

Amen! I look back at how I used to go to trade events in my 20s, go out till 2am, get up at 6am, work a full day till late and rinse and repeat. I'd die if I did that now!
Also was home by 8.30 last night, very sensible! Great to see you as always.

😮 That, is, awful! Problem is you're not going to get Deputy Editor-level candidates and if you do happen across a staff writer who has it in them they'll use the opportunity to have to job title on their CV then move on within a year.

Outlook is the worst 😅

M&S Shuts Down Online Orders Amid Ongoing Cyber Incident British retailer M&S continues to tackle a cyber incident with online orders now paused for customers

Latest here: www.infosecurity-magazine.com/news/ms-shut...

Lets spare a thought for all those dealing with the M&S cyber incident this week.

And to all the staff in-store supporting customers, I read one lady comment saying her daughter who works at M&S came home in tears from verbal abuse from customers who couldn't use certain services.

Be Kind.

Thanks Brian! Helpful as always.

Interesting - could just be IT issues....will keep an eye on

Thanks - yes a lot not clear at the moment. I think contactless has been restored at many stores, I even used it earlier to buy some lunch!

M&S has said its now stopping all orders via its website and app as part of its cyber incident response - three days after it first notified investors of the incident.

Anyone able to comment on why this action may have been taken as part of an incident response strategy?

Ransomware: The Threat and Response Virtual Summit Learn about the current threat landscape and some vital prevention, detection and response strategies that will ensure your orgnaization is resillient in the face of the growing ransomware threat.

🔒 Don't Miss the Ransomware: The Threat and the Response Virtual Summit! 🔒

Join us at 2.45pm today for an Infosecurity Mag's Virtual Summit on the ransomware threat landscape, prevention, detection & response strategies.

Register now: www.infosecurity-magazine.com/online-summi...

Vodafone Urges UK Cybersecurity Policy Reforms Vodafone Business has urged the UK government to implement policy changes, including improvements to the Cyber Essentials scheme and tax incentives for cybersecurity

Do you agree with these policy recommendations Vodafone Business has made to the UK Gov relating to Cyber Local, Cyber Essentials and Tax relief for Cybersecurity?
www.infosecurity-magazine.com/news/vodafon...

Why Backup Isn't Enough in the Age of AI and Data Exfiltration In 2025, World Backup Day has expanded to encompass a broader range of data protection strategies

Happy Wold Backup Day to all who celebrate:
www.infosecurity-magazine.com/news-feature...

🎙️ The Information Heist: Cracking the Code on Infostealers

Infostealers are booming. Want to know how they work and how to stop them? Tune in to Infosecurity Magazine's latest podcast with Leonid Rozenberg from Hudson Rock.

🎧 Listen here: www.infosecurity-magazine.com/podcasts/the...

Google Buys Wiz in $32bn Cloud Security Push Google is set to acquire Wiz, a cloud security platform founded in 2020, for $32bn in an all-cash deal

☁️💸

Huge acquisition news: www.infosecurity-magazine.com/news/google-...

The Cyber-Resilient CISO Virtual Summit Join this Infosecurity Magazine Virtual Summit to learn about key strategies CISOs must equip themselves with today plus tools and advanced technologies that can help them enhance their organization's...

🎉 Just under an hour until we kick off at 2𝐩𝐦 𝐆𝐌𝐓/9𝐚𝐦 𝐄𝐒𝐓 for the first 𝐟𝐢𝐫𝐬𝐭 𝐂𝐲𝐛𝐞𝐫-𝐑𝐞𝐬𝐢𝐥𝐢𝐞𝐧𝐭 𝐂𝐈𝐒𝐎 𝐕𝐢𝐫𝐭𝐮𝐚𝐥 𝐒𝐮𝐦𝐦𝐢𝐭 🎉

Join us here: www.infosecurity-magazine.com/online-summi...

'Smashed it' 🤣

Unfortunately seeing a lot of headlines at the moment where large firms are ditching DEI programs and goals.

NEW - Chinese hackers are actively targeting suppliers of manufacturers in “sensitive” domains in the US and across the globe 🇨🇳🏭

Check Point plans to release a full report on the campaign in the next few weeks.

🔗 Read my article to learn more: www.infosecurity-magazine.com/news/new-chi...

8Base Ransomware Site Seized, Phobos Suspects Arrested in Thailand Four Europeans were arrested in Phuket, believed to be members of the Phobos ransomware group

Key takeaways from Operation Phobos Aetor:
📴 8Base's data leak site seized
🚫 27 servers taken down
👮 4 Russian nationals arrested in Phuket, Thailand
🚨 400+ companies worldwide warned of ongoing or imminent ransomware attacks

Read the full story here: www.infosecurity-magazine.com/news/8base-r...

Thanks for the endorsement Brian! Hope your student enjoy tuning in, they can also catch up on demand of course. I think our first fireside chat on 'personal liability' will be a particularly interesting topic.

🎉BRAND NEW from Infosecurity Mag for 2025 is next week's virtual summit!

We've curated an agenda focused on some of the hot button issues CISOs face today:

▪️Personal liability
▪️Talking with the Board
▪️Investing in AI for cybersecurity

Join us: www.infosecurity-magazine.com/online-summi...

TeamViewer's CISO on Thriving After Russian Cyber-Attack Robert Haist tells Infosecurity about TeamViewer’s response and learnings after being attacked by Russian nation-state actor Midnight Blizzard in 2024

Recently I spoke to TeamViewer's CISO.

I had a really insightful conversation with Robert Haist about how the firm responded to last year's cyber incident and how bold security measures have been rolled out since.

Full interview here: www.infosecurity-magazine.com/interviews/t...

🚨 DeepSeek-R1 Under Fire for Security Vulnerabilities 🚨

DeepSeek’s spotlight on the performance of its reasoning LLM has also brought scrutiny.

📉 R1 performs very poorly in @withsecure.bsky.social's new AI security benchmark Spikee (see image)

🔗 www.infosecurity-magazine.com/news/deepsee...

🔗 Read the full story here: www.infosecurity-magazine.com/news/deepsee...

⚠️ DeepSeek Exposed Database Leaks Sensitive Data ⚠️

Wiz researchers uncovered an exposed ClickHouse database belonging to the LLM provider leaking sensitive data incl. chat histories, API keys and backend operational details.

Wiz disclosed the issue to DeepSeek, which promptly secured the exposure.

If you are interested in #DORA or indeed how best to manage you software supply chain in a secure manner then you should attend this webinar

Deterring Data Privacy Violations in Big Tech: Why Fines Aren't Enough There are major doubts regarding the impact of large data privacy fines on tech giants’ behavior, and regulators need to explore other avenues to prevent non-compliance

Are fines enough to hold big tech and social media firms accountable for data privacy violations? Delayed payments and legal challenges raise doubts. Our COO, Dr. Valerie Lyons, spoke to Infosecurity Magazine about fines for GDPR, and the challenges with enforcement. #DataProtectionDay2025