New Phishing Platform Used in Credential Theft Campaigns Against C-Suite Execs

https://www.infosecurity-magazine.com/news/ Copyright © 2026 Reed Exhibitions Ltd. All Rights Reserved. New Phishing Platform Used in Credential Theft Campaigns Against C-Suite Execs https://www.infosecurity-magazine.com/news/new-phishing-platform-credential/ A large-scale credential theft campaign targeting senior executives has been linked to a previously unknown automated phishing platform called Venom Fri, 03 Apr 2026 08:00:00 GMT https://www.infosecurity-magazine.com/news/new-phishing-platform-credential/ New 'Storm' Infostealer Remotely Decrypts Stolen Credentials https://www.infosecurity-magazine.com/news/storm-infostealer-remotely/ This modern infostealer adopted server-side decryption of stolen credentials to bypass security controls Thu, 02 Apr 2026 15:00:00 GMT https://www.infosecurity-magazine.com/news/storm-infostealer-remotely/ NCSC Issues Security Alert Over Hackers Targeting WhatsApp and Signal Accounts https://www.infosecurity-magazine.com/news/ncsc-alert-hackers-whatsapp-signal/ The UK’s cybersecurity agency offered advice to “high-risk’ individuals” on how to protect against social engineering and cyber-attacks Thu, 02 Apr 2026 14:15:00 GMT https://www.infosecurity-magazine.com/news/ncsc-alert-hackers-whatsapp-signal/ Apple Expands iOS 18 Security Updates Amid DarkSword Threat https://www.infosecurity-magazine.com/news/apple-ios-18-updates-darksword/ iOS/iPadOS 18.7.7 updates expanded to protect older devices from DarkSword web exploit kit Thu, 02 Apr 2026 13:30:00 GMT https://www.infosecurity-magazine.com/news/apple-ios-18-updates-darksword/ Researchers Observe Sub-One-Hour Ransomware Attacks https://www.infosecurity-magazine.com/news/researchers-subonehour-ransomware/ Halcyon says Akira is now capable of carrying out an entire ransomware attack in less than an hour Thu, 02 Apr 2026 13:00:00 GMT https://www.infosecurity-magazine.com/news/researchers-subonehour-ransomware/ GitHub Used as Covert Channel in Multi-Stage Malware Campaign https://www.infosecurity-magazine.com/news/github-covert-multi-stage-malware/ LNK files use GitHub C2, embedded decoders and PowerShell for persistence and data exfiltration Thu, 02 Apr 2026 13:00:00 GMT https://www.infosecurity-magazine.com/news/github-covert-multi-stage-malware/ Most CNI Firms Face Up to £5m in Downtime from OT Attacks https://www.infosecurity-magazine.com/news/most-cni-firms-5m-downtime-ot/ E2e-assure says 80% of critical infrastructure providers could face millions in downtime from cyber-attacks Thu, 02 Apr 2026 08:30:00 GMT https://www.infosecurity-magazine.com/news/most-cni-firms-5m-downtime-ot/ Google Introduces Android Dev Verification Amid Openness Debate https://www.infosecurity-magazine.com/news/google-android-dev-verification/ Android requires dev identity verification for sideloaded apps; phased global rollout from September Wed, 01 Apr 2026 15:00:00 GMT https://www.infosecurity-magazine.com/news/google-android-dev-verification/ New Venom Stealer MaaS Platform Automates Continuous Data Theft https://www.infosecurity-magazine.com/news/venom-stealer-maas-automates-data/ Venom Stealer malware-as-a-service automates ClickFix social engineering, credential and crypto exfiltration Wed, 01 Apr 2026 13:30:00 GMT https://www.infosecurity-magazine.com/news/venom-stealer-maas-automates-data/ Chinese Hackers Target European Governments in Espionage Campaigns https://www.infosecurity-magazine.com/news/china-hackers-ta416-europe/ Chinese state-backed group TA416 had suspended its cyber espionage operations in Europe since 2023, noted Proofpoint Wed, 01 Apr 2026 12:05:00 GMT https://www.infosecurity-magazine.com/news/china-hackers-ta416-europe/ Eight in 10 UK Manufacturers Hit by Cyber Incident in a Year https://www.infosecurity-magazine.com/news/eight-10-uk-manufacturers-hit/ Most UK manufacturers compromised last year suffered financial loss, says ESET Wed, 01 Apr 2026 09:30:00 GMT https://www.infosecurity-magazine.com/news/eight-10-uk-manufacturers-hit/ Hackers Hijack Axios npm Package to Spread RATs https://www.infosecurity-magazine.com/news/hackers-hijack-axios-npm-package/ Threat actors hijacked the popular npm package axios to spread RAT malware after compromising an open‑source maintainer’s account, researchers warn Wed, 01 Apr 2026 09:00:00 GMT https://www.infosecurity-magazine.com/news/hackers-hijack-axios-npm-package/ Maryland Man Charged Over $53m Uranium Finance Crypto Hack https://www.infosecurity-magazine.com/news/man-charged-uranium-crypto-hack/ Maryland man accused of $53m Uranium Finance hack, exploited smart contract flaws, laundered funds Tue, 31 Mar 2026 15:30:00 GMT https://www.infosecurity-magazine.com/news/man-charged-uranium-crypto-hack/ Phantom Project Bundles Infostealer, Crypter and RAT For Sale https://www.infosecurity-magazine.com/news/phantom-project-infostealer-nov-25/ Phantom Stealer .NET harvests browser credentials, cookies, cards, sessions, as stealer-as-a-service Tue, 31 Mar 2026 14:00:00 GMT https://www.infosecurity-magazine.com/news/phantom-project-infostealer-nov-25/ ChatGPT Security Issue Enabled Data Theft via Single Prompt https://www.infosecurity-magazine.com/news/chatgpt-security-issue-steal-data/ OpenAI has patched vulnerability, which Check Point said was because of a DNS loophole Tue, 31 Mar 2026 13:01:00 GMT https://www.infosecurity-magazine.com/news/chatgpt-security-issue-steal-data/ TeamPCP Explores Ways to Exploit Stolen Supply Chain Secrets https://www.infosecurity-magazine.com/news/teampcp-exploit-stolen-supply/ TeamPCP is exploring ways to monetize the secrets harvested during supply chain attacks, with identified ties to the Lapsus$ and Vect ransomware gangs Tue, 31 Mar 2026 12:15:00 GMT https://www.infosecurity-magazine.com/news/teampcp-exploit-stolen-supply/ Employee Data Breaches Surge to Seven-Year High https://www.infosecurity-magazine.com/news/employee-data-breaches-surge/ Analysis from law firm Nockolds suggests non-cyber incidents are driving up employee data breaches Tue, 31 Mar 2026 10:01:00 GMT https://www.infosecurity-magazine.com/news/employee-data-breaches-surge/ NCSC Urges Immediate Patching of F5 BIG-IP Bug https://www.infosecurity-magazine.com/news/ncsc-urges-immediate-patching-f5/ The National Cyber Security Centre wants UK firms to patch CVE-2025-53521 Tue, 31 Mar 2026 08:45:00 GMT https://www.infosecurity-magazine.com/news/ncsc-urges-immediate-patching-f5/ Cybercriminals Exploit Tax Season With New Phishing Tactics https://www.infosecurity-magazine.com/news/tax-season-new-phishing-tactics/ Tax-season phishing floods deliver RMM malware, credential theft, BEC and tax-form scams Mon, 30 Mar 2026 15:00:00 GMT https://www.infosecurity-magazine.com/news/tax-season-new-phishing-tactics/ Lloyds IT Glitch Exposed Data of Nearly 500,000 Banking Customers https://www.infosecurity-magazine.com/news/lloyds-glitch-exposed-500000/ Lloyds app glitch exposed up to 447,936 customers’ transactions and personal data during update Mon, 30 Mar 2026 14:00:00 GMT https://www.infosecurity-magazine.com/news/lloyds-glitch-exposed-500000/ DeepLoad Malware Combines ClickFix With AI-Generated Code to Avoid Detection https://www.infosecurity-magazine.com/news/deepload-malware-clickfix-ai-code/ Researchers at ReliaQuest warn of persistent malware campaign targeting enterprise credentials Mon, 30 Mar 2026 12:00:00 GMT https://www.infosecurity-magazine.com/news/deepload-malware-clickfix-ai-code/ Critical Citrix NetScaler Vulnerability Exploited in the Wild https://www.infosecurity-magazine.com/news/critical-citrix-netscaler/ Researchers from watchTowr and Defused have found evidence that attackers are actively exploiting CVE-2026-3055, a critical NetScaler vulnerability Mon, 30 Mar 2026 10:45:00 GMT https://www.infosecurity-magazine.com/news/critical-citrix-netscaler/ ICO Fines UK Nuisance Call Scammers £100,000 https://www.infosecurity-magazine.com/news/ico-fines-uk-nuisance-call/ The UK Information Commissioner’s Office has handed a £100,000 fine to Birmingham-based