Infosecurity News

  1. AI-Enabled Malware Now Actively Deployed, Says Google

    Google warns of “just-in-time AI” malware using LLMs to evade detection and generate malicious code on-demand

  2. Google Forecasts Rise of Cyber-Physical Attacks Targeting Europe in 2026

    Europe will likely face a combination of heightened cyber-physical attacks and information operations coming from nation-state groups in 2026

  3. Operation Chargeback Uncovers €300m Fraud Scheme in 193 Countries

    Operation “Chargeback” has dismantled global fraud networks misusing stolen card data from more than 4.3 million victims

  4. UNK_SmudgedSerpent Targets Academics With Political Lures

    A previously unknown cyber actor UNK_SmudgedSerpent has been observed targeting academics with phishing and malware, merging techniques from Iranian groups

  5. Claude Desktop Extensions Vulnerable to Web-Based Prompt Injection

    Three of Anthropic’s Claude Desktop extensions were vulnerable to command injection – flaws that have now been fixed

  6. SMS Fraud Losses Set to Decline 11% in 2026

    Juniper Research predicts a $9bn drop in losses to SMS fraud next year

  7. Hundreds of Malware-Laden Apps Downloaded 42 Million Times From Google Play

    Zscaler estimates 239 malicious Android apps made it onto the official Play store over the past year

  8. French Police Seize €1.6m Amid Crypto Scam Network Crackdown

    Nine alleged crypto scammers arrested in Cyprus, Germany and Spain

  9. OpenAI Assistants API Exploited in 'SesameOp' Backdoor

    Instead of relying on more traditional methods, the backdoor exploits OpenAI’s Assistants API for command-and-control communications

  10. Scattered Spider, ShinyHunters and LAPSUS$ Form Unified Collective

    Scattered Spider, ShinyHunters and LAPSUS$ have formed an enhanced coordinated threat network for extortion efforts

  11. DragonForce Cartel Emerges as Conti-Derived Ransomware Threat

    DragonForce, a ransomware group using Conti’s code, has adopted a cartel model to expand and recruit

  12. Identity Is Now the Top Source of Cloud Risk

    ReliaQuest data reveals identity issues were responsible for 44% of cloud security alerts in Q3

  13. DeFi Protocol Balancer Loses Over $120m in Cyber Heist

    Digital thieves have got away with over $120m stolen from popular decentralized finance protocol Balancer

  14. CISA and NSA Outline Best Practices to Secure Exchange Servers

    CISA and NSA have released a blueprint to enhance Microsoft Exchange Server security against cyber-attacks

  15. New GDI Flaws Could Enable Remote Code Execution in Windows

    Flaws in Windows Graphics Device Interface (GDI) have been identified that allow remote code execution and information disclosure

  16. Hackers Help Organized Crime Groups in Cargo Freight Heists, Researchers Find

    Proofpoint researchers have observed recent hacking campaigns supporting cargo theft

  17. Conti Suspect in Court After Extradition From Ireland

    Ukrainian national Oleksii Oleksiyovych Lytvynenko has appeared in a US court in connection with Conti ransomware charges

  18. Leak Site Ransomware Victims Spike 13% in a Year

    CrowdStrike data reveals a 13% annual increase in the number of European ransomware victims in 2025

  19. Conduent Data Breach Impacts Over 10.5 Million Individuals

    Over 10.5 million individuals were impacted by a widespread 2024 data breach at Conduent Business Services, with customer notifications issued in October 2025

  20. Chinese-Linked Hackers Exploit Windows Flaw to Spy on Belgian and Hungarian Diplomats

    A new UNC6384 campaign highlights the threat actor’s growing sophistication and geographic expansion

Why Not Watch?

  1. Mastering Identity and Access for Non-Human Cloud Entities

  2. The Invisible Frontline: Proactive Approaches to Browser Defense

  3. Cyber Defense in the Age of AI: Stay Ahead of Threats Without Compromising Safety

  4. From Chaos to Confidence: Establishing Trust in Every Cloud Interaction

What’s Hot on Infosecurity Magazine?