https://www.infosecurity-magazine.com/news/ Copyright © 2026 Reed Exhibitions Ltd. All Rights Reserved. https://www.infosecurity-magazine.com/news/pixrevolution-malware-brazils-pix/ PixRevolution Android trojan hijacks Brazil’s PIX payments in real time using accessibility abuse Thu, 12 Mar 2026 16:00:00 GMT https://www.infosecurity-magazine.com/news/pixrevolution-malware-brazils-pix/ https://www.infosecurity-magazine.com/news/critical-zeroclick-flaw-n8n-pillar/ The critical vulnerability affecting both cloud and self-hosted n8n instances requires no authentication or even n8n account to be exploited Thu, 12 Mar 2026 15:28:00 GMT https://www.infosecurity-magazine.com/news/critical-zeroclick-flaw-n8n-pillar/ https://www.infosecurity-magazine.com/news/cisa-cisco-sd-wan-flaws-directive/ CISA issued urgent directive as attackers exploit Cisco SD-WAN flaw granting admin access to networks Thu, 12 Mar 2026 12:45:00 GMT https://www.infosecurity-magazine.com/news/cisa-cisco-sd-wan-flaws-directive/ https://www.infosecurity-magazine.com/news/police-scotland-fined-sharing/ The ICO has fined Police Scotland after it shared the entire contents of a victim’s phone with her alleged attacker Thu, 12 Mar 2026 10:30:00 GMT https://www.infosecurity-magazine.com/news/police-scotland-fined-sharing/ https://www.infosecurity-magazine.com/news/iran-massive-wiper-attack-medtech/ The pro-Iran Handala group claims to have wiped 200,000 systems in destructive wiper malware attack on US firm Stryker Thu, 12 Mar 2026 09:30:00 GMT https://www.infosecurity-magazine.com/news/iran-massive-wiper-attack-medtech/ https://www.infosecurity-magazine.com/news/france-anssi-ransomware-attack/ French small and medium businesses remained the organizations most targeted by ransomware in 2025 Wed, 11 Mar 2026 16:50:00 GMT https://www.infosecurity-magazine.com/news/france-anssi-ransomware-attack/ https://www.infosecurity-magazine.com/news/infosecurity-europe-2026-keynote/ Infosecurity Europe 2026 reveals its keynote line-up, featuring Jason Fox, Shlomo Kramer, Cynthia Kaiser and more, with sessions on AI, cloud security and post quantum threats Wed, 11 Mar 2026 16:20:00 GMT https://www.infosecurity-magazine.com/news/infosecurity-europe-2026-keynote/ https://www.infosecurity-magazine.com/news/google-looker-studios-security-gaps/ LeakyLooker flaws in Google Looker Studio let attackers run cross-tenant SQL attacks on cloud data Wed, 11 Mar 2026 16:00:00 GMT https://www.infosecurity-magazine.com/news/google-looker-studios-security-gaps/ https://www.infosecurity-magazine.com/news/wordpress-clickfix-infostealer/ Over 250 legitimate websites, including news outlets and a US Senate candidate’s official webpage, been compromised to infect visitors with infostealers, warn Rapid7 researchers Wed, 11 Mar 2026 14:45:00 GMT https://www.infosecurity-magazine.com/news/wordpress-clickfix-infostealer/ https://www.infosecurity-magazine.com/news/blacksanta-edr-killer-targets-hr/ BlackSanta malware targets HR staff with fake resumes, kills EDR and steals system data Wed, 11 Mar 2026 14:30:00 GMT https://www.infosecurity-magazine.com/news/blacksanta-edr-killer-targets-hr/ https://www.infosecurity-magazine.com/news/major-security-gaps-llm-guardrails/ Palo Alto Networks’ Unit 42 has developed a successful attack to bypass safety guardrails in popular generative AI tools Wed, 11 Mar 2026 13:35:00 GMT https://www.infosecurity-magazine.com/news/major-security-gaps-llm-guardrails/ https://www.infosecurity-magazine.com/news/cyberattacks-uk-firms-increase/ Check Point data shows attack volumes are growing much faster in the UK than worldwide Wed, 11 Mar 2026 10:30:00 GMT https://www.infosecurity-magazine.com/news/cyberattacks-uk-firms-increase/ https://www.infosecurity-magazine.com/news/microsoft-fixes-two-publicly/ March Patch Tuesday sees Microsoft release updates for 79 flaws Wed, 11 Mar 2026 09:20:00 GMT https://www.infosecurity-magazine.com/news/microsoft-fixes-two-publicly/ https://www.infosecurity-magazine.com/news/openai-promptfoo-deal-agentic-ai/ OpenAI’s latest acquisition addresses a security need Jamieson O’Reilly, security advisor at OpenClaw, raised during an exclusive interview with Infosecurity Tue, 10 Mar 2026 17:15:00 GMT https://www.infosecurity-magazine.com/news/openai-promptfoo-deal-agentic-ai/ https://www.infosecurity-magazine.com/news/organizations-test-identity-sec-6/ Only 24% of organizations test identity disaster recovery plans every 6 months, Quest Software said Tue, 10 Mar 2026 16:00:00 GMT https://www.infosecurity-magazine.com/news/organizations-test-identity-sec-6/ https://www.infosecurity-magazine.com/news/cloud-attackers-prefer-exploits/ Google Cloud report details a sharp rise in attackers exploiting software vulnerabilities, including React2Shell Tue, 10 Mar 2026 15:30:00 GMT https://www.infosecurity-magazine.com/news/cloud-attackers-prefer-exploits/ https://www.infosecurity-magazine.com/news/ericsson-breach-exposes-data-15k/ Ericsson data breach affects 15k employees/customers after third-party service provider compromise Tue, 10 Mar 2026 15:00:00 GMT https://www.infosecurity-magazine.com/news/ericsson-breach-exposes-data-15k/ https://www.infosecurity-magazine.com/news/russian-hackers-target-military/ Dutch intelligence reveals Russian state hackers are trying to hijack the Signal and WhatsApp accounts of key targets Tue, 10 Mar 2026 10:45:00 GMT https://www.infosecurity-magazine.com/news/russian-hackers-target-military/ https://www.infosecurity-magazine.com/news/shinyhunters-hundreds-websites/ Prolific ShinyHunters group claims to have stolen data from nearly 400 websites in Experience Cloud attacks Tue, 10 Mar 2026 10:00:00 GMT https://www.infosecurity-magazine.com/news/shinyhunters-hundreds-websites/ https://www.infosecurity-magazine.com/news/elastic-cloud-siem-manage-stolen/ Huntress researchers uncover campaign exploiting vulnerabilities to steal data using Elastic Cloud as a data hub Mon, 09 Mar 2026 15:45:00 GMT https://www.infosecurity-magazine.com/news/elastic-cloud-siem-manage-stolen/ https://www.infosecurity-magazine.com/news/usa-unveils-new-cyber-strategy/ US national cyber strategy focuses on stronger defenses, countering threats, fostering innovation Mon, 09 Mar 2026 15:00:00 GMT https://www.infosecurity-magazine.com/news/usa-unveils-new-cyber-strategy/ https://www.infosecurity-magazine.com/news/uk-new-crackdown-unit-cyber-fraud/ New UK Online Crime Centre will combine expertise from a range of sources to takedown online channels cyber-scammers rely on Mon, 09 Mar 2026 14:00:00 GMT https://www.infosecurity-magazine.com/news/uk-new-crackdown-unit-cyber-fraud/ https://www.infosecurity-magazine.com/news/ai-security-startups-cyber/ Over one in five winners of IT-Harvest’s 2026 Cyber 150 are AI security companies Mon, 09 Mar 2026 13:25:00 GMT https://www.infosecurity-magazine.com/news/ai-security-startups-cyber/ https://www.infosecurity-magazine.com/news/trizetto-provider-solutions-breach/ Billing services provider TriZetto Provider Solutions has begun notifying millions of patients about a data breach Mon, 09 Mar 2026 10:45:00 GMT https://www.infosecurity-magazine.com/news/trizetto-provider-solutions-breach/ https://www.infosecurity-magazine.com/news/ghanaian-pleads-guilty-100m/ Derrick Van Yeboah admitted he stole over $10m in romance scams as part of crime gang Mon, 09 Mar 2026 10:00:00 GMT https://www.infosecurity-magazine.com/news/ghanaian-pleads-guilty-100m/ https://www.infosecurity-magazine.com/news/iran-muddywater-hackers-us-firms/ A bank, an airport, a non-profit and the Israeli branch of a US software company were among the targets of this new MuddyWater campaign Fri, 06 Mar 2026 15:15:00 GMT https://www.infosecurity-magazine.com/news/iran-muddywater-hackers-us-firms/ https://www.infosecurity-magazine.com/news/zero-day-enterprise-record-high/ Almost a quarter of the zero days detected by Google in 2025 targeted security and networking appliances Fri, 06 Mar 2026 12:29:00 GMT https://www.infosecurity-magazine.com/news/zero-day-enterprise-record-high/ https://www.infosecurity-magazine.com/news/ai-insider-risk-critical-business/ Malicious insiders are using misusing AI for nefarious gain, while employees cutting corners also creates risk, warns Mimecast Thu, 05 Mar 2026 16:00:00 GMT https://www.infosecurity-magazine.com/news/ai-insider-risk-critical-business/ https://www.infosecurity-magazine.com/news/contextcrush-ai-development-tools/ Critical flaw "ContextCrush" in Context7 MCP Server could allow malicious instructions into AI tools Thu, 05 Mar 2026 14:00:00 GMT https://www.infosecurity-magazine.com/news/contextcrush-ai-development-tools/ https://www.infosecurity-magazine.com/news/coruna-exploit-older-iphones/ Exploit kit "Coruna" targets iPhones running iOS 13.0 to 17.2.1, focusing on financial data theft Thu, 05 Mar 2026 12:15:00 GMT https://www.infosecurity-magazine.com/news/coruna-exploit-older-iphones/ https://www.infosecurity-magazine.com/news/zeroclick-freescout-bug-remote/ Ox Security warns that Mail2Shell could enable threat actors to hijack FreeScout systems without