TMAC Mon, 30 Mar 2026 09:30:00 GMT https://www.infosecurity-magazine.com/news/ico-fines-uk-nuisance-call/ European Commission Confirms Cloud Data Breach https://www.infosecurity-magazine.com/news/european-commission-cloud-data/ The European Commission has revealed details of a data breach impacting its AWS infrastructure Mon, 30 Mar 2026 08:15:00 GMT https://www.infosecurity-magazine.com/news/european-commission-cloud-data/ New Wave of AiTM Phishing Targets TikTok for Business https://www.infosecurity-magazine.com/news/phishing-targets-tiktok-for/ Push Security has uncovered a new AiTM phishing campaign targeting TikTok for Business accounts using Google and TikTok themed login pages Fri, 27 Mar 2026 16:01:00 GMT https://www.infosecurity-magazine.com/news/phishing-targets-tiktok-for/ TeamPCP Targets Telnyx Package in Latest PyPI Software Supply Chain Attack https://www.infosecurity-magazine.com/news/teampcp-targets-telnyx-pypi-package/ Socket and Endor Labs discovered a new TeamPCP campaign leading to the delivery of credential-stealing malware Fri, 27 Mar 2026 15:06:00 GMT https://www.infosecurity-magazine.com/news/teampcp-targets-telnyx-pypi-package/ Quantum Computing Threat to Encryption Is Closer Than Expected, Warns Google https://www.infosecurity-magazine.com/news/quantum-encryption-q-day-closer/ ‘Q-Day’ and the cybersecurity problems it brings could come as early as 2029 as Google accelerates its post-quantum cryptography migration Fri, 27 Mar 2026 12:30:00 GMT https://www.infosecurity-magazine.com/news/quantum-encryption-q-day-closer/ UK Cracks Down on Chinese Crypto Marketplace for Funding Southeast Asia Scam Hubs https://www.infosecurity-magazine.com/news/uk-sanction-chinese-crypto/ The UK government has sanctioned Xinbi, described as “the second-largest illicit online marketplace ever” Fri, 27 Mar 2026 12:00:00 GMT https://www.infosecurity-magazine.com/news/uk-sanction-chinese-crypto/ Security Researchers Sound the Alarm on Vulnerabilities in AI-Generated Code https://www.infosecurity-magazine.com/news/ai-generated-code-vulnerabilities/ Security researchers from Georgia Tech have observed a surge in reported CVEs for which the flaw was introduced by AI-generated code Thu, 26 Mar 2026 16:40:00 GMT https://www.infosecurity-magazine.com/news/ai-generated-code-vulnerabilities/ Attackers Rapidly Weaponize Critical Oracle WebLogic RCE, Honeypot Study Finds https://www.infosecurity-magazine.com/news/critical-oracle-weblogic-rce/ Attackers rapidly exploited a critical Oracle WebLogic RCE flaw the same day exploit code was released, according to a CloudSEK honeypot study Thu, 26 Mar 2026 16:00:00 GMT https://www.infosecurity-magazine.com/news/critical-oracle-weblogic-rce/ EtherRAT Techniques Bypass Security Via Ethereum Smart Contracts https://www.infosecurity-magazine.com/news/etherrat-bypass-security-ethereum/ EtherRAT hides C2 in Ethereum smart contracts via EtherHiding, steals wallets and credentials Thu, 26 Mar 2026 15:00:00 GMT https://www.infosecurity-magazine.com/news/etherrat-bypass-security-ethereum/ AI Becomes the Top Cybersecurity Priority for Defenders as Criminals Exploit It, PwC Warns https://www.infosecurity-magazine.com/news/ai-top-cyber-priority-defenders-pwc/ PwC Annual Threat Dynamics report says AI-threats are the biggest concern of clients Thu, 26 Mar 2026 13:15:00 GMT https://www.infosecurity-magazine.com/news/ai-top-cyber-priority-defenders-pwc/ OpenAI Expands Bug Bounty to Cover AI Abuse and 'Safety' Concerns https://www.infosecurity-magazine.com/news/openai-bug-bounty-ai-abuse-safety/ OpenAI’s Safety Bug Bounty program seeks to address AI safety vulnerabilities beyond traditional security flaws Thu, 26 Mar 2026 12:20:00 GMT https://www.infosecurity-magazine.com/news/openai-bug-bounty-ai-abuse-safety/ Iran-Linked Pay2Key Ransomware Group Re-Emerges https://www.infosecurity-magazine.com/news/iranlinked-pay2key-ransomware/ Halcyon and Beazley Security track the return of Iranian ransomware group Pay2Key Thu, 26 Mar 2026 10:45:00 GMT