Infosecurity News

  1. US Court Hands Crypto Scammer 20 Years in $73m Case

    A federal court has sentenced crypto-scammer Daren Li to 20 years in absentia

  2. FIRST Forecasts Record-Breaking 50,000+ CVEs in 2026

    This year should break all the records in terms of vulnerability disclosed, reaching or even surpassing 50,000 new CVEs disclosed

  3. Microsoft Fixes Six Zero Day Vulnerability in February Patch Tuesday

    Six actively exploited zero-day bug have been patched by Microsoft

  4. Phorpiex Phishing Delivers Low-Noise Global Group Ransomware

    High-volume phishing campaign delivers Phorpiex malware via malicious Windows Shortcut files

  5. “Digital Parasite” Warning as Attackers Favor Stealth for Extortion

    Picus Security warns of the increasingly sophisticated ways malicious activity is staying hidden

  6. New Mobile Spyware ZeroDayRAT Targets Android and iOS

    ZeroDayRAT is a new mobile spyware targeting Android and iOS, offering attackers persistent access

  7. Singapore Takes Down Chinese Hackers Targeting Telco Networks

    Operation Cyber Guardian was Singapore’s largest and longest running anti-cyber threat law enforcement operation

  8. NCSC Issues Warning Over “Severe” Cyber-Attacks Targeting Critical National Infrastructure

    NCSC call firms to ‘act now’ following disruptive malware attacks targeting Polish energy providers

  9. European Governments Breached in Zero-Day Attacks Targeting Ivanti

    The European Commission and government agencies in Finland and the Netherlands have suffered potentially related breaches

  10. New Zero-Click Flaw in Claude Desktop Extensions, Anthropic Declines Fix

    Security researchers from LayerX identified a new flaw in 50 Claude Desktop Extensions that could lead to unauthorized remote code execution

  11. Two Connecticut Men Charged In Alleged $3m Gambling Fraud Scheme

    Two Connecticut men face federal charges for a $3m scheme targeting online gambling platforms

  12. VoidLink Malware Exhibits Multi-Cloud Capabilities and AI Code

    VoidLink, a Linux-based C2 framework, facilitates credential theft, data exfiltration across clouds

  13. BridgePay Confirms Ransomware Attack, No Card Data Compromised

    The services of Florida-based payments platform BridgePay are offline due to a ransomware attack

  14. Social Media Platforms Earn Billions from Scam Ads

    Revolut claims social media sites make £3.8bn annually from scam ads targeting European users

  15. Researchers Find 40,000+ Exposed OpenClaw Instances

    SecurityScorecard has identified over 40,000 OpenClaw deployments exposed to potential attack

  16. US Agencies Told to Scrap End of Support Edge Devices

    CISA has issued a new directive requiring federal agencies to decommission all end of support edge devices within 12 months to reduce ongoing exploitation risks

  17. Chinese-Made Malware Kit Targets Chinese-Based Routers and Edge Devices

    DKnife is a Chinese made malware framework that targets Chinese-based users

  18. Substack Confirms Data Breach, "Limited User Data" Compromised

    Substack did not specify the number of users affected by the data breach

  19. New Cyber Startup Programme to Debut at Infosecurity Europe 2026

    Infosecurity Europe 2026 will debut a new Cyber Startup Programme, featuring a dedicated show-floor zone for early-stage cybersecurity companies to showcase innovations, connect with investors and highlight emerging technologies

  20. Malicious Commands in GitHub Codespaces Enable RCE

    Flaws in GitHub Codespaces allow RCE via crafted repositories or pull requests

Why Not Watch?

  1. Audit & Compliance in the Era of AI and Emerging Technology

  2. Five Non-Negotiable Strategies to Get Identity Security Right in 2026

  3. Mastering AI Security With ISACA’s New AAISM Certification

  4. Modernizing GRC: From Checkbox to Strategic Advantage

What’s Hot on Infosecurity Magazine?