user interaction Thu, 05 Mar 2026 11:00:00 GMT https://www.infosecurity-magazine.com/news/zeroclick-freescout-bug-remote/ https://www.infosecurity-magazine.com/news/cisco-issues-patches-48/ Two of the 48 Cisco vulnerabilities, affecting Secure Firewall Management Center, are maximum-severity flaws Thu, 05 Mar 2026 10:30:00 GMT https://www.infosecurity-magazine.com/news/cisco-issues-patches-48/ https://www.infosecurity-magazine.com/news/europol-seizes-leakbase-data/ A global operation has resulted in the takedown of popular cybercrime forum LeakBase Thu, 05 Mar 2026 09:45:00 GMT https://www.infosecurity-magazine.com/news/europol-seizes-leakbase-data/ https://www.infosecurity-magazine.com/news/gcot-6g-cybersecurity-guidelines/ A coalition of seven Western nations has launched guidelines to help integrate security-by-design principles into future 6G standards Wed, 04 Mar 2026 16:30:00 GMT https://www.infosecurity-magazine.com/news/gcot-6g-cybersecurity-guidelines/ https://www.infosecurity-magazine.com/news/global-takedown-tycoon2fa-phishing/ Law enforcers and industry partners have taken down notorious phishing-as-a-service platform Tycoon2FA Wed, 04 Mar 2026 16:00:00 GMT https://www.infosecurity-magazine.com/news/global-takedown-tycoon2fa-phishing/ https://www.infosecurity-magazine.com/news/iran-attacks-surveillance-cameras/ Increased attempts to compromise surveillance cameras linked to Iran during Middle East conflict Wed, 04 Mar 2026 15:00:00 GMT https://www.infosecurity-magazine.com/news/iran-attacks-surveillance-cameras/ https://www.infosecurity-magazine.com/news/badpaw-malware-targets-ukraine/ Malware campaign uses Ukrainian email service for credibility, deploying "BadPaw" to execute attacks Wed, 04 Mar 2026 14:30:00 GMT https://www.infosecurity-magazine.com/news/badpaw-malware-targets-ukraine/ https://www.infosecurity-magazine.com/news/digital-estate-post-death-deepfake/ The OpenID Foundation warns that fragmented policies on posthumous digital accounts could open the door for fraudsters to exploit AI deepfakes Wed, 04 Mar 2026 10:45:00 GMT https://www.infosecurity-magazine.com/news/digital-estate-post-death-deepfake/ https://www.infosecurity-magazine.com/news/redalert-israel-spyware-campaign/ Espionage campaign exploits Israel-Iran conflict, distributing a trojanized Red Alert app via SMS Tue, 03 Mar 2026 16:15:00 GMT https://www.infosecurity-magazine.com/news/redalert-israel-spyware-campaign/ https://www.infosecurity-magazine.com/news/ai-deepfakes-supercharge/ Cloudflare Threat Report warns that AI tools enable attackers who lacked required skills to generate effective attacks rapidly and at scale Tue, 03 Mar 2026 15:30:00 GMT https://www.infosecurity-magazine.com/news/ai-deepfakes-supercharge/ https://www.infosecurity-magazine.com/news/iranian-crypto-leaked-database/ Ariomex database reveals potential sanctions evasion and capital transfers tied to Iranian actors Tue, 03 Mar 2026 14:30:00 GMT https://www.infosecurity-magazine.com/news/iranian-crypto-leaked-database/ https://www.infosecurity-magazine.com/news/half-us-cisos-work-equivalent/ Seemplicity finds US security leaders work 11 or more extra hours per week Tue, 03 Mar 2026 14:00:00 GMT https://www.infosecurity-magazine.com/news/half-us-cisos-work-equivalent/ https://www.infosecurity-magazine.com/news/shadow-layer-organizations-supply/ Black Kite reveals 26,000 unnamed corporate victims linked to 136 third-party breaches Tue, 03 Mar 2026 11:00:00 GMT https://www.infosecurity-magazine.com/news/shadow-layer-organizations-supply/ https://www.infosecurity-magazine.com/news/iran-cyber-threat-actor-iraq/ Zscaler ThreatLabz assessed with medium to high confidence that an Iranian adversary targeted Iraq’s Ministry of Foreign Affairs in a new cyber-attack Tue, 03 Mar 2026 10:30:00 GMT https://www.infosecurity-magazine.com/news/iran-cyber-threat-actor-iraq/ https://www.infosecurity-magazine.com/news/chrome-quantum-safe-https/ Google Chrome initiates quantum-resistant measures via Merkle Tree Certificates to secure HTTPS Mon, 02 Mar 2026 16:15:00 GMT https://www.infosecurity-magazine.com/news/chrome-quantum-safe-https/ https://www.infosecurity-magazine.com/news/iran-cyber-attacks-global-google/ John Hultquist suggests “aggressive” Iranian cyber attackers will target the US and its Gulf allies with plausibly deniable ransomware attacks, hacktivist campaigns and more Mon, 02 Mar 2026 15:45:00 GMT https://www.infosecurity-magazine.com/news/iran-cyber-attacks-global-google/ https://www.infosecurity-magazine.com/news/middle-east-conflict-surge-global/ Military strikes in the Middle East escalate cyber ops, raising spillover risks globally for firms Mon, 02 Mar 2026 15:00:00 GMT https://www.infosecurity-magazine.com/news/middle-east-conflict-surge-global/ https://www.infosecurity-magazine.com/news/clawjacked-bug-covert-ai-agent/ Oasis Security reveals how a new ClawJacked vulnerability could allow attackers to silently take over a victim’s OpenClaw agent Mon, 02 Mar 2026 11:30:00 GMT https://www.infosecurity-magazine.com/news/clawjacked-bug-covert-ai-agent/ https://www.infosecurity-magazine.com/news/ransomware-payments-decline-1/ Chainalysis reveals a big surge in median ransomware payment size in 2025 despite overall drop in criminal revenue Mon, 02 Mar 2026 10:45:00 GMT https://www.infosecurity-magazine.com/news/ransomware-payments-decline-1/ https://www.infosecurity-magazine.com/news/north-korea-apt37-expands-toolkit/ The security researchers from Zscaler ThreatLabz have also discovered five new tools deployed by the North Korean hacking group Fri, 27 Feb 2026 14:15:00 GMT https://www.infosecurity-magazine.com/news/north-korea-apt37-expands-toolkit/ https://www.infosecurity-magazine.com/news/uk-vuln-monitoring-service-cuts/ The UK government says its new Vulnerability Monitoring Service has cut unresolved security flaws by 75% and reduced cyber-attack fix times from nearly two months to just over a week Fri, 27 Feb 2026 11:45:00 GMT https://www.infosecurity-magazine.com/news/uk-vuln-monitoring-service-cuts/ https://www.infosecurity-magazine.com/news/project-compass-com-arrests/ International law enforcement operation led by Europol targets network of teenagers and young adults involved in ransomware attacks, extortion and other crimes Fri, 27 Feb 2026 11:00:00 GMT https://www.infosecurity-magazine.com/news/project-compass-com-arrests/ https://www.infosecurity-magazine.com/news/aeternum-botnet-c2-polygon/ New botnet Aeternum shifted C2 operations to Polygon blockchain, complicating takedown efforts Thu, 26 Feb 2026 16:00:00 GMT https://www.infosecurity-magazine.com/news/aeternum-botnet-c2-polygon/ https://www.infosecurity-magazine.com/news/32m-phishing-emails-detected-2025/ 2025 saw 32M phishing emails, with identity threats surpassing vulnerabilities Thu, 26 Feb 2026 15:00:00 GMT https://www.infosecurity-magazine.com/news/32m-phishing-emails-detected-2025/ https://www.infosecurity-magazine.com/news/exploitable-vulnerabilities-in-87/ Datadog report reveals two-fifths of services are affected by exploitable bugs Thu, 26 Feb 2026 14:00:00 GMT https://www.infosecurity-magazine.com/news/exploitable-vulnerabilities-in-87/ https://www.infosecurity-magazine.com/news/uk-data-watchdog-ico-makeover/ The UK’s Information Commissioner's Office is about to ditch single-leader model for CEO and board in a major shake-up Thu, 26 Feb 2026 14:00:00 GMT https://www.infosecurity-magazine.com/news/uk-data-watchdog-ico-makeover/ https://www.infosecurity-magazine.com/news/google-prolific-china-hacking/ UNC2814 hit 53 victims in 42 countries with novel backdoor in decade long cyber espionage operation Thu, 26 Feb 2026 12:09:00 GMT https://www.infosecurity-magazine.com/news/google-prolific-china-hacking/ https://www.infosecurity-magazine.com/news/immediate-patch-cisco-catalyst/ The US and allies are urging Cisco Catalyst SD-WAN customers to hunt for signs of exploitation Thu, 26 Feb 2026 09:30:00 GMT https://www.infosecurity-magazine.com/news/immediate-patch-cisco-catalyst/ https://www.infosecurity-magazine.com/news/app-exploits-surge-ai-speeds/ IBM's 2026 X-Force report reveals 44% rise in cyber-attacks on public apps, driven by AI and flaws Wed, 25 Feb 2026 14:30:00 GMT https://www.infosecurity-magazine.com/news/app-exploits-surge-ai-speeds/ https://www.infosecurity-magazine.com/news/malicious-nuget-package-stripe-devs/ Malicious NuGet package mimicking Stripe's library targeted developers Wed, 25 Feb 2026 13:00:00 GMT https://www.infosecurity-magazine.com/news/malicious-nuget-package-stripe-devs/ https://www.infosecurity-magazine.com/news/defense-contractor-boss-7-years/ A former general manager of a US defense contractor has been sentenced after selling zero days to Russia Wed, 25 Feb 2026 10:30:00 GMT https://www.infosecurity-magazine.com/news/defense-contractor-boss-7-years/ https://www.infosecurity-magazine.com/news/icos-14m-reddit-fine-age-check/ The UK’s ICO has fined Reddit over £14m for failing to use children’s personal information lawfully Wed, 25 Feb 2026 09:40:00 GMT https://www.infosecurity-magazine.com/news/icos-14m-reddit-fine-age-check/ https://www.infosecurity-magazine.com/news/cost-of-insider-incidents-surges/ DTEX claims insider incidents cost $19.5m in 2025, with employee negligence most expensive Tue, 24 Feb 2026 17:00:00 GMT https://www.infosecurity-magazine.com/news/cost-of-insider-incidents-surges/ https://www.infosecurity-magazine.com/news/bitpanda-mfa-phishing-scheme/ Phishing attack mimicking Bitpanda targets users, harvesting credentials and personal information Tue, 24 Feb 2026 16:05:00 GMT https://www.infosecurity-magazine.com/news/bitpanda-mfa-phishing-scheme/ https://www.infosecurity-magazine.com/news/north-korean-lazarus-group-medusa/ Ransomware Medusa linked to North Korean hackers targets US healthcare amid ongoing attacks Tue, 24 Feb 2026 14:30:00 GMT https://www.infosecurity-magazine.com/news/north-korean-lazarus-group-medusa/ https://www.infosecurity-magazine.com/news/ai-accelerates-attack-breakout/ ReliaQuest claims AI has reduced breakout and exfiltration time to under 10 minutes Tue, 24 Feb 2026 13:00:00 GMT https://www.infosecurity-magazine.com/news/ai-accelerates-attack-breakout/ https://www.infosecurity-magazine.com/news/chinese-ai-claude-distillation/ Anthropic accused DeepSeek, Moonshot and MiniMax of illicitly using Claude to steal some of the AI model’s capabilities Tue, 24 Feb 2026 11:30:00 GMT https://www.infosecurity-magazine.com/news/chinese-ai-claude-distillation/ https://www.infosecurity-magazine.com/news/ai-powered-cyberattacks-up/ CrowdStrike Global Threat Report warns how adversaries are leveraging AI to make campaigns more efficient and more effective Tue, 24 Feb 2026 10:00:00 GMT https://www.infosecurity-magazine.com/news/ai-powered-cyberattacks-up/ https://www.infosecurity-magazine.com/news/shai-hulud-like-worm-devs-npm-ai/ Supply chain worm mimicking Shai-Hulud malware spread via malicious npm packages, targeting AI tools has been identified by security researchers Mon, 23 Feb 2026 16:00:00 GMT https://www.infosecurity-magazine.com/news/shai-hulud-like-worm-devs-npm-ai/ https://www.infosecurity-magazine.com/news/fraud-investigation-python-malware/ Sophisticated Python malware uncovered in fraud probe shows obfuscation, disposable infrastructure Mon, 23 Feb 2026 15:30:00 GMT https://www.infosecurity-magazine.com/news/fraud-investigation-python-malware/ https://www.infosecurity-magazine.com/news/russian-threat-actor-genai/ A low-skilled Russian-speaking attacker has used GenAI tools to help deploy a successful attack workflow targeting FortiGate instances Mon, 23 Feb 2026 12:30:00 GMT https://www.infosecurity-magazine.com/news/russian-threat-actor-genai/ https://www.infosecurity-magazine.com/news/advantest-ransomware-attack/ Advantest, a Japanese specialist in testing computer chips for major semiconductor manufacturers, has deployed incident response protocols following a cybersecurity incident Mon, 23 Feb 2026 11:30:00 GMT https://www.infosecurity-magazine.com/news/advantest-ransomware-attack/ https://www.infosecurity-magazine.com/news/jackpotting-surge-costs-banks-20m/ A new FBI Flash alert claims $20m was lost to ATM jackpotting attacks in 2025 alone Mon, 23 Feb 2026 10:30:00 GMT https://www.infosecurity-magazine.com/news/jackpotting-surge-costs-banks-20m/ https://www.infosecurity-magazine.com/news/university-mississippi-medical/ University of Mississippi Medical Center is still scrambling to respond to a ransomware attack last Thursday Mon, 23 Feb 2026 08:30:00 GMT https://www.infosecurity-magazine.com/news/university-mississippi-medical/ https://www.infosecurity-magazine.com/news/ddos-escalation-frequency-power/ DDoS attack frequency has risen to ‘alarming levels,’ warns Radware report Fri, 20 Feb 2026 12:30:00 GMT https://www.infosecurity-magazine.com/news/ddos-escalation-frequency-power/ https://www.infosecurity-magazine.com/news/android-malware-hijacks-google/ A new Android malware implant using Google Gemini to perform persistence tasks was discovered on VirusTotal and analyzed by ESET Fri, 20 Feb 2026 11:35:00 GMT https://www.infosecurity-magazine.com/news/android-malware-hijacks-google/ https://www.infosecurity-magazine.com/news/remcos-rat-expands-real-time/ New Remcos RAT variant enhances real-time surveillance and evasion techniques to compromise Windows Thu, 19 Feb 2026 16:30:00 GMT https://www.infosecurity-magazine.com/news/remcos-rat-expands-real-time/ https://www.infosecurity-magazine.com/news/fake-coretax-apps-fraud-indonesia/ Fraud campaign exploiting Indonesia’s Coretax resulted in $1.5m to $2m in losses via malicious apps Thu, 19 Feb 2026 15:30:00 GMT https://www.infosecurity-magazine.com/news/fake-coretax-apps-fraud-indonesia/ https://www.infosecurity-magazine.com/news/industrial-control-system-vulns/ Forescout paper reveals ICS advisories hit a record 508 in 2025 Thu, 19 Feb 2026 13:00:00 GMT https://www.infosecurity-magazine.com/news/industrial-control-system-vulns/ https://www.infosecurity-magazine.com/news/starkiller-phishing-kit-bypasses/ A new cybercriminal toolkit uses proxies to mimic popular online services and represents a “significant escalation in phishing infrastructure,” warn researchers at Abnormal Thu, 19 Feb 2026 12:00:00 GMT https://www.infosecurity-magazine.com/news/starkiller-phishing-kit-bypasses/ https://www.infosecurity-magazine.com/news/vulnerabilities-vs-code-cursor/ Four serious new vulnerabilities affect Microsoft Visual Studio Code, Cursor and Windsurf extensions, three of which remain unpatched Thu, 19 Feb 2026 10:45:00 GMT https://www.infosecurity-magazine.com/news/vulnerabilities-vs-code-cursor/ https://www.infosecurity-magazine.com/news/researchers-six-new-openclaw/ Endor Labs has published details of six new vulnerabilities in popular AI assistant OpenClaw Thu, 19 Feb 2026 10:00:00 GMT https://www.infosecurity-magazine.com/news/researchers-six-new-openclaw/ https://www.infosecurity-magazine.com/news/cryptojacking-driver-boost-monero/ Cryptojacking campaign used pirated software to deploy a persistent XMRig miner with stealth tactics Wed, 18 Feb 2026 16:00:00 GMT https://www.infosecurity-magazine.com/news/cryptojacking-driver-boost-monero/ https://www.infosecurity-magazine.com/news/ai-assistants-covert-c2-relays/ AIs like Grok and Microsoft Copilot can be exploited as covert C2 channels for malware communication Wed, 18 Feb 2026 15:00:00 GMT https://www.infosecurity-magazine.com/news/ai-assistants-covert-c2-relays/ https://www.infosecurity-magazine.com/news/record-number-ransomware-victims/ Searchlight Cyber reports a 30% annual increase in ransomware victim numbers in 2025 Wed, 18 Feb 2026 11:30:00 GMT https://www.infosecurity-magazine.com/news/record-number-ransomware-victims/ https://www.infosecurity-magazine.com/news/chinese-apt-exploits-dell-zeroday/ Mandiant reveals campaign featuring exploit of a CVSS 10.0 CVE in Dell RecoverPoint for Virtual Machines Wed, 18 Feb 2026 10:10:00 GMT https://www.infosecurity-magazine.com/news/chinese-apt-exploits-dell-zeroday/ https://www.infosecurity-magazine.com/news/android-17-beta-secure-default/ Android 17 Beta introduces privacy, security updates and a new Canary channel for improved development Tue, 17 Feb 2026 16:00:00 GMT https://www.infosecurity-magazine.com/news/android-17-beta-secure-default/ https://www.infosecurity-magazine.com/news/apple-rcs-encryption-memory/ iOS 26.4 Beta adds end-to-end encryption for RCS messaging and enhanced Memory Integrity Enforcement Tue, 17 Feb 2026 15:00:00 GMT https://www.infosecurity-magazine.com/news/apple-rcs-encryption-memory/ https://www.infosecurity-magazine.com/news/cybercriminals-ai-vibe-extortion/ Unit 42 researchers observed a low-skilled threat actor using an LLM to script a professional extortion strategy, complete with deadlines and pressure tactics Tue, 17 Feb 2026 13:45:00 GMT https://www.infosecurity-magazine.com/news/cybercriminals-ai-vibe-extortion/ https://www.infosecurity-magazine.com/news/overprivileged-ai-45-times-higher/ Teleport study reveals that organizations running over-privileged AI have a 76% incident rate Tue, 17 Feb 2026 13:00:00 GMT https://www.infosecurity-magazine.com/news/overprivileged-ai-45-times-higher/ https://www.infosecurity-magazine.com/news/rise-in-ransomware-targeting/ Dragos annual report warns of a surge in ransomware attacks causing increased operational disruption in industrial environments Tue, 17 Feb 2026 12:50:00 GMT https://www.infosecurity-magazine.com/news/rise-in-ransomware-targeting/ https://www.infosecurity-magazine.com/news/infostealer-targets-openclaw/ Hudson Rock has warned OpenClaw users that infostealers are targeting their configuration files Tue, 17 Feb 2026 09:35:00 GMT https://www.infosecurity-magazine.com/news/infostealer-targets-openclaw/ https://www.infosecurity-magazine.com/news/vulnerabilities-password-managers/ Security researchers have challenged end-to-end encryption claims from popular commercial password managers Mon, 16 Feb 2026 17:15:00 GMT https://www.infosecurity-magazine.com/news/vulnerabilities-password-managers/ https://www.infosecurity-magazine.com/news/sme-cyber-attack-threat-ncsc/ NCSC’s Richard Horne