https://www.infosecurity-magazine.com/news/iranlinked-pay2key-ransomware/ Invoice Fraud Costs UK Construction Sector Millions, NCA Warns https://www.infosecurity-magazine.com/news/invoice-fraud-uk-construction/ The National Crime Agency has warned construction firms about surging invoice fraud Thu, 26 Mar 2026 10:07:00 GMT https://www.infosecurity-magazine.com/news/invoice-fraud-uk-construction/ Cloud Phones Linked to Rising Financial Fraud Threat https://www.infosecurity-magazine.com/news/cloud-phones-financial-fraud/ Cloud Android phones fuel financial fraud, evading detection and enabling dropper accounts Wed, 25 Mar 2026 16:05:00 GMT https://www.infosecurity-magazine.com/news/cloud-phones-financial-fraud/ Hackers Exploit Compromised Enterprise Identities at Industrial Scale, Warns SentinelOne https://www.infosecurity-magazine.com/news/hackers-exploit-id-industrial-scale/ Cybersecurity company’s annual report issues warning over a “mass-marketed impersonation crisis” over attackers abusing legitimate credentials Wed, 25 Mar 2026 15:30:00 GMT https://www.infosecurity-magazine.com/news/hackers-exploit-id-industrial-scale/ US: FCC Bans Foreign-Made Routers Over National Security Concerns https://www.infosecurity-magazine.com/news/us-fcc-bans-foreign-made-routers/ The US Federal Communications Commission has placed all “consumer-grade” internet routers produced outside the US on its “covered list” Wed, 25 Mar 2026 12:30:00 GMT https://www.infosecurity-magazine.com/news/us-fcc-bans-foreign-made-routers/ TeamPCP Expands Supply Chain Campaign With LiteLLM PyPI Compromise https://www.infosecurity-magazine.com/news/teampcp-litellm-pypi-supply-chain/ Python package LiteLLM compromised with credential-stealing malware linked to TeamPCP threat group Wed, 25 Mar 2026 12:00:00 GMT https://www.infosecurity-magazine.com/news/teampcp-litellm-pypi-supply-chain/ Experts Sound Alarm Over “Prompt Poaching” Browser Extensions https://www.infosecurity-magazine.com/news/experts-prompt-poaching-browser/ Expel has warned of malicious Chrome extensions stealing users’ AI conversations Wed, 25 Mar 2026 11:00:00 GMT https://www.infosecurity-magazine.com/news/experts-prompt-poaching-browser/ Operation Henhouse Nets Over 500 Arrests in UK Fraud Crackdown https://www.infosecurity-magazine.com/news/police-fraud-crackdown-leads-to/ UK police trumpet success of Operation Henhouse as they seize and freeze over £27m in suspected fraud proceeds Wed, 25 Mar 2026 09:35:00 GMT https://www.infosecurity-magazine.com/news/police-fraud-crackdown-leads-to/ RSA Conference: UK NCSC Head Urges Industry to Develop Vibe Coding Safeguards https://www.infosecurity-magazine.com/news/rsac-uk-ncsc-urges-vibe-coding/ The head of the UK’s NCSC is calling the cybersecurity industry to “seize the disruptive vibe coding opportunity” to make software more secure Tue, 24 Mar 2026 21:00:00 GMT https://www.infosecurity-magazine.com/news/rsac-uk-ncsc-urges-vibe-coding/ Silver Fox Cyber Campaigns Show Shift Toward Dual Espionage https://www.infosecurity-magazine.com/news/silver-fox-cyber-dual-espionage/ Silver Fox pivots from ValleyRAT tax lures to WhatsApp‑style stealers, blending espionage & phishing Tue, 24 Mar 2026 16:00:00 GMT https://www.infosecurity-magazine.com/news/silver-fox-cyber-dual-espionage/ Citrix Urges Immediate Patching for Critical NetScaler Vulnerabilities https://www.infosecurity-magazine.com/news/citrix-patch-netscaler/ A critical vulnerability in Citrix’s NetScaler products allows unauthenticated remote attackers to leak information from the appliance's memory Tue, 24 Mar 2026 15:15:00 GMT https://www.infosecurity-magazine.com/news/citrix-patch-netscaler/ New Npm 'Ghost Campaign' Uses Fake Install Logs to Hide Malware https://www.infosecurity-magazine.com/news/npm-ghost-campaign-fake-install/ Ghost npm campaign fakes install logs to steal sudo passwords and drop RATs that loot crypto and data Tue, 24 Mar 2026 14:30:00 GMT https://www.infosecurity-magazine.com/news/npm-ghost-campaign-fake-install/ Former Ukrainian Foreign Minister