Infosecurity News

  1. SMEs Wrong to Assume They Won’t Be Hit by Cyber-Attacks, NCSC Boss Warns

    NCSC’s Richard Horne has warned that cybercriminals do not care about business size and called for SMEs to act now to secure their organizations

  2. OysterLoader Evolves With New C2 Infrastructure and Obfuscation

    OysterLoader malware evolves into 2026, refining C2 infrastructure, obfuscation & infection stages

  3. Operation DoppelBrand Weaponizes Trusted Brands For Credential Theft

    New phishing campaign dubbed Operation DoppelBrand targeted major financial firms like Wells Fargo

  4. Google Warns of In the Wild Exploit as It Patches New Chrome Zero Day

    A high severity vulnerability in Google Chrome and allows remote attackers to execute code

  5. Crypto Payments to Human Traffickers Surges 85%

    Chainalysis warns that online fraud is fuelling sophisticated human trafficking operations

  6. Odido Breach Impacts Millions of Dutch Telco Users

    Dutch telco Odido has revealed a major data breach impacting over six million customers

  7. Munich Security Conference: Cyber Threats Lead G7 Risk Index, Disinformation Ranks Third

    G7 countries ranked cyber-attacks as the top risk, while BICS members placed cyber threats only as the eighth most pressing risk

  8. Fake AI Assistants in Google Chrome Web Store Steal Passwords and Spy on Emails

    Hundreds of thousands of users have downloaded malicious AI extensions masquerading as ChatGPT, Gemini, Grok and others, warn cybersecurity researchers at LayerX

  9. World Leaks Ransomware Group Adds Stealthy, Custom Malware ‘RustyRocket’ to Attacks

    Accenture Cybersecurity warns over difficult to detect, “sophisticated toolset” being deployed as part of extortion campaigns

  10. Nation-State Hackers Embrace Gemini AI for Malicious Campaigns, Google Finds

    Google researchers found that government-backed hackers now use AI throughout the whole attack lifecycle

  11. AI Skills Represent Dangerous New Attack Surface, Says TrendAI

    New TrendAI report warns that most security tools can’t protect against attacks on AI skills artifacts

  12. Time to Exploit Plummets as N-Day Flaws Dominate

    Flashpoint warns of a dramatic drop in the average time between vulnerability disclosure and exploitation

  13. North Korean Hackers Use Deepfake Video Calls to Target Crypto Firms

    Campaign combines stolen Telegram accounts, fake Zoom calls and ClickFix attacks to deploy infostealer malware

  14. US Court Hands Crypto Scammer 20 Years in $73m Case

    A federal court has sentenced crypto-scammer Daren Li to 20 years in absentia

  15. FIRST Forecasts Record-Breaking 50,000+ CVEs in 2026

    This year should break all the records in terms of vulnerability disclosed, reaching or even surpassing 50,000 new CVEs disclosed

  16. Microsoft Fixes Six Zero Day Vulnerability in February Patch Tuesday

    Six actively exploited zero-day bug have been patched by Microsoft

  17. Phorpiex Phishing Delivers Low-Noise Global Group Ransomware

    High-volume phishing campaign delivers Phorpiex malware via malicious Windows Shortcut files

  18. “Digital Parasite” Warning as Attackers Favor Stealth for Extortion

    Picus Security warns of the increasingly sophisticated ways malicious activity is staying hidden

  19. New Mobile Spyware ZeroDayRAT Targets Android and iOS

    ZeroDayRAT is a new mobile spyware targeting Android and iOS, offering attackers persistent access

  20. Singapore Takes Down Chinese Hackers Targeting Telco Networks

    Operation Cyber Guardian was Singapore’s largest and longest running anti-cyber threat law enforcement operation

Why Not Watch?

  1. Time Is a New Attack Surface: Securing Networks with Trusted Time Synchronization

  2. Mastering AI Security With ISACA’s New AAISM Certification

  3. How To Enhance Security Operations with AI-Powered Defenses

  4. Securing M365 Data and Identity Systems Against Modern Adversaries

What’s Hot on Infosecurity Magazine?