has warned that cybercriminals do not care about business size and called for SMEs to act now to secure their organizations Mon, 16 Feb 2026 16:30:00 GMT https://www.infosecurity-magazine.com/news/sme-cyber-attack-threat-ncsc/ https://www.infosecurity-magazine.com/news/oysterloader-new-c2-infrastructure/ OysterLoader malware evolves into 2026, refining C2 infrastructure, obfuscation & infection stages Mon, 16 Feb 2026 16:15:00 GMT https://www.infosecurity-magazine.com/news/oysterloader-new-c2-infrastructure/ https://www.infosecurity-magazine.com/news/operation-doppelbrand-trusted/ New phishing campaign dubbed Operation DoppelBrand targeted major financial firms like Wells Fargo Mon, 16 Feb 2026 15:45:00 GMT https://www.infosecurity-magazine.com/news/operation-doppelbrand-trusted/ https://www.infosecurity-magazine.com/news/google-patches-new-in-wild-chrome/ A high severity vulnerability in Google Chrome and allows remote attackers to execute code Mon, 16 Feb 2026 11:30:00 GMT https://www.infosecurity-magazine.com/news/google-patches-new-in-wild-chrome/ https://www.infosecurity-magazine.com/news/crypto-payments-human-traffickers/ Chainalysis warns that online fraud is fuelling sophisticated human trafficking operations Mon, 16 Feb 2026 10:30:00 GMT https://www.infosecurity-magazine.com/news/crypto-payments-human-traffickers/ https://www.infosecurity-magazine.com/news/odido-breach-millions-dutch-telco/ Dutch telco Odido has revealed a major data breach impacting over six million customers Mon, 16 Feb 2026 09:30:00 GMT https://www.infosecurity-magazine.com/news/odido-breach-millions-dutch-telco/ https://www.infosecurity-magazine.com/news/munich-security-index-cyberattacks/ G7 countries ranked cyber-attacks as the top risk, while BICS members placed cyber threats only as the eighth most pressing risk Fri, 13 Feb 2026 12:30:00 GMT https://www.infosecurity-magazine.com/news/munich-security-index-cyberattacks/ https://www.infosecurity-magazine.com/news/fake-ai-assistants-google-chrome/ Hundreds of thousands of users have downloaded malicious AI extensions masquerading as ChatGPT, Gemini, Grok and others, warn cybersecurity researchers at LayerX Fri, 13 Feb 2026 11:25:00 GMT https://www.infosecurity-magazine.com/news/fake-ai-assistants-google-chrome/ https://www.infosecurity-magazine.com/news/world-leaks-ransomware-rustyrocket/ Accenture Cybersecurity warns over difficult to detect, “sophisticated toolset” being deployed as part of extortion campaigns Thu, 12 Feb 2026 13:30:00 GMT https://www.infosecurity-magazine.com/news/world-leaks-ransomware-rustyrocket/ https://www.infosecurity-magazine.com/news/nation-state-hackers-gemini-ai/ Google researchers found that government-backed hackers now use AI throughout the whole attack lifecycle Thu, 12 Feb 2026 12:45:00 GMT https://www.infosecurity-magazine.com/news/nation-state-hackers-gemini-ai/ https://www.infosecurity-magazine.com/news/ai-skills-dangerous-new-attack/ New TrendAI report warns that most security tools can’t protect against attacks on AI skills artifacts Thu, 12 Feb 2026 10:45:00 GMT https://www.infosecurity-magazine.com/news/ai-skills-dangerous-new-attack/ https://www.infosecurity-magazine.com/news/time-exploit-plummets-nday-flaws/ Flashpoint warns of a dramatic drop in the average time between vulnerability disclosure and exploitation Thu, 12 Feb 2026 09:30:00 GMT https://www.infosecurity-magazine.com/news/time-exploit-plummets-nday-flaws/ https://www.infosecurity-magazine.com/news/north-korea-hackers-deepfake-crypto/ Campaign combines stolen Telegram accounts, fake Zoom calls and ClickFix attacks to deploy infostealer malware Wed, 11 Feb 2026 16:35:00 GMT https://www.infosecurity-magazine.com/news/north-korea-hackers-deepfake-crypto/ https://www.infosecurity-magazine.com/news/court-hands-crypto-scammer-20-years/ A federal court has sentenced crypto-scammer Daren Li to 20 years in absentia Wed, 11 Feb 2026 12:05:00 GMT https://www.infosecurity-magazine.com/news/court-hands-crypto-scammer-20-years/ https://www.infosecurity-magazine.com/news/first-forecasts-record-50000-cve/ This year should break all the records in terms of vulnerability disclosed, reaching or even surpassing 50,000 new CVEs disclosed Wed, 11 Feb 2026 11:35:00 GMT https://www.infosecurity-magazine.com/news/first-forecasts-record-50000-cve/ https://www.infosecurity-magazine.com/news/microsoft-six-zero-day-feb-2026/ Six actively exploited zero-day bug have been patched by Microsoft Wed, 11 Feb 2026 09:50:00 GMT https://www.infosecurity-magazine.com/news/microsoft-six-zero-day-feb-2026/ https://www.infosecurity-magazine.com/news/phorpiex-phishing-global-group/ High-volume phishing campaign delivers Phorpiex malware via malicious Windows Shortcut files Tue, 10 Feb 2026 16:00:00 GMT https://www.infosecurity-magazine.com/news/phorpiex-phishing-global-group/ https://www.infosecurity-magazine.com/news/digital-parasite-attackers-stealth/ Picus Security warns of the increasingly sophisticated ways malicious activity is staying hidden Tue, 10 Feb 2026 14:00:00 GMT https://www.infosecurity-magazine.com/news/digital-parasite-attackers-stealth/ https://www.infosecurity-magazine.com/news/zerodayrat-mobile-spyware-android/ ZeroDayRAT is a new mobile spyware targeting Android and iOS, offering attackers persistent access Tue, 10 Feb 2026 14:00:00 GMT https://www.infosecurity-magazine.com/news/zerodayrat-mobile-spyware-android/ https://www.infosecurity-magazine.com/news/singapore-takes-down-china-hackers/ Operation Cyber Guardian was Singapore’s largest and longest running anti-cyber threat law enforcement operation Tue, 10 Feb 2026 12:30:00 GMT https://www.infosecurity-magazine.com/news/singapore-takes-down-china-hackers/ https://www.infosecurity-magazine.com/news/ncsc-warning-severe-cyberattacks/ NCSC call firms to ‘act now’ following disruptive malware attacks targeting Polish energy providers Tue, 10 Feb 2026 11:50:00 GMT https://www.infosecurity-magazine.com/news/ncsc-warning-severe-cyberattacks/ https://www.infosecurity-magazine.com/news/european-governments-zeroday/ The European Commission and government agencies in Finland and the Netherlands have suffered potentially related breaches Tue, 10 Feb 2026 09:45:00 GMT https://www.infosecurity-magazine.com/news/european-governments-zeroday/ https://www.infosecurity-magazine.com/news/zeroclick-flaw-claude-dxt/ Security researchers from LayerX identified a new flaw in 50 Claude Desktop Extensions that could lead to unauthorized remote code execution Mon, 09 Feb 2026 17:30:00 GMT https://www.infosecurity-magazine.com/news/zeroclick-flaw-claude-dxt/ https://www.infosecurity-magazine.com/news/men-charged-gambling-fraud-scheme/ Two Connecticut men face federal charges for a $3m scheme targeting online gambling platforms Mon, 09 Feb 2026 16:00:00 GMT https://www.infosecurity-magazine.com/news/men-charged-gambling-fraud-scheme/ https://www.infosecurity-magazine.com/news/voidlink-malware-multi-cloud-ai/ VoidLink, a Linux-based C2 framework, facilitates credential theft, data exfiltration across clouds Mon, 09 Feb 2026 15:25:00 GMT https://www.infosecurity-magazine.com/news/voidlink-malware-multi-cloud-ai/ https://www.infosecurity-magazine.com/news/bridgepay-confirms-ransomware/ The services of Florida-based payments platform BridgePay are offline due to a ransomware attack Mon, 09 Feb 2026 11:15:00 GMT https://www.infosecurity-magazine.com/news/bridgepay-confirms-ransomware/ https://www.infosecurity-magazine.com/news/social-media-platforms-billions/ Revolut claims social media sites make £3.8bn annually from scam ads targeting European users Mon, 09 Feb 2026 10:30:00 GMT https://www.infosecurity-magazine.com/news/social-media-platforms-billions/ https://www.infosecurity-magazine.com/news/researchers-40000-exposed-openclaw/ SecurityScorecard has identified over 40,000 OpenClaw deployments exposed to potential attack Mon, 09 Feb 2026 09:30:00 GMT https://www.infosecurity-magazine.com/news/researchers-40000-exposed-openclaw/ https://www.infosecurity-magazine.com/news/us-agencies-scrap-end-of-support/ CISA has issued a new directive requiring federal agencies to decommission all end of support edge devices within 12 months to reduce ongoing exploitation risks Mon, 09 Feb 2026 09:00:00 GMT https://www.infosecurity-magazine.com/news/us-agencies-scrap-end-of-support/ https://www.infosecurity-magazine.com/news/china-malware-kit-targets-routers/ DKnife is a Chinese made malware framework that targets Chinese-based users Fri, 06 Feb 2026 17:00:00 GMT https://www.infosecurity-magazine.com/news/china-malware-kit-targets-routers/ https://www.infosecurity-magazine.com/news/substack-confirms-data-breach/ Substack did not specify the number of users affected by the data breach Fri, 06 Feb 2026 16:22:00 GMT https://www.infosecurity-magazine.com/news/substack-confirms-data-breach/ https://www.infosecurity-magazine.com/news/cyber-startup-programme/ Infosecurity Europe 2026 will debut a new Cyber Startup Programme, featuring a dedicated show-floor zone for early-stage cybersecurity companies to showcase innovations, connect with