Dmytro Kuleba to Address the New Cyber Frontline at Infosecurity Europe https://www.infosecurity-magazine.com/news/foreign-minister-kuleba/ Geopolitics and cyber warfare take center stage at Infosecurity Europe as Dmytro Kuleba discusses Ukraine’s hybrid war experience Tue, 24 Mar 2026 14:00:00 GMT https://www.infosecurity-magazine.com/news/foreign-minister-kuleba/ Enterprise Cybersecurity Software Fails 20% of the Time, Warns Absolute Security https://www.infosecurity-magazine.com/news/cybersecurity-software-failure-20/ Poor patch management, increasingly complex IT environments and continued use of obsolete software puts organizations at risk from cyber threats, says the Absolute Security 2026 Resilience Risk Index Tue, 24 Mar 2026 13:15:00 GMT https://www.infosecurity-magazine.com/news/cybersecurity-software-failure-20/ Russian Initial Access Broker Handed 81-Month Sentence https://www.infosecurity-magazine.com/news/russian-initial-access-broker/ Russian cybercriminal Aleksei Volkov has received close to seven years behind bars for role in Yanluowang ransomware Tue, 24 Mar 2026 10:32:00 GMT https://www.infosecurity-magazine.com/news/russian-initial-access-broker/ Handala Group Tied to Iranian Hack‑and‑Leak Operations, FBI Reveals https://www.infosecurity-magazine.com/news/handala-group-iranian-hack-and/ The FBI has warned that Iranian hacking group Handala has been targeting opponents of the regime since 2023 Tue, 24 Mar 2026 09:30:00 GMT https://www.infosecurity-magazine.com/news/handala-group-iranian-hack-and/ Most Cybersecurity Staff Don’t Know How Fast They Could Stop a Cyber-Attack on AI Systems https://www.infosecurity-magazine.com/news/cyber-staff-unsure-on-preventing/ ISACA survey found that confusion over responsibility and lack of understanding around AI cyber-attacks makes containing them difficult Mon, 23 Mar 2026 16:30:00 GMT https://www.infosecurity-magazine.com/news/cyber-staff-unsure-on-preventing/ Tycoon2FA Phishing Service Resumes Activity Post-Takedown https://www.infosecurity-magazine.com/news/tycoon2fa-phishing-service-resumes/ Tycoon2FA phishing platform resumes activity post-takedown, leveraging AITM techniques to bypass MFA Mon, 23 Mar 2026 16:05:00 GMT https://www.infosecurity-magazine.com/news/tycoon2fa-phishing-service-resumes/ High-Tech Sector Overtakes Finance as Top Target for Cyber-Attacks, Mandiant Reports https://www.infosecurity-magazine.com/news/high-tech-top-target-cyberattacks/ High tech was the most frequently targeted industry in Mandiant investigations in 2025, overtaking financial services which led in 2023 and 2024 Mon, 23 Mar 2026 15:35:00 GMT https://www.infosecurity-magazine.com/news/high-tech-top-target-cyberattacks/ Trivy Supply Chain Attack Expands With New Compromised Docker Images https://www.infosecurity-magazine.com/news/trivy-supply-chain-attack-expands/ New Trivy Docker images 0.69.5 and 0.69.6 compromised with TeamPCP infostealer, impacting CI/CD scans Mon, 23 Mar 2026 15:05:00 GMT https://www.infosecurity-magazine.com/news/trivy-supply-chain-attack-expands/ CISA Orders US Government to Patch Maximum Severity Cisco Flaw https://www.infosecurity-magazine.com/news/cisa-orders-us-government-patch/ CISA added CVE-2026-20131 to its KEV catalog as it is being used in ransomware campaigns Mon, 23 Mar 2026 10:30:00 GMT https://www.infosecurity-magazine.com/news/cisa-orders-us-government-patch/ Operation Alice Takes Down 370,000+ Dark Web Sites https://www.infosecurity-magazine.com/news/operation-alice-370000-dark-web/ German-led policing effort against fraud operation disrupts countless CSAM and cybercrime sites Mon, 23 Mar 2026 09:10:00 GMT https://www.infosecurity-magazine.com/news/operation-alice-370000-dark-web/ Hackers Exploit Critical Langflow Bug in Just 20 Hours https://www.infosecurity-magazine.com/news/hackers-exploit-critical-langflow/ Sysdig details how threat actors exploited a critical CVE in Langflow in less than a day Fri, 20 Mar 2026 10:20:00 GMT https://www.infosecurity-magazine.com/news/hackers-exploit-critical-langflow/ NCA Boss Warns That Teens Are Being “Radicalized” Into Cybercrime Online https://www.infosecurity-magazine.com/news/nca-boss-warns-teens-radicalized/ The National Crime Agency’s director general warns that technology is rapidly reshaping crime Fri, 20 Mar 2026 09:40:00 GMT https://www.infosecurity-magazine.com/news/nca-boss-warns-teens-radicalized/ Ransomware Affiliate Exposes Details of 'The Gentlemen' Operation https://www.infosecurity-magazine.com/news/ransomware-affiliate-gentlemen/ Hastalamuerte leaks The Gentlemen RaaS ops: FortiGate exploits, BYOVD evasion, Qilin split tactics Thu, 19 Mar 2026 16:00:00 GMT https://www.infosecurity-magazine.com/news/ransomware-affiliate-gentlemen/ Financial Brands Targeted in Global Mobile Banking Malware Surge https://www.infosecurity-magazine.com/news/financial-brands-mobile-banking/ Mobile banking malware targets over 1200 financial apps globally, shifting fraud to user devices Thu, 19 Mar 2026 14:30:00 GMT https://www.infosecurity-magazine.com/news/financial-brands-mobile-banking/ FCA Updates Cyber Incident and Third-Party Reporting Rules https://www.infosecurity-magazine.com/news/fca-updates-incident-thirdparty/ The UK’s financial regulator has issued new rules to make incident and third-party reporting clearer Thu, 19 Mar 2026 10:30:00 GMT https://www.infosecurity-magazine.com/news/fca-updates-incident-thirdparty/ AWS Warns Hackers Have Abused Cisco Firewall Zero-Day Since January https://www.infosecurity-magazine.com/news/interlock-ransomware-exploit-cisco/ Notorious ransomware group Interlock has been exploiting a Cisco zero-day bug since January, AWS says Thu, 19 Mar 2026 09:50:00 GMT https://www.infosecurity-magazine.com/news/interlock-ransomware-exploit-cisco/ UK: Regulation Drives Cyber Spending for Critical Infrastructure Orgs https://www.infosecurity-magazine.com/news/uk-regulation-drives-cyber/ 35% of security leaders working in the UK’s critical infrastructure said regulatory requirements are the primary influence on their security programs Thu, 19 Mar 2026 09:00:00 GMT https://www.infosecurity-magazine.com/news/uk-regulation-drives-cyber/ New Ubuntu Flaw Enables Local Attackers to Gain Root Access https://www.infosecurity-magazine.com/news/ubuntu-flaw-enables-root-access/ CVE-2026-3888 Ubuntu snap flaw lets local users escalate to root via timing-based exploit Wed, 18 Mar 2026 15:45:00 GMT https://www.infosecurity-magazine.com/news/ubuntu-flaw-enables-root-access/ Crypto Scam "ShieldGuard" Dismantled After Malware Discovery https://www.infosecurity-magazine.com/news/crypto-scam-shieldguard-dismantled/ ShieldGuard Chrome extension posed as a crypto security tool but stole wallets and drained user data Wed, 18 Mar 2026 14:15:00 GMT https://www.infosecurity-magazine.com/news/crypto-scam-shieldguard-dismantled/ AI-Enabled Adversaries Compress Time-to-Exploit Following Vulnerability Disclosure https://www.infosecurity-magazine.com/news/exploitation-accelerates-in-2025/ Rapid7 says median time from publication to CISA KEV inclusion dropped to five days Wed, 18 Mar 2026 13:00:00 GMT https://www.infosecurity-magazine.com/news/exploitation-accelerates-in-2025/ Vidar Stealer 2.0 Exploits GitHub, Reddit to Deliver Malware via Fake Game Cheats https://www.infosecurity-magazine.com/news/vidar-stealer-exploits-github/ The Vidar 2.0 infostealers is deployed through fake free game cheats on GitHub and Reddit Wed, 18 Mar 2026 11:15:00 GMT https://www.infosecurity-magazine.com/news/vidar-stealer-exploits-github/ AI Issues Will Drive Half of Incident Response Efforts by 2028, Says Gartner https://www.infosecurity-magazine.com/news/ai-issues-half-incident-response/ Gartner has urged security teams to get involved in AI projects from the start to avoid costly incident response Wed, 18 Mar 2026 09:40:00 GMT https://www.infosecurity-magazine.com/news/ai-issues-half-incident-response/ Android OS-Level Attack Bypasses Mobile Payment Security https://www.infosecurity-magazine.com/news/android-attack-bypasses-payment/ Android’s