Infosecurity News
Malware Manipulates AI Detection in Latest npm Package Breach
Malicious npm package targets AI security with misleading prompts, exploiting automated analysis
Cybersecurity M&A Roundup: Cyber Giants Strengthen AI Security Offerings
November 2025 saw cybersecurity giants like Palo Alto Networks, Bugcrowd and Zscaler invest in AI-powered security solutions
Europol Takes Down Illegal Cryptocurrency Mixing Service
Europol, alongside Swiss and German authorities, dismantled the illegal cryptocurrency mixing service ‘Cryptomixer’
Australian Man Gets Seven Years for Running “Evil Twin” Wi-Fi
A Western Australia man will spend seven years behind bars after stealing intimate data via Wi-Fi
Royal Borough of Kensington and Chelsea Reveals Data Breach
At least one London council has had data compromised after a suspected ransomware attack last week
Threat Actors Exploit Calendar Subscriptions for Phishing and Malware Delivery
BitSight research has revealed how threat actors exploit calendar subscriptions to deliver phishing links, malware and social engineering attacks through hijacked domains
Three Black Friday Scams to Watch Out For This Year
Darktrace observed a 620% spike in Black Friday-themed phishing in the weeks leading up to the 2025 edition of the sale day
French Football Federation Suffers Data Breach
The personal data of over two million amateur football players registered in France could be exposed
FCC Warns of Hackers Hijacking Radio Equipment For False Alerts
Hackers have been hijacking US radio equipment to broadcast false emergency alerts, prompting FCC warnings
Bloody Wolf Threat Actor Expands Activity Across Central Asia
A new Bloody Wolf campaign exploits legitimate remote-administration software for cyber-attacks on government targets in Central Asia
Asahi Confirms 1.5 Million Customers Affected in Major Cyber-Attack
Almost two million people may have seen their personal data exposed following a large-scale cyberattack that hit Asahi in September 2025
OpenAI Warns of Mixpanel Data Breach Impacting API Users
The breach may have exposed OpenAI API customers’ data
Fraud Fears But No Breach Spike Expected This Festive Season
Analysis of ICO records shows no surge in breaches during Q4 2024 with no seasonal spike in reported incidents
Scattered Lapsus$ Hunters Take Aim At Zendesk Users
New phishing domains point to a campaign from the notorious Scattered Lapsus$ Hunters collective
Key Provisions of the UK Cyber Resilience Bill Revealed
Shona Lester, head of the Cyber Security and Resilience Bill team within the UK government, outlined some of the provisions that should be included in the future law
Cyber-Attack Disrupts OnSolve CodeRED Emergency Notification System
A cyber-attack claimed to be the resposibility of INC Ransom group and targeting the OnSolve CodeRED platform has disrupted emergency notification and exposed user data across the US
UK Report Proposes Liability For Software Provider Insecurity
A new report from the UK Business and Trade Committee has called for accountability of software providers for cyber flaws amid rising attack costs
FBI Warns of $262M Losses from Account Takeover Fraud in 2025
The FBI reports over $262m in losses from account takeover schemes since January 2025, as cybercriminals impersonate financial institutions to steal data and funds
Gainsight Cyber-Attack Affects More Salesforce Customers
The CEO of the customer support platform said “a handful of customers” saw their data exposed after the breach
HashJack Indirect Prompt Injection Weaponizes Websites
A new vulnerability dubbed “HashJack” could enable attackers to booby trap websites when they interact with AI browsers
