Infosecurity News

  1. Microsoft Warns New 'GigaWiper' Malware Combines Espionage and Destructive Capabilities

    A new multi-purpose backdoor allows cyber threat actors to conduct both quiet espionage activity and destructive wiping operations

  2. Anthropic and OpenAI Security Tools Could Fuel Cyber-Attacks, Researchers Warn

    Researchers at the AI Now Institute developed a proof-of-concept exploit showing common AI tools used for security could backfire

  3. New Ransomware Exploits Malicious Driver to Remove Cybersecurity Protections

    GodDamn ransomware uses remote desktop application to secretly move around networks and drop the malicious PoisonX kernel driver

  4. Microsoft Warns of Increase in Number of Security Updates

    Microsoft has said the volume of Windows security updates is set to grow as it uses AI to find new bugs

  5. NHS Warns Staff Over Unauthorized Access to Patient Data

    NHS tells staff they could face prison for “inappropriate” access to patients’ medical records

  6. Vibe-Coded Malware Caught in Active Directory Attack

    Huntress found a threat actor using vibe-coded PowerShell to map an Active Directory network

  7. 75% CISOs Fear Executives Don’t Understand Cybersecurity Risks Employees Face

    Survey of cybersecurity leaders by MetaCompliance finds that many feel boards are uninterested in ever-evolving cyber risks

  8. Chinese-Funded Interpol Cybercrime Crackdown Leads to 5,800 Arrests

    Operation First Light 2026, coordinated by Interpol and funded by the Chinese government, has led to 5,811 arrests

  9. GhostApproval Flaw Hits Six Major AI Coding Assistants

    Wiz discovered GhostApproval, a symlink flaw in six major AI coding assistants that bypasses approval

  10. New AI Security Charter Backed by Over 70 Cyber Firms

    Over 70 cybersecurity organizations have signed the CREST AI Charter detailing responsible use of AI for security

  11. Cybercriminals Plant Malicious AI Agents in Open Source Tool Repositories

    Cybersecurity researchers at ESET identify big rise in suspicious and malicious toolsets which put users at risk from cyber-attacks

  12. RedWing Android Spyware Sold as a Service on Telegram

    Zimperium found RedWing, an Android spyware sold as a service via Telegram to target banking apps

  13. China-Linked APT Expands Proxy Network With New Malware

    Cisco Talos said China-linked APT UAT-7810 is growing its proxy relay network with new malware

  14. Threat Actors Uses Agentic AI to Rapidly Compromise Cloud Target

    Sygnia report details how agentic AI accelerated weeks-long attack to just 72 hours

  15. New Malicious Campaign Delivers Vidar Infostealer and Monero Crypto Miner

    Cyber threat actors are infecting victims with the Vidar stealer and the XMRig cryptocurrency miner in a new malicious campaign

  16. NCSC Touts National Scale, AI-Powered “Cyber Shield” for Defense

    The National Cyber Security Centre wants to work with AI partners to build a new “Cyber Shield” to defend the UK

  17. Suspected Chinese Threat Group Targets Universities via Vulnerable Roundcube Servers

    A suspected Chinese threat cluster is exploiting Roundcube vulnerabilities to compromise university networks in the US and Canada and harvest user credentials

  18. Scattered Spider’s Structure More Like a Cybercrime Collective Than a Unified Gang

    Group-IB analysis argued Scattered Spider is a decentralized collective of independent clusters

  19. UK Government Launches Cyber Resilience Pledge, Claiming 60+ Signatories

    More than 60 organizations, including M&S, Microsoft UK and Vodafone, have signed the UK government's Cyber Resilience Pledge, a new initiative aimed at boosting cyber security and resilience across British businesses

  20. Hackers Exploit Maximum Severity Adobe ColdFusion Flaw

    Threat actors are exploiting an Adobe ColdFusion vulnerability which has a CVSS score of 10.0

What’s Hot on Infosecurity Magazine?