LSPosed-based attack hijacks payment apps via runtime manipulation and SIM-binding bypass Tue, 17 Mar 2026 16:30:00 GMT https://www.infosecurity-magazine.com/news/android-attack-bypasses-payment/ 'CursorJack’ Attack Path Exposes Code Execution Risk in AI Development Environment https://www.infosecurity-magazine.com/news/cursor-jack-attack-path-ai/ CursorJack shows how malicious MCP deeplinks in Cursor IDE can trigger user-approved code execution Tue, 17 Mar 2026 15:00:00 GMT https://www.infosecurity-magazine.com/news/cursor-jack-attack-path-ai/ Surge in Nation State Attacks on UK Firms Amid Cyber Warfare Fears https://www.infosecurity-magazine.com/news/nation-state-attacks-uk-firms/ Armis reveals that “mutually assured disruption” is no longer preventing state-backed attacks Tue, 17 Mar 2026 12:00:00 GMT https://www.infosecurity-magazine.com/news/nation-state-attacks-uk-firms/ Average Number of Daily API Attacks Up 113% Annually https://www.infosecurity-magazine.com/news/average-number-daily-api-attacks/ Akamai says 87% of organizations suffered an API-related security incident last year Tue, 17 Mar 2026 10:30:00 GMT https://www.infosecurity-magazine.com/news/average-number-daily-api-attacks/ UK Cyber Monitoring Centre Sets Its Sights on US Expansion One Year After Launch https://www.infosecurity-magazine.com/news/uk-cyber-monitoring-centre-us/ The US Cyber Monitoring Center should be operational in 2027, said the UK CMC leadership Tue, 17 Mar 2026 10:15:00 GMT https://www.infosecurity-magazine.com/news/uk-cyber-monitoring-centre-us/ Researchers Warn of Global Surge in Fake Shipment Tracking Scams https://www.infosecurity-magazine.com/news/global-surge-fake-shipment/ Some of these campaigns are linked to Darcula, a Chinese-language phishing-as-a-service platform Mon, 16 Mar 2026 14:45:00 GMT https://www.infosecurity-magazine.com/news/global-surge-fake-shipment/ CrackArmor Flaws Expose Linux Systems to Privilege Escalation https://www.infosecurity-magazine.com/news/crackarmor-linux-privilege/ CrackArmor AppArmor flaws let local Linux users gain root, break containers and enable DoS attacks Mon, 16 Mar 2026 14:00:00 GMT https://www.infosecurity-magazine.com/news/crackarmor-linux-privilege/ Security Flaw in AWS Bedrock Code Interpreter Raises Alarms https://www.infosecurity-magazine.com/news/security-flaw-aws-bedrock/ DNS-based attack in AWS Bedrock AgentCore lets AI sandboxes exfiltrate cloud data Mon, 16 Mar 2026 13:00:00 GMT https://www.infosecurity-magazine.com/news/security-flaw-aws-bedrock/ FBI Calls for Help to Track Steam Malware Campaign https://www.infosecurity-magazine.com/news/fbi-calls-help-track-steam-malware/ The FBI wants to hear from gamers who have downloaded Steam titles containing malware Mon, 16 Mar 2026 11:15:00 GMT https://www.infosecurity-magazine.com/news/fbi-calls-help-track-steam-malware/ UK: Companies House Web Glitch Exposes Corporate Details to Fraudsters https://www.infosecurity-magazine.com/news/companies-house-glitch-exposes/ An issue with the Companies House website has put the personal and corporate information of millions at risk Mon, 16 Mar 2026 10:30:00 GMT https://www.infosecurity-magazine.com/news/companies-house-glitch-exposes/ Interpol's 'Operation Synergia III' Nets 94 Arrests in Major Cybercrime Sweep https://www.infosecurity-magazine.com/news/interpol-operation-synergia3-94/ A new law enforcement operation against phishing and ransomware operators led to the takedown of 45,000 malicious IP addresses Fri, 13 Mar 2026 16:15:00 GMT https://www.infosecurity-magazine.com/news/interpol-operation-synergia3-94/ Law Enforcement Dismantles SocksEscort Proxy Network in Operation Lightning https://www.infosecurity-magazine.com/news/socksescort-proxy-network-op/ Operation Lightning sees international law enforcement partners shut down ‘SocksEscort,’ a major malicious proxy service used by cybercriminals worldwide Fri, 13 Mar 2026 10:00:00 GMT https://www.infosecurity-magazine.com/news/socksescort-proxy-network-op/ PixRevolution Malware Hijacks Brazil's