Infosecurity News

  1. France Fines National Employment Agency €5m Over 2024 Data Breach

    The French data protection regulator said that France Travail’s response to a 2024 data breach violated GDPR

  2. New CISA Guidance Targets Insider Threat Risks

    CISA urges action against insider threats with publication of a new infographic offering strategies to manage risks

  3. FBI Takes Down RAMP Ransomware Forum

    The dark web forum administrator confirmed the takedown and said they had “no plans to rebuild”

  4. Ransomware Victim Numbers Rise, Despite Drop in Active Extortion Groups

    Ransomware victims surged in Q4 2025 despite fewer active extortion groups, with data leaks rising 50%, ReliaQuest researchers report

  5. US Data Breaches Hit Record High but Victim Numbers Decline

    Non-profit ITRC says the number of data breaches increased 5% annually to reach a record total in 2025

  6. Number of Cybersecurity Pros Surges 194% in Four Years

    Cybersecurity is now the fifth fastest-growing occupation in the UK, says Socura

  7. Cybersecurity Teams Embrace AI, Just Not at the Scale Marketing Suggests

    Despite the seemingly widespread adoption of AI for security operations, security leaders primarily use it for “relatively basic use cases,” said a Sumo Logic study

  8. Autonomous System Uncovers Long-Standing OpenSSL Flaws

    A recent update has fixed 12 vulnerabilities in OpenSSL, some existing in the codebase for years

  9. Critical and High Severity n8n Sandbox Flaws Allow RCE

    Two critical security flaws in n8n have exposed sandboxing vulnerabilities, enabling remote code execution for attackers

  10. Emojis in PureRAT’s Code Point to AI-Generated Malware Campaign

    Researchers discover that PureRAT’s code now contains emojis – indicating it has been written by AI based-on comments ripped from social media.

  11. AI Security Threats Loom as Enterprise Usage Jumps 91%

    Zscaler analysts found critical vulnerabilities in 100% of enterprise AI systems, with 90% compromised in under 90 minutes

  12. Researchers Uncover 454,000+ Malicious Open Source Packages

    Sonatype warns that open source threats became industrialized with a surge in malicious packages in 2025

  13. Chinese Money Launderers Drive Global Ecosystem Worth $82bn

    Chainalysis claims Chinese money launderers now account for 20% of global activity

  14. Pyodide Sandbox Escape Enables Remote Code Execution in Grist-Core

    Critical sandbox escape vulnerability in Grist-Core enables remote code execution via a malicious formula

  15. PeckBirdy Framework Tied to China-Aligned Cyber Campaigns

    PeckBirdy command-and-control framework targeting gambling, government sectors in Asia since 2023 has been linked to China-aligned APTs

  16. Over 80% of Ethical Hackers Now Use AI

    Bugcrowd study reveals 82% of security researchers now use AI, a big increase from 2023 figures

  17. Microsoft Releases Patch for Office Zero Day Amid Evidence of Exploitation

    Microsoft urged customers running Microsoft Office 2016 and 2019 to apply the patch to be protected

  18. World Leaks Ransomware Group Claims 1.4TB Nike Data Breach

    Nike is investigating after the World Leaks ransomware group posted a 1.4TB data dump

  19. CISA Releases List of Post-Quantum Cryptography Product Categories

    CISA released initial list of PQC-capable hardware and software to guide companies amid quantum threats

  20. Researchers Uncover “Haxor” SEO Poisoning Marketplace

    Fortra researchers have discovered a new SEO poisoning operation known as “HaxorSEO”

Why Not Watch?

  1. Mastering AI Security With ISACA’s New AAISM Certification

  2. Time Is a New Attack Surface: Securing Networks with Trusted Time Synchronization

  3. Revisiting CIA: Developing Your Security Strategy in the SaaS Shared Reality

  4. Five Non-Negotiable Strategies to Get Identity Security Right in 2026

What’s Hot on Infosecurity Magazine?