Infosecurity News

  1. Fake AI Assistants in Google Chrome Web Store Steal Passwords and Spy on Emails

    Hundreds of thousands of users have downloaded malicious AI extensions masquerading as ChatGPT, Gemini, Grok and others, warn cybersecurity researchers at LayerX

  2. World Leaks Ransomware Group Adds Stealthy, Custom Malware ‘RustyRocket’ to Attacks

    Accenture Cybersecurity warns over difficult to detect, “sophisticated toolset” being deployed as part of extortion campaigns

  3. Nation-State Hackers Embrace Gemini AI for Malicious Campaigns, Google Finds

    Google researchers found that government-backed hackers now use AI throughout the whole attack lifecycle

  4. AI Skills Represent Dangerous New Attack Surface, Says TrendAI

    New TrendAI report warns that most security tools can’t protect against attacks on AI skills artifacts

  5. Time to Exploit Plummets as N-Day Flaws Dominate

    Flashpoint warns of a dramatic drop in the average time between vulnerability disclosure and exploitation

  6. North Korean Hackers Use Deepfake Video Calls to Target Crypto Firms

    Campaign combines stolen Telegram accounts, fake Zoom calls and ClickFix attacks to deploy infostealer malware

  7. US Court Hands Crypto Scammer 20 Years in $73m Case

    A federal court has sentenced crypto-scammer Daren Li to 20 years in absentia

  8. FIRST Forecasts Record-Breaking 50,000+ CVEs in 2026

    This year should break all the records in terms of vulnerability disclosed, reaching or even surpassing 50,000 new CVEs disclosed

  9. Microsoft Fixes Six Zero Day Vulnerability in February Patch Tuesday

    Six actively exploited zero-day bug have been patched by Microsoft

  10. Phorpiex Phishing Delivers Low-Noise Global Group Ransomware

    High-volume phishing campaign delivers Phorpiex malware via malicious Windows Shortcut files

  11. “Digital Parasite” Warning as Attackers Favor Stealth for Extortion

    Picus Security warns of the increasingly sophisticated ways malicious activity is staying hidden

  12. New Mobile Spyware ZeroDayRAT Targets Android and iOS

    ZeroDayRAT is a new mobile spyware targeting Android and iOS, offering attackers persistent access

  13. Singapore Takes Down Chinese Hackers Targeting Telco Networks

    Operation Cyber Guardian was Singapore’s largest and longest running anti-cyber threat law enforcement operation

  14. NCSC Issues Warning Over “Severe” Cyber-Attacks Targeting Critical National Infrastructure

    NCSC call firms to ‘act now’ following disruptive malware attacks targeting Polish energy providers

  15. European Governments Breached in Zero-Day Attacks Targeting Ivanti

    The European Commission and government agencies in Finland and the Netherlands have suffered potentially related breaches

  16. New Zero-Click Flaw in Claude Desktop Extensions, Anthropic Declines Fix

    Security researchers from LayerX identified a new flaw in 50 Claude Desktop Extensions that could lead to unauthorized remote code execution

  17. Two Connecticut Men Charged In Alleged $3m Gambling Fraud Scheme

    Two Connecticut men face federal charges for a $3m scheme targeting online gambling platforms

  18. VoidLink Malware Exhibits Multi-Cloud Capabilities and AI Code

    VoidLink, a Linux-based C2 framework, facilitates credential theft, data exfiltration across clouds

  19. BridgePay Confirms Ransomware Attack, No Card Data Compromised

    The services of Florida-based payments platform BridgePay are offline due to a ransomware attack

  20. Social Media Platforms Earn Billions from Scam Ads

    Revolut claims social media sites make £3.8bn annually from scam ads targeting European users

Why Not Watch?

  1. Modernizing GRC: From Checkbox to Strategic Advantage

  2. Five Non-Negotiable Strategies to Get Identity Security Right in 2026

  3. Time Is a New Attack Surface: Securing Networks with Trusted Time Synchronization

  4. Audit & Compliance in the Era of AI and Emerging Technology

What’s Hot on Infosecurity Magazine?