Infosecurity News

  1. Cost of Insider Incidents Surges 20% to Nearly $20m

    DTEX claims insider incidents cost $19.5m in 2025, with employee negligence most expensive

  2. Multifaceted Phishing Scheme Deceives Bitpanda Customers

    Phishing attack mimicking Bitpanda targets users, harvesting credentials and personal information

  3. North Korean Lazarus Group Expands Ransomware Activity With Medusa

    Ransomware Medusa linked to North Korean hackers targets US healthcare amid ongoing attacks

  4. AI Accelerates Attacker Breakout Time to Just Four Minutes

    ReliaQuest claims AI has reduced breakout and exfiltration time to under 10 minutes

  5. Chinese AI Firms Hit Claude with Distillation Attacks, Anthropic Warns

    Anthropic accused DeepSeek, Moonshot and MiniMax of illicitly using Claude to steal some of the AI model’s capabilities

  6. AI-powered Cyber-Attacks Up Significantly in the Last Year, Warns CrowdStrike

    CrowdStrike Global Threat Report warns how adversaries are leveraging AI to make campaigns more efficient and more effective

  7. Shai-Hulud-Like Worm Targets Developers via npm and AI Tools

    Supply chain worm mimicking Shai-Hulud malware spread via malicious npm packages, targeting AI tools has been identified by security researchers

  8. Fraud Investigation Reveals Sophisticated Python Malware

    Sophisticated Python malware uncovered in fraud probe shows obfuscation, disposable infrastructure

  9. Russian Cyber Threat Actor Uses GenAI to Compromise Fortinet Firewalls

    A low-skilled Russian-speaking attacker has used GenAI tools to help deploy a successful attack workflow targeting FortiGate instances

  10. Leading Semiconductor Supplier Advantest Hit by Ransomware Attack

    Advantest, a Japanese specialist in testing computer chips for major semiconductor manufacturers, has deployed incident response protocols following a cybersecurity incident

  11. Jackpotting Surge Costs Banks Over $20m, Warns FBI

    A new FBI Flash alert claims $20m was lost to ATM jackpotting attacks in 2025 alone

  12. University of Mississippi Medical Center Still Offline After Ransomware Attack

    University of Mississippi Medical Center is still scrambling to respond to a ransomware attack last Thursday

  13. Dramatic Escalation in Frequency and Power of DDoS Attacks

    DDoS attack frequency has risen to ‘alarming levels,’ warns Radware report

  14. Android Malware Hijacks Google Gemini to Stay Hidden

    A new Android malware implant using Google Gemini to perform persistence tasks was discovered on VirusTotal and analyzed by ESET

  15. Remcos RAT Expands Real-Time Surveillance Capabilities

    New Remcos RAT variant enhances real-time surveillance and evasion techniques to compromise Windows

  16. Industrial-Scale Fake Coretax Apps Drive $2m Fraud in Indonesia

    Fraud campaign exploiting Indonesia’s Coretax resulted in $1.5m to $2m in losses via malicious apps

  17. Industrial Control System Vulnerabilities Hit Record Highs

    Forescout paper reveals ICS advisories hit a record 508 in 2025

  18. Starkiller: New ‘Commercial-Grade’ Phishing Kit Bypasses MFA

    A new cybercriminal toolkit uses proxies to mimic popular online services and represents a “significant escalation in phishing infrastructure,” warn researchers at Abnormal

  19. Flaws in Popular Software Development App Extensions Allow Data Exfiltration

    Four serious new vulnerabilities affect Microsoft Visual Studio Code, Cursor and Windsurf extensions, three of which remain unpatched

  20. Researchers Reveal Six New OpenClaw Vulnerabilities

    Endor Labs has published details of six new vulnerabilities in popular AI assistant OpenClaw

Why Not Watch?

  1. The Intelligence Edge: Clarity, Context and the Human Advantage in Modern CTI

  2. Revisiting CIA: Developing Your Security Strategy in the SaaS Shared Reality

  3. Securing M365 Data and Identity Systems Against Modern Adversaries

  4. Time Is a New Attack Surface: Securing Networks with Trusted Time Synchronization

What’s Hot on Infosecurity Magazine?