Infosecurity News

  1. Aeternum Botnet Shifts Command Control to Polygon Blockchain

    New botnet Aeternum shifted C2 operations to Polygon blockchain, complicating takedown efforts

  2. Darktrace Flags 32 Million Phishing Emails in 2025 as Identity Attacks Intensify

    2025 saw 32M phishing emails, with identity threats surpassing vulnerabilities

  3. Exploitable Vulnerabilities Present in 87% of Organizations

    Datadog report reveals two-fifths of services are affected by exploitable bugs

  4. UK's Data Watchdog Gets a Makeover to Match Growing Demands

    The UK’s Information Commissioner's Office is about to ditch single-leader model for CEO and board in a major shake-up

  5. Google Disrupts ‘Prolific’ and ‘Elusive’ China-Linked Global Hacking Campaign

    UNC2814 hit 53 victims in 42 countries with novel backdoor in decade long cyber espionage operation

  6. Global Cyber Agencies Urge Immediate Patching of Cisco SD-WAN Zero Day

    The US and allies are urging Cisco Catalyst SD-WAN customers to hunt for signs of exploitation

  7. 44% Surge in App Exploits as AI Speeds Up Cyber-Attacks, IBM Finds

    IBM's 2026 X-Force report reveals 44% rise in cyber-attacks on public apps, driven by AI and flaws

  8. Malicious NuGet Package Targets Stripe Developers

    Malicious NuGet package mimicking Stripe's library targeted developers

  9. Former Defense Contractor Boss Gets 7+ Years for Selling Zero Days

    A former general manager of a US defense contractor has been sentenced after selling zero days to Russia

  10. ICO’s £14m Reddit Fine Highlights Age Check Privacy Concerns

    The UK’s ICO has fined Reddit over £14m for failing to use children’s personal information lawfully

  11. Cost of Insider Incidents Surges 20% to Nearly $20m

    DTEX claims insider incidents cost $19.5m in 2025, with employee negligence most expensive

  12. Multifaceted Phishing Scheme Deceives Bitpanda Customers

    Phishing attack mimicking Bitpanda targets users, harvesting credentials and personal information

  13. North Korean Lazarus Group Expands Ransomware Activity With Medusa

    Ransomware Medusa linked to North Korean hackers targets US healthcare amid ongoing attacks

  14. AI Accelerates Attacker Breakout Time to Just Four Minutes

    ReliaQuest claims AI has reduced breakout and exfiltration time to under 10 minutes

  15. Chinese AI Firms Hit Claude with Distillation Attacks, Anthropic Warns

    Anthropic accused DeepSeek, Moonshot and MiniMax of illicitly using Claude to steal some of the AI model’s capabilities

  16. AI-powered Cyber-Attacks Up Significantly in the Last Year, Warns CrowdStrike

    CrowdStrike Global Threat Report warns how adversaries are leveraging AI to make campaigns more efficient and more effective

  17. Shai-Hulud-Like Worm Targets Developers via npm and AI Tools

    Supply chain worm mimicking Shai-Hulud malware spread via malicious npm packages, targeting AI tools has been identified by security researchers

  18. Fraud Investigation Reveals Sophisticated Python Malware

    Sophisticated Python malware uncovered in fraud probe shows obfuscation, disposable infrastructure

  19. Russian Cyber Threat Actor Uses GenAI to Compromise Fortinet Firewalls

    A low-skilled Russian-speaking attacker has used GenAI tools to help deploy a successful attack workflow targeting FortiGate instances

  20. Leading Semiconductor Supplier Advantest Hit by Ransomware Attack

    Advantest, a Japanese specialist in testing computer chips for major semiconductor manufacturers, has deployed incident response protocols following a cybersecurity incident

Why Not Watch?

  1. Why Your Organisation Needs Trusted Time Synchronisation

  2. Modernizing GRC: From Checkbox to Strategic Advantage

  3. Revisiting CIA: Developing Your Security Strategy in the SaaS Shared Reality

  4. Five Non-Negotiable Strategies to Get Identity Security Right in 2026

What’s Hot on Infosecurity Magazine?