investors and highlight emerging technologies Fri, 06 Feb 2026 08:30:00 GMT https://www.infosecurity-magazine.com/news/cyber-startup-programme/ https://www.infosecurity-magazine.com/news/malicious-commands-in-github/ Flaws in GitHub Codespaces allow RCE via crafted repositories or pull requests Thu, 05 Feb 2026 14:30:00 GMT https://www.infosecurity-magazine.com/news/malicious-commands-in-github/ https://www.infosecurity-magazine.com/news/smartphones-involved-every-police/ Cellebrite data confirms digital evidence is now central to almost all cases Thu, 05 Feb 2026 13:30:00 GMT https://www.infosecurity-magazine.com/news/smartphones-involved-every-police/ https://www.infosecurity-magazine.com/news/hacking-exploits-windows-winrar/ Researchers at Check Point link ‘Amarath-Dragon’ attacks to prolific Chinese cyber-espionage operation Thu, 05 Feb 2026 11:50:00 GMT https://www.infosecurity-magazine.com/news/hacking-exploits-windows-winrar/ https://www.infosecurity-magazine.com/news/ai-voice-virtual-meeting-fraud/ Pindrop warns of 1210% increase in AI-powered fraud last year Thu, 05 Feb 2026 10:05:00 GMT https://www.infosecurity-magazine.com/news/ai-voice-virtual-meeting-fraud/ https://www.infosecurity-magazine.com/news/global-systembc-botnet-10000/ SystemBC malware linked to 10,000 infected IPs, posing risks to sensitive government infrastructure Wed, 04 Feb 2026 16:15:00 GMT https://www.infosecurity-magazine.com/news/global-systembc-botnet-10000/ https://www.infosecurity-magazine.com/news/shadowsyndicate/ ShadowSyndicate cluster expands with new SSH fingerprints connecting servers to other ransomware ops Wed, 04 Feb 2026 15:00:00 GMT https://www.infosecurity-magazine.com/news/shadowsyndicate/ https://www.infosecurity-magazine.com/news/ai-double-volume-phishing-attacks/ Cofense claims AI is making phishing emails more personalized and sophisticated Wed, 04 Feb 2026 14:00:00 GMT https://www.infosecurity-magazine.com/news/ai-double-volume-phishing-attacks/ https://www.infosecurity-magazine.com/news/two-critical-flaws-in-n8n-ai/ Pillar Security discovered two new critical vulnerabilities in n8n that could lead to supply chain compromise, credential harvesting and complete takeover attacks Wed, 04 Feb 2026 13:00:00 GMT https://www.infosecurity-magazine.com/news/two-critical-flaws-in-n8n-ai/ https://www.infosecurity-magazine.com/news/solarwinds-web-help-desk/ CISA has added a critical CVE in SolarWinds Web Help Desk to its KEV Catalog Wed, 04 Feb 2026 10:15:00 GMT https://www.infosecurity-magazine.com/news/solarwinds-web-help-desk/ https://www.infosecurity-magazine.com/news/malicious-crypto-trading-skills/ A security researcher found 386 malicious ‘skills’ published on ClawHub, a skill repository for the popular OpenClaw AI assistant project Tue, 03 Feb 2026 16:30:00 GMT https://www.infosecurity-magazine.com/news/malicious-crypto-trading-skills/ https://www.infosecurity-magazine.com/news/wordpress-sql-injection-flaw-40000/ 40,000 WordPress sites are vulnerable to SQL injection in Quiz and Survey Master plugin Tue, 03 Feb 2026 16:15:00 GMT https://www.infosecurity-magazine.com/news/wordpress-sql-injection-flaw-40000/ https://www.infosecurity-magazine.com/news/dockerdash-weakness-dockers-ask/ DockerDash vulnerability allows RCE and data exfiltration via unverified metadata in Ask Gordon Tue, 03 Feb 2026 15:15:00 GMT https://www.infosecurity-magazine.com/news/dockerdash-weakness-dockers-ask/ https://www.infosecurity-magazine.com/news/ico-investigates-x-over-grok-ai/ UK Data Protection Watchdog has “serious concerns” over data privacy on Elon Musk’s social platform Tue, 03 Feb 2026 14:47:00 GMT https://www.infosecurity-magazine.com/news/ico-investigates-x-over-grok-ai/ https://www.infosecurity-magazine.com/news/researchers-warn-new-vect-raas/ A new ransomware-as-a-service operation dubbed “Vect” features custom malware Tue, 03 Feb 2026 14:00:00 GMT https://www.infosecurity-magazine.com/news/researchers-warn-new-vect-raas/ https://www.infosecurity-magazine.com/news/paris-prosecutors-raid-elon-musk-x/ Elon Musk and X’s former CEO were summoned for voluntary interviews in Paris on April 20, 2026 Tue, 03 Feb 2026 12:45:00 GMT https://www.infosecurity-magazine.com/news/paris-prosecutors-raid-elon-musk-x/ https://www.infosecurity-magazine.com/news/password-stealing-phishing-pdf/ Multi-stage attack begins with fake message relating to business requests and evades detection with link hidden in a PDF Tue, 03 Feb 2026 10:55:00 GMT https://www.infosecurity-magazine.com/news/password-stealing-phishing-pdf/ https://www.infosecurity-magazine.com/news/moltbook-exposes-user-data-api/ Wiz Security claims Moltbook misconfiguration allowed full read and write access Tue, 03 Feb 2026 10:00:00 GMT https://www.infosecurity-magazine.com/news/moltbook-exposes-user-data-api/ https://www.infosecurity-magazine.com/news/nsa-zero-trust-implementation/ NSA released new guidelines to help organizations achieve target-level Zero Trust maturity Mon, 02 Feb 2026 16:05:00 GMT https://www.infosecurity-magazine.com/news/nsa-zero-trust-implementation/ https://www.infosecurity-magazine.com/news/notepad-update-hijacked/ A supply chain attack on Notepad++ update process was linked to compromised hosting infrastructure Mon, 02 Feb 2026 15:15:00 GMT https://www.infosecurity-magazine.com/news/notepad-update-hijacked/ https://www.infosecurity-magazine.com/news/fancy-bear-exploits-office-flaw/ Russia-linked hacking group Fancy Bear is exploiting a brand-new vulnerability in Microsoft Office, CERT-UA says Mon, 02 Feb 2026 12:45:00 GMT https://www.infosecurity-magazine.com/news/fancy-bear-exploits-office-flaw/ https://www.infosecurity-magazine.com/news/android-rat-hugging-face-host/ Bitdefender has discovered a new Android malware campaign that uses Hugging Face Mon, 02 Feb 2026 10:30:00 GMT https://www.infosecurity-magazine.com/news/android-rat-hugging-face-host/ https://www.infosecurity-magazine.com/news/former-google-engineer-guilty/ Linwei Ding, a former Google engineer, has been found guilty of stealing trade secrets for China Mon, 02 Feb 2026 09:20:00 GMT https://www.infosecurity-magazine.com/news/former-google-engineer-guilty/ https://www.infosecurity-magazine.com/news/labyrinth-chollima-dprk-three/ CrowdStrike assessed that two new threat actor groups have spun off from North Korean Labyrinth Chollima hackers Fri, 30 Jan 2026 15:40:00 GMT https://www.infosecurity-magazine.com/news/labyrinth-chollima-dprk-three/ https://www.infosecurity-magazine.com/news/ai-malware-redkitten-iranian/ The RedKitten campaign distributes lures designed to target people seeking information about missing persons or political dissidents in Iran Fri, 30 Jan 2026 11:55:00 GMT https://www.infosecurity-magazine.com/news/ai-malware-redkitten-iranian/ https://www.infosecurity-magazine.com/news/nca-natwest-warning-over-invoice/ Cyber fraudsters targeting corporate finance departments costs businesses millions a year Fri, 30 Jan 2026 11:10:00 GMT https://www.infosecurity-magazine.com/news/nca-natwest-warning-over-invoice/ https://www.infosecurity-magazine.com/news/google-disrupts-proxy-networks/ Google has taken coordinated action against the massive IPIDEA residential proxy network, enhancing customer protections and disrupting cybercrime operations Thu, 29 Jan 2026 17:15:00 GMT https://www.infosecurity-magazine.com/news/google-disrupts-proxy-networks/ https://www.infosecurity-magazine.com/news/fbi-operation-winter-shield-cyber/ The FBI outlines ten actions which organizations can take to defend networks against cybercriminal and nation-state threats Thu, 29 Jan 2026 16:50:00 GMT https://www.infosecurity-magazine.com/news/fbi-operation-winter-shield-cyber/ https://www.infosecurity-magazine.com/news/france-finesemployment-agency-5m/ The French data protection regulator said that France Travail’s response to a 2024 data breach violated GDPR Thu, 29 Jan 2026 16:30:00 GMT https://www.infosecurity-magazine.com/news/france-finesemployment-agency-5m/ https://www.infosecurity-magazine.com/news/cisa-targets-insider-threat-risks/ CISA urges action against insider threats with publication of a new infographic offering strategies to manage risks Thu, 29 Jan 2026 16:00:00 GMT https://www.infosecurity-magazine.com/news/cisa-targets-insider-threat-risks/ https://www.infosecurity-magazine.com/news/fbi-takes-down-ramp-ransomware/ The dark web forum administrator confirmed the takedown and said they had “no plans to rebuild” Thu, 29 Jan 2026 13:05:00 GMT https://www.infosecurity-magazine.com/news/fbi-takes-down-ramp-ransomware/ https://www.infosecurity-magazine.com/news/ransomware-numbers-rise-despite/ Ransomware victims surged in Q4 2025 despite fewer active extortion groups, with data leaks rising 50%, ReliaQuest researchers report Thu, 29 Jan 2026 13:01:00 GMT https://www.infosecurity-magazine.com/news/ransomware-numbers-rise-despite/ https://www.infosecurity-magazine.com/news/us-data-breaches-record-high/ Non-profit ITRC says the number of data breaches increased 5% annually to reach a record total in 2025 Thu, 29 Jan 2026 12:45:00 GMT