Infosecurity News

  1. Europol Leads Global Crackdown on Black Axe Cybercrime Gang, 34 Arrested

    Europol-backed operation targets group behind numerous BEC attacks and romance scams

  2. World Economic Forum: Deepfake Face-Swapping Tools Are Creating Critical Security Risks

    Researchers at the World Economic Forum have shown that threat actors can use commercial deepfake tools to bypass corporate security protections

  3. AI-Powered Truman Show Operation Industrializes Investment Fraud

    Check Point has uncovered a vast, AI-powered scam operation dubbed the “Truman Show”

  4. FBI Warns of North Korean QR Phishing Campaigns

    The FBI says North Korea’s Kimsuky APT group is using QR codes in spear phishing campaigns

  5. GoBruteforcer Botnet Targets Linux Servers

    The GoBruteforcer botnet has been observed targeting exposed Linux servers on services like FTP and MySQL

  6. New Zero-Click Attack Lets ChatGPT User Steal Data

    Researchers at Radware discovered new prompt injection attacks in ChatGPT agentic features

  7. China-Linked UAT-7290 Targets Telecom Networks in South Asia

    A long-term cyber-espionage campaign targeting South Asia's telecom firms has been linked to UAT-7290

  8. Phishing Attacks Exploit Misconfigured Email Routing Settings to Target Microsoft 365 Users

    Misconfigurations abused to make phishing emails look like they come from within the organization

  9. Fifth of Breaches Take Two Weeks to Recover From

    Absolute Security claims that full recovery from endpoint-related downtime can take up to a fortnight for most organizations

  10. US To Leave Global Forum on Cyber Expertise

    The Trump administration decided to leave 66 international organizations, including the GFCE and the European Centre of Excellence for Countering Hybrid Threats

  11. Maximum Severity “Ni8mare” Bug Lets Hackers Hijack n8n Servers

    A newly discovered vulnerability in authentication platform n8n could allow threat actors to take control of n8n servers

  12. Versatile Malware Loader pkr_mtsi Delivers Diverse Payloads

    Malicious Windows packer named pkr_mtsi used as a flexible malware loader in malvertising campaigns

  13. Ghost Tap Malware Fuels Surge in Remote NFC Payment Fraud

    New Android malware enables unauthorized tap-to-pay transactions without physical access to bank cards

  14. China intensifies Cyber-Attacks on Taiwan as Energy Sector Sees Tenfold Spike

    Taiwan recorded an average of 2.63 million cyber intrusion attempts to it critical infrastructure per day coming from China in 2025

  15. Personal LLM Accounts Drive Shadow AI Data Leak Risks

    Lack of visibility and governance around employees using generative AI is resulting in rise in data security risks

  16. Hackers Claim to Disconnect Brightspeed Customers After Breach

    A hacking collective claims it has disconnected customers of US ISP Brightspeed

  17. MFA Failure Enables Infostealer Breach At 50 Enterprises

    Threat actor “Zestix” was able to breach around 50 firms using infostealers because they lacked multi-factor authentication

  18. Hospitality Sector Hit By PHALT#BLYX ClickFix Malware Campaign

    Multi-stage malware campaign targets hospitality organizations using social engineering and abuse of MSBuild.exe

  19. High-Severity Flaw in Open WebUI Affects AI Connections

    A high-severity security flaw in Open WebUI Direct Connections risks account takeover and server compromises

  20. UK Launches New Cyber Unit to Bolster Defences Against Cyber Threats

    UK government’s new Cyber Action plan looks to provide more ‘hands-on’ support for protecting against and responding to security incidents

Why Not Watch?

  1. Time Is a New Attack Surface: Securing Networks with Trusted Time Synchronization

  2. Five Non-Negotiable Strategies to Get Identity Security Right in 2026

  3. Mastering AI Security With ISACA’s New AAISM Certification

  4. Exposing AI’s Blind Spots: Security vs Safety in the Age of Gen AI

What’s Hot on Infosecurity Magazine?