PIX Transfers in Real Time https://www.infosecurity-magazine.com/news/pixrevolution-malware-brazils-pix/ PixRevolution Android trojan hijacks Brazil’s PIX payments in real time using accessibility abuse Thu, 12 Mar 2026 16:00:00 GMT https://www.infosecurity-magazine.com/news/pixrevolution-malware-brazils-pix/ Critical Zero-Click Flaw in n8n Allows Full Server Compromise https://www.infosecurity-magazine.com/news/critical-zeroclick-flaw-n8n-pillar/ The critical vulnerability affecting both cloud and self-hosted n8n instances requires no authentication or even n8n account to be exploited Thu, 12 Mar 2026 15:28:00 GMT https://www.infosecurity-magazine.com/news/critical-zeroclick-flaw-n8n-pillar/ CISA Issues Emergency Directive Over Exploited Cisco SD-WAN Flaws https://www.infosecurity-magazine.com/news/cisa-cisco-sd-wan-flaws-directive/ CISA issued urgent directive as attackers exploit Cisco SD-WAN flaw granting admin access to networks Thu, 12 Mar 2026 12:45:00 GMT https://www.infosecurity-magazine.com/news/cisa-cisco-sd-wan-flaws-directive/ Police Scotland Fined After Sharing Victim’s Phone Data https://www.infosecurity-magazine.com/news/police-scotland-fined-sharing/ The ICO has fined Police Scotland after it shared the entire contents of a victim’s phone with her alleged attacker Thu, 12 Mar 2026 10:30:00 GMT https://www.infosecurity-magazine.com/news/police-scotland-fined-sharing/ Iran Claims Massive Cyber-Attack on MedTech Firm Stryker https://www.infosecurity-magazine.com/news/iran-massive-wiper-attack-medtech/ The pro-Iran Handala group claims to have wiped 200,000 systems in destructive wiper malware attack on US firm Stryker Thu, 12 Mar 2026 09:30:00 GMT https://www.infosecurity-magazine.com/news/iran-massive-wiper-attack-medtech/ France: National Cybersecurity Agency Reports Ransomware Attack Drop in 2025 https://www.infosecurity-magazine.com/news/france-anssi-ransomware-attack/ French small and medium businesses remained the organizations most targeted by ransomware in 2025 Wed, 11 Mar 2026 16:50:00 GMT https://www.infosecurity-magazine.com/news/france-anssi-ransomware-attack/ Infosecurity Europe Announces 2026 Keynote Line Up https://www.infosecurity-magazine.com/news/infosecurity-europe-2026-keynote/ Infosecurity Europe 2026 reveals its keynote line-up, featuring Jason Fox, Shlomo Kramer, Cynthia Kaiser and more, with sessions on AI, cloud security and post quantum threats Wed, 11 Mar 2026 16:20:00 GMT https://www.infosecurity-magazine.com/news/infosecurity-europe-2026-keynote/ Researchers Uncover ‘LeakyLooker’ Vulnerabilities in Google Looker Studio https://www.infosecurity-magazine.com/news/google-looker-studios-security-gaps/ LeakyLooker flaws in Google Looker Studio let attackers run cross-tenant SQL attacks on cloud data Wed, 11 Mar 2026 16:00:00 GMT https://www.infosecurity-magazine.com/news/google-looker-studios-security-gaps/ Compromised WordPress Sites Deliver ClickFix Attacks in Global Infostealer Campaign https://www.infosecurity-magazine.com/news/wordpress-clickfix-infostealer/ Over 250 legitimate websites, including news outlets and a US Senate candidate’s official webpage, been compromised to infect visitors with infostealers, warn Rapid7 researchers Wed, 11 Mar 2026 14:45:00 GMT https://www.infosecurity-magazine.com/news/wordpress-clickfix-infostealer/ BlackSanta EDR-Killer Targets HR Teams in CV-Themed Campaign https://www.infosecurity-magazine.com/news/blacksanta-edr-killer-targets-hr/ BlackSanta malware targets HR staff with fake resumes, kills EDR and steals system data Wed, 11 Mar 2026 14:30:00 GMT https://www.infosecurity-magazine.com/news/blacksanta-edr-killer-targets-hr/ Researchers Discover Major Security Gaps in LLM Guardrails https://www.infosecurity-magazine.com/news/major-security-gaps-llm-guardrails/ Palo Alto Networks’ Unit 42 has developed a successful attack to bypass safety guardrails in popular generative AI tools Wed, 11 Mar 2026 13:35:00 GMT https://www.infosecurity-magazine.com/news/major-security-gaps-llm-guardrails/ Cyber-