https://www.infosecurity-magazine.com/news/us-data-breaches-record-high/ https://www.infosecurity-magazine.com/news/number-cybersecurity-pros-surges/ Cybersecurity is now the fifth fastest-growing occupation in the UK, says Socura Thu, 29 Jan 2026 09:45:00 GMT https://www.infosecurity-magazine.com/news/number-cybersecurity-pros-surges/ https://www.infosecurity-magazine.com/news/cybersecurity-teams-embrace-ai/ Despite the seemingly widespread adoption of AI for security operations, security leaders primarily use it for “relatively basic use cases,” said a Sumo Logic study Thu, 29 Jan 2026 09:00:00 GMT https://www.infosecurity-magazine.com/news/cybersecurity-teams-embrace-ai/ https://www.infosecurity-magazine.com/news/12-openssl-flaws/ A recent update has fixed 12 vulnerabilities in OpenSSL, some existing in the codebase for years Wed, 28 Jan 2026 16:45:00 GMT https://www.infosecurity-magazine.com/news/12-openssl-flaws/ https://www.infosecurity-magazine.com/news/n8n-sandbox-flaws-allow-rce/ Two critical security flaws in n8n have exposed sandboxing vulnerabilities, enabling remote code execution for attackers Wed, 28 Jan 2026 16:00:00 GMT https://www.infosecurity-magazine.com/news/n8n-sandbox-flaws-allow-rce/ https://www.infosecurity-magazine.com/news/emojis-in-purerats-code/ Researchers discover that PureRAT’s code now contains emojis – indicating it has been written by AI based-on comments ripped from social media. Wed, 28 Jan 2026 12:10:00 GMT https://www.infosecurity-magazine.com/news/emojis-in-purerats-code/ https://www.infosecurity-magazine.com/news/ai-security-threats-loom-zscaler/ Zscaler analysts found critical vulnerabilities in 100% of enterprise AI systems, with 90% compromised in under 90 minutes Wed, 28 Jan 2026 11:45:00 GMT https://www.infosecurity-magazine.com/news/ai-security-threats-loom-zscaler/ https://www.infosecurity-magazine.com/news/454000-malicious-open-source/ Sonatype warns that open source threats became industrialized with a surge in malicious packages in 2025 Wed, 28 Jan 2026 11:00:00 GMT https://www.infosecurity-magazine.com/news/454000-malicious-open-source/ https://www.infosecurity-magazine.com/news/chinese-money-launderers-global/ Chainalysis claims Chinese money launderers now account for 20% of global activity Wed, 28 Jan 2026 10:30:00 GMT https://www.infosecurity-magazine.com/news/chinese-money-launderers-global/ https://www.infosecurity-magazine.com/news/pyodide-sandbox-escape-rce-grist/ Critical sandbox escape vulnerability in Grist-Core enables remote code execution via a malicious formula Tue, 27 Jan 2026 16:45:00 GMT https://www.infosecurity-magazine.com/news/pyodide-sandbox-escape-rce-grist/ https://www.infosecurity-magazine.com/news/peckbirdy-framework-tied-china/ PeckBirdy command-and-control framework targeting gambling, government sectors in Asia since 2023 has been linked to China-aligned APTs Tue, 27 Jan 2026 16:00:00 GMT https://www.infosecurity-magazine.com/news/peckbirdy-framework-tied-china/ https://www.infosecurity-magazine.com/news/over-80-of-ethical-hackers-now-use/ Bugcrowd study reveals 82% of security researchers now use AI, a big increase from 2023 figures Tue, 27 Jan 2026 14:00:00 GMT https://www.infosecurity-magazine.com/news/over-80-of-ethical-hackers-now-use/ https://www.infosecurity-magazine.com/news/microsoft-patch-office-zero-day/ Microsoft urged customers running Microsoft Office 2016 and 2019 to apply the patch to be protected Tue, 27 Jan 2026 10:45:00 GMT https://www.infosecurity-magazine.com/news/microsoft-patch-office-zero-day/ https://www.infosecurity-magazine.com/news/worldleaks-ransomware-14tb-nike/ Nike is investigating after the World Leaks ransomware group posted a 1.4TB data dump Tue, 27 Jan 2026 09:45:00 GMT https://www.infosecurity-magazine.com/news/worldleaks-ransomware-14tb-nike/ https://www.infosecurity-magazine.com/news/cisa-post-quantum-cryptography/ CISA released initial list of PQC-capable hardware and software to guide companies amid quantum threats Mon, 26 Jan 2026 16:15:00 GMT https://www.infosecurity-magazine.com/news/cisa-post-quantum-cryptography/ https://www.infosecurity-magazine.com/news/researchers-haxor-seo-poisoning/ Fortra researchers have discovered a new SEO poisoning operation known as “HaxorSEO” Mon, 26 Jan 2026 15:00:00 GMT https://www.infosecurity-magazine.com/news/researchers-haxor-seo-poisoning/ https://www.infosecurity-magazine.com/news/law-firm-coupang-security-failures/ The US law firm Hagens Berman will lead a class action lawsuit against Coupang over security failures that led to a June 2025 data breach Mon, 26 Jan 2026 13:00:00 GMT https://www.infosecurity-magazine.com/news/law-firm-coupang-security-failures/ https://www.infosecurity-magazine.com/news/okta-flags-vishing-attacks-which/ Threat actors posing as IT support teams use phishing kits to generate fake login sites in real-time to trick victims into handing over credentials Mon, 26 Jan 2026 12:12:00 GMT https://www.infosecurity-magazine.com/news/okta-flags-vishing-attacks-which/ https://www.infosecurity-magazine.com/news/wiper-attack-polish-power-grid/ A destructive cyber attack targeting Poland’s energy sector has been linked to Russian APT group Sandworm Mon, 26 Jan 2026 10:55:00 GMT https://www.infosecurity-magazine.com/news/wiper-attack-polish-power-grid/ https://www.infosecurity-magazine.com/news/nhs-open-letter-demands-improved/ Open letter by NHS technology leaders outlines plans to identify risks to software supply chain security across health and social care system Fri, 23 Jan 2026 14:38:00 GMT https://www.infosecurity-magazine.com/news/nhs-open-letter-demands-improved/ https://www.infosecurity-magazine.com/news/under-armour-investigates-data/ Under Armour said there is no evidence at this point to suggest the incident affected systems used to process payments or store customer passwords Fri, 23 Jan 2026 12:10:00 GMT https://www.infosecurity-magazine.com/news/under-armour-investigates-data/ https://www.infosecurity-magazine.com/news/appsmith-flaw-account-takeovers/ Critical vulnerability in Appsmith allows account takeover via flawed password reset process Thu, 22 Jan 2026 16:00:00 GMT https://www.infosecurity-magazine.com/news/appsmith-flaw-account-takeovers/ https://www.infosecurity-magazine.com/news/realhomes-crm-plugin-flaw/ Security flaw in RealHomes CRM plugin allowed file uploads; patches released for 30,000+ sites Thu, 22 Jan 2026 15:10:00 GMT https://www.infosecurity-magazine.com/news/realhomes-crm-plugin-flaw/ https://www.infosecurity-magazine.com/news/zeroday-exploits-surge-vulncheck/ VulnCheck analysts found that vulnerabilities exploited before being publicly disclosed rose from 23.6% in 2024 to 28.96% in 2025 Thu, 22 Jan 2026 12:45:00 GMT https://www.infosecurity-magazine.com/news/zeroday-exploits-surge-vulncheck/ https://www.infosecurity-magazine.com/news/lastpass-phishing-master-passwords/ Phoney email alerts suggest users need to backup their LastPass accounts within 24 hours. LastPass says it would never require this action from users Thu, 22 Jan 2026 12:07:00 GMT https://www.infosecurity-magazine.com/news/lastpass-phishing-master-passwords/ https://www.infosecurity-magazine.com/news/uk-execs-warn-may-not-suruvie/ UK Executives Warn They May Not Survive a Major Cyber-Attack, Vodafone Survey Finds Thu, 22 Jan 2026 11:05:00 GMT https://www.infosecurity-magazine.com/news/uk-execs-warn-may-not-suruvie/ https://www.infosecurity-magazine.com/news/160000-companies-regulator-gdpr/ DLA Piper finds 22% increase in breached firms notifying European GDPR regulators Thu, 22 Jan 2026 10:35:00 GMT https://www.infosecurity-magazine.com/news/160000-companies-regulator-gdpr/ https://www.infosecurity-magazine.com/news/phishing-spoofed-sites-olympic/ Cyber risks for the Milano-Cortina 2026 Winter Games include phishing and spoofed websites as key threat vectors Wed, 21 Jan 2026 16:00:00 GMT https://www.infosecurity-magazine.com/news/phishing-spoofed-sites-olympic/ https://www.infosecurity-magazine.com/news/loan-scam-harvests-cards-pins/ Loan phishing operation in Peru is stealing card info by impersonating financial institutions Wed, 21 Jan 2026 15:00:00 GMT https://www.infosecurity-magazine.com/news/loan-scam-harvests-cards-pins/ https://www.infosecurity-magazine.com/news/voidlink-linux-malware-built-using/ Sophisticated malware previously thought to be the work of a well-resourced cyber-crime group was built by one person - with the aid of AI tools Wed, 21 Jan 2026 12:51:00 GMT https://www.infosecurity-magazine.com/news/voidlink-linux-malware-built-using/ https://www.infosecurity-magazine.com/news/eu-unveils-cybersecurity-act-2/ The EU’s Cybersecurity Act 2.0 will aim to address some of the challenges of the current CSA, including the slow rollout of certification schemes Wed, 21 Jan 2026 12:15:00 GMT https://www.infosecurity-magazine.com/news/eu-unveils-cybersecurity-act-2/ https://www.infosecurity-magazine.com/news/global-cybersecurity-vulnerability/ A new service, the Global Cybersecurity Vulnerability Enumeration (GCVE), offers an alternative to the US-led CVE Wed, 21 Jan 2026 10:30:00 GMT https://www.infosecurity-magazine.com/news/global-cybersecurity-vulnerability/ https://www.infosecurity-magazine.com/news/report-fraud-fight-against/ City of London Police has launched the UK’s national Report Fraud service Wed, 21 Jan 2026 09:45:00 GMT https://www.infosecurity-magazine.com/news/report-fraud-fight-against/ https://www.infosecurity-magazine.com/news/ai-model-collapse-zero-trust-data/ Gartner predicts 50% of organizations will adopt zero trust data governance by 2028 Wed, 21 Jan 2026 08:30:00 GMT https://www.infosecurity-magazine.com/news/ai-model-collapse-zero-trust-data/ https://www.infosecurity-magazine.com/news/chainlit-security-flaws-ai-apps/ 2 security vulnerabilities in the Chainlit framework expose risks from web flaws in AI applications Tue, 20 Jan 2026 16:30:00 GMT https://www.infosecurity-magazine.com/news/chainlit-security-flaws-ai-apps/ https://www.infosecurity-magazine.com/news/prompt-injection-bugs-anthropic/ Three vulnerabilities in Anthropic's Git server for the MCP can be exploited via prompt injection Tue, 20 Jan 2026 15:01:00 GMT https://www.infosecurity-magazine.com/news/prompt-injection-bugs-anthropic/ https://www.infosecurity-magazine.com/news/cyber-risks-among-ceos-top-worries/ PwC’s 29th Global CEO Survey shows cyber risk rising to the top of CEO concerns as confidence in short term business growth weakens Tue, 20 Jan 2026 14:30:00 GMT https://www.infosecurity-magazine.com/news/cyber-risks-among-ceos-top-worries/ https://www.infosecurity-magazine.com/news/linkedin-phishing-campaign-targets/ Cybersecurity Researchers at ReliaQuest warn of an ongoing campaign delivered to “high-value individuals” via LinkedIn messages Tue, 20 Jan 2026 13:04:00 GMT https://www.infosecurity-magazine.com/news/linkedin-phishing-campaign-targets/ https://www.infosecurity-magazine.com/news/ai-supercharges-attacks-cybercrime/ Weaponized AI is fueling a new wave of cybercrime, said Group-IB in its latest report Tue, 20 Jan 2026 12:15:00 GMT https://www.infosecurity-magazine.com/news/ai-supercharges-attacks-cybercrime/ https://www.infosecurity-magazine.com/news/scam-market-tudou-guarantee-shut/ A notorious marketplace for fraud, Tudou Guarantee, appears to have closed its public Telegram groups Tue, 20 Jan 2026 10:00:00 GMT https://www.infosecurity-magazine.com/news/scam-market-tudou-guarantee-shut/ https://www.infosecurity-magazine.com/news/pdfsider-anti-vm-checks-hidden/ New malware PDFSIDER enables covert, long-term access to compromised systems via advanced techniques Mon, 19 Jan 2026 16:20:00 GMT https://www.infosecurity-magazine.com/news/pdfsider-anti-vm-checks-hidden/ https://www.infosecurity-magazine.com/news/russia-cyber-pressure-uk-orgs/ UK NCSC warned of disruptive cyber attacks by Russian hacktivists targeting critical infrastructure Mon, 19 Jan 2026 15:30:00 GMT https://www.infosecurity-magazine.com/news/russia-cyber-pressure-uk-orgs/ https://www.infosecurity-magazine.com/news/malicious-google-chrome-extension/ Users of widely used HR and ERP platforms targeted with malicious extensions which were available in the Chrome Web Store Mon, 19 Jan 2026 12:30:00 GMT https://www.infosecurity-magazine.com/news/malicious-google-chrome-extension/ https://www.infosecurity-magazine.com/news/suspects-black-basta-ransomware/ Oleg Evgenievich Nefedov, allegedly one of the founders of Black Basta, was also placed on Europol’s and Interpol’s Most Wanted lists Mon, 19 Jan 2026 11:30:00 GMT https://www.infosecurity-magazine.com/news/suspects-black-basta-ransomware/ https://www.infosecurity-magazine.com/news/cyber-breaches-compliance/ UK firms face confluence of cyber-related risks in 2026, says Nardello & Co Mon, 19 Jan 2026 09:56:00 GMT https://www.infosecurity-magazine.com/news/cyber-breaches-compliance/ https://www.infosecurity-magazine.com/news/researchers-exploit-bug-stealc/ CyberArk says it exploited a vulnerability in the StealC infostealer to gather intelligence Mon, 19 Jan 2026 09:03:00 GMT https://www.infosecurity-magazine.com/news/researchers-exploit-bug-stealc/ https://www.infosecurity-magazine.com/news/tamperedchef-malvertising-fake-pdf/ TamperedChef creates backdoors and steals user credentials – particularly in organizations reliant on technical equipment Fri, 16 Jan 2026 12:05:00 GMT https://www.infosecurity-magazine.com/news/tamperedchef-malvertising-fake-pdf/ https://www.infosecurity-magazine.com/news/account-compromise-surged-2025/ An eSentire report showed credential theft accounted for 74% of all observed cyber threats in 2025 Fri, 16 Jan 2026 11:40:00 GMT https://www.infosecurity-magazine.com/news/account-compromise-surged-2025/ https://www.infosecurity-magazine.com/news/rondodox-botnet-targets-hpe/ Check Point Research has reported a surge in attacks on a vulnerability in HPE OneView, driven by the Linux-based RondoDox botnet Fri, 16 Jan 2026 09:15:00 GMT https://www.infosecurity-magazine.com/news/rondodox-botnet-targets-hpe/ https://www.infosecurity-magazine.com/news/global-agencies-secure-industrial/ CISA, NCSC and the FBI have released a new security guide to enhance protection for OT environments Thu, 15 Jan 2026 16:15:00 GMT https://www.infosecurity-magazine.com/news/global-agencies-secure-industrial/ https://www.infosecurity-magazine.com/news/hackers-shun-encryption-in-favour/ While ‘traditional’ ransomware attacks remain stable, some gangs are shifting towards exploiting zero-days and supply chains to go straight to stealing data Thu, 15 Jan 2026 15:45:00 GMT https://www.infosecurity-magazine.com/news/hackers-shun-encryption-in-favour/ https://www.infosecurity-magazine.com/news/cyber-threat-actors-ramp-up-ics/ Hacktivists and cybercriminals have intensified their efforts to exploit vulnerabilities in industrial systems, according to a Cyble report Thu, 15 Jan 2026 15:00:00 GMT https://www.infosecurity-magazine.com/news/cyber-threat-actors-ramp-up-ics/ https://www.infosecurity-magazine.com/news/codebuild-flaw-aws-console-risk/ A critical AWS CodeBuild misconfiguration has exposed core repositories to potential attack Thu, 15 Jan 2026 15:00:00 GMT https://www.infosecurity-magazine.com/news/codebuild-flaw-aws-console-risk/ https://www.infosecurity-magazine.com/news/ciso-role-inflexion-point/ IANS Research reveals a growth in executive-level CISO titles, amid resource challenges Thu, 15 Jan 2026 14:00:00 GMT https://www.infosecurity-magazine.com/news/ciso-role-inflexion-point/ https://www.infosecurity-magazine.com/news/data-privacy-teams-staffing/ ISACA’s State of Privacy 2026 report reveals that data privacy teams remain understaffed and underfunded, despite growing regulatory demands and rising technical privacy challenges Thu, 15 Jan 2026 12:15:00 GMT https://www.infosecurity-magazine.com/news/data-privacy-teams-staffing/ https://www.infosecurity-magazine.com/news/ice-agent-doxxing-site-ddosed/ DDoS-ers are striking a website linked to a data breach at the Department of Homeland Security Thu, 15 Jan 2026 11:15:00 GMT https://www.infosecurity-magazine.com/news/ice-agent-doxxing-site-ddosed/ https://www.infosecurity-magazine.com/news/criminal-subscription-service/ RedVDS cyber-crime-as-a-service platform powering phishing, BEC attacks and other fraud has cost victims millions Wed, 14 Jan 2026 16:32:00 GMT https://www.infosecurity-magazine.com/news/criminal-subscription-service/ https://www.infosecurity-magazine.com/news/hackers-fake-paypal-notices-deploy/ Phishing attacks have been identified using fake PayPal alerts to exploit remote monitoring and management tools Wed, 14 Jan 2026 16:00:00 GMT https://www.infosecurity-magazine.com/news/hackers-fake-paypal-notices-deploy/ https://www.infosecurity-magazine.com/news/deadlock-polygon-smart-contracts/ A new DeadLock ransomware operation uses Polygon blockchain smart contracts to manage proxy server addresses Wed, 14 Jan 2026 14:20:00 GMT https://www.infosecurity-magazine.com/news/deadlock-polygon-smart-contracts/ https://www.infosecurity-magazine.com/news/g7-2034-deadline-finance-pqc/ The financial sector should finalize its post-quantum cryptography transition circa 2034, G7 cyber experts said Wed, 14 Jan 2026 11:30:00 GMT https://www.infosecurity-magazine.com/news/g7-2034-deadline-finance-pqc/ https://www.infosecurity-magazine.com/news/microsoft-three-zerodays-busy/ Microsoft has patched three zero-day vulnerabilities in the first patch Tuesday of 2026, including one under active exploitation Wed, 14 Jan 2026 10:45:00 GMT https://www.infosecurity-magazine.com/news/microsoft-three-zerodays-busy/ https://www.infosecurity-magazine.com/news/impersonation-fraud-record-17bn/ Chainalysis estimates $17bn will be lost to crypto scams in 2025 as AI takes hold Wed, 14 Jan 2026 10:00:00 GMT https://www.infosecurity-magazine.com/news/impersonation-fraud-record-17bn/ https://www.infosecurity-magazine.com/news/cisa-flags-exploited-gogs-flaw-no/ A high-severity security flaw in the Gogs Git service is being actively exploited, leading to remote code execution Tue, 13 Jan 2026 16:45:00 GMT https://www.infosecurity-magazine.com/news/cisa-flags-exploited-gogs-flaw-no/ https://www.infosecurity-magazine.com/news/shadowreactor-text-staging-remcos/ SHADOW#REACTOR is a multi-stage Windows malware campaign that stealthily deploys the Remcos RAT using complex infection techniques Tue, 13 Jan 2026 16:00:00 GMT https://www.infosecurity-magazine.com/news/shadowreactor-text-staging-remcos/ https://www.infosecurity-magazine.com/news/phishing-scams-exploit-browser/ Cybersecurity researchers issue warning over a surge in attacks designed to trick Facebook users into handing over login credentials Tue, 13 Jan 2026 14:40:00 GMT https://www.infosecurity-magazine.com/news/phishing-scams-exploit-browser/ https://www.infosecurity-magazine.com/news/chinese-malware-framework-linux/ Detected by Check Point researchers, VoidLink is a sophisticated malware framework that can be used to implant malware in the most common cloud environments Tue, 13 Jan 2026 14:31:00 GMT https://www.infosecurity-magazine.com/news/chinese-malware-framework-linux/ https://www.infosecurity-magazine.com/news/parliament-security-pros-cyber/ Lawmakers want the security industry to help them scrutinize the Cyber Security and Resilience Bill Tue, 13 Jan 2026 11:30:00 GMT https://www.infosecurity-magazine.com/news/parliament-security-pros-cyber/ https://www.infosecurity-magazine.com/news/global-magecart-campaign-six-card/ Silent Push has discovered a new Magecart campaign targeting six major payment network providers that has been running since 2022 Tue, 13 Jan 2026 11:00:00 GMT https://www.infosecurity-magazine.com/news/global-magecart-campaign-six-card/ https://www.infosecurity-magazine.com/news/palo-alto-networks-vibe-coding/ Researchers at Palo Alto’s Unit 42 have outlined a list of recommended security controls for vibe coding tools Mon, 12 Jan 2026 17:15:00 GMT https://www.infosecurity-magazine.com/news/palo-alto-networks-vibe-coding/ https://www.infosecurity-magazine.com/news/cisa-closes-ten-emergency/ US agency CISA has retired ten Emergency Directives issued between 2019 and 2024, marking a new step in managing federal cyber-risk Mon, 12 Jan 2026 16:45:00 GMT https://www.infosecurity-magazine.com/news/cisa-closes-ten-emergency/ https://www.infosecurity-magazine.com/news/california-shuts-health-data/ California privacy regulator, the CPPA, is cracking down on data brokers trading personal data without authorization Mon, 12 Jan 2026 16:00:00 GMT https://www.infosecurity-magazine.com/news/california-shuts-health-data/ https://www.infosecurity-magazine.com/news/fraud-overtakes-ransomware-as-top/ “Pervasive” threat of phishing, invoice scams and other cyber-enabled fraud is at “record highs”, warns WEF Cybersecurity Outlook 2026 Mon, 12 Jan 2026 14:10:00 GMT https://www.infosecurity-magazine.com/news/fraud-overtakes-ransomware-as-top/ https://www.infosecurity-magazine.com/news/illicit-crypto-activity-record/ TRM Labs says illegal crypto flows into digital wallets increased to $158bn in 2025 Mon, 12 Jan 2026 10:15:00 GMT https://www.infosecurity-magazine.com/news/illicit-crypto-activity-record/ https://www.infosecurity-magazine.com/news/breachforums-database-leak/ A database featuring 300,000+ users of notorious hacking forum BreachForums has been leaked online Mon, 12 Jan 2026 09:30:00 GMT https://www.infosecurity-magazine.com/news/breachforums-database-leak/ https://www.infosecurity-magazine.com/news/europol-crackdown-on-black-axe/ Europol-backed operation targets group behind numerous BEC attacks and romance scams Fri, 09 Jan 2026 13:01:00 GMT https://www.infosecurity-magazine.com/news/europol-crackdown-on-black-axe/ https://www.infosecurity-magazine.com/news/wef-deepfake-faceswapping-security/ Researchers at the World Economic Forum have shown that threat actors can use commercial deepfake tools to bypass corporate security protections Fri, 09 Jan 2026 12:34:00 GMT https://www.infosecurity-magazine.com/news/wef-deepfake-faceswapping-security/ https://www.infosecurity-magazine.com/news/ai-truman-show-industrializes/ Check Point has uncovered a vast, AI-powered scam operation dubbed the “Truman Show” Fri, 09 Jan 2026 11:00:00 GMT https://www.infosecurity-magazine.com/news/ai-truman-show-industrializes/ https://www.infosecurity-magazine.com/news/fbi-warns-north-korean-qr-phishing/ The FBI says North Korea’s Kimsuky APT group is using QR codes in spear phishing campaigns Fri, 09 Jan 2026 10:00:00 GMT https://www.infosecurity-magazine.com/news/fbi-warns-north-korean-qr-phishing/ https://www.infosecurity-magazine.com/news/gobruteforcer-botnet-linux-servers/ The GoBruteforcer botnet has been observed targeting exposed Linux servers on services like FTP and MySQL Thu, 08 Jan 2026 17:30:00 GMT https://www.infosecurity-magazine.com/news/gobruteforcer-botnet-linux-servers/ https://www.infosecurity-magazine.com/news/new-zeroclick-attack-chatgpt/ Researchers at Radware discovered new prompt injection attacks in ChatGPT agentic features Thu, 08 Jan 2026 16:45:00 GMT https://www.infosecurity-magazine.com/news/new-zeroclick-attack-chatgpt/ https://www.infosecurity-magazine.com/news/china-uat-7290-targets-telecoms/ A long-term cyber-espionage campaign targeting South Asia's telecom firms has been linked to UAT-7290 Thu, 08 Jan 2026 16:00:00 GMT https://www.infosecurity-magazine.com/news/china-uat-7290-targets-telecoms/ https://www.infosecurity-magazine.com/news/phishing-exploits-misconfigured/ Misconfigurations abused to make phishing emails look like they come from within the organization Thu, 08 Jan 2026 14:01:00 GMT https://www.infosecurity-magazine.com/news/phishing-exploits-misconfigured/ https://www.infosecurity-magazine.com/news/fifth-breaches-two-weeks-recover/ Absolute Security claims that full recovery from endpoint-related downtime can take up to a fortnight for most organizations Thu, 08 Jan 2026 12:30:00 GMT https://www.infosecurity-magazine.com/news/fifth-breaches-two-weeks-recover/ https://www.infosecurity-magazine.com/news/us-leave-global-forum-on-cyber/ The Trump administration decided to leave 66 international organizations, including the GFCE and the European Centre of Excellence for Countering Hybrid Threats Thu, 08 Jan 2026 11:15:00 GMT https://www.infosecurity-magazine.com/news/us-leave-global-forum-on-cyber/ https://www.infosecurity-magazine.com/news/maximum-severity-ni8mare-bug/ A newly discovered vulnerability in authentication platform n8n could allow threat actors to take control of n8n servers Thu, 08 Jan 2026 10:00:00 GMT https://www.infosecurity-magazine.com/news/maximum-severity-ni8mare-bug/ https://www.infosecurity-magazine.com/news/malware-loader-pkrmtsi-payloads/ Malicious Windows packer named pkr_mtsi used as a flexible malware loader in malvertising campaigns Wed, 07 Jan 2026 16:45:00 GMT https://www.infosecurity-magazine.com/news/malware-loader-pkrmtsi-payloads/ https://www.infosecurity-magazine.com/news/ghost-tap-malware-remote-nfc-fraud/ New Android malware enables unauthorized tap-to-pay transactions without physical access to bank cards Wed, 07 Jan 2026 16:00:00 GMT https://www.infosecurity-magazine.com/news/ghost-tap-malware-remote-nfc-fraud/ https://www.infosecurity-magazine.com/news/china-intensifies-cyberattacks/ Taiwan recorded an average of 2.63 million cyber intrusion attempts to it critical infrastructure per day coming from China in 2025 Wed, 07 Jan 2026 14:00:00 GMT https://www.infosecurity-magazine.com/news/china-intensifies-cyberattacks/ https://www.infosecurity-magazine.com/news/personal-llm-accounts-drive-shadow/ Lack of visibility and governance around employees using generative AI is resulting in rise in data security risks Wed, 07 Jan 2026 13:10:00 GMT https://www.infosecurity-magazine.com/news/personal-llm-accounts-drive-shadow/ https://www.infosecurity-magazine.com/news/hackers-disconnect-brightspeed/ A hacking collective claims it has disconnected customers of US ISP Brightspeed Wed, 07 Jan 2026 10:30:00 GMT https://www.infosecurity-magazine.com/news/hackers-disconnect-brightspeed/ https://www.infosecurity-magazine.com/news/mfa-failure-infostealer-breach-50/ Threat actor “Zestix” was able to breach around 50 firms using infostealers because they lacked multi-factor authentication Wed, 07 Jan 2026 09:45:00 GMT https://www.infosecurity-magazine.com/news/mfa-failure-infostealer-breach-50/ https://www.infosecurity-magazine.com/news/phaltblyx-clickfix-malware/ Multi-stage malware campaign targets hospitality organizations using social engineering and abuse of MSBuild.exe Tue, 06 Jan 2026 16:15:00 GMT https://www.infosecurity-magazine.com/news/phaltblyx-clickfix-malware/ https://www.infosecurity-magazine.com/news/flaw-open-webui-affects-ai/ A high-severity security flaw in Open WebUI Direct Connections risks account takeover and server compromises Tue, 06 Jan 2026 15:30:00 GMT https://www.infosecurity-magazine.com/news/flaw-open-webui-affects-ai/ https://www.infosecurity-magazine.com/news/uk-launches-new-cyber-unit/ UK government’s new Cyber Action plan looks to provide more ‘hands-on’ support for protecting against and responding to security incidents Tue, 06 Jan 2026 12:45:00 GMT https://www.infosecurity-magazine.com/news/uk-launches-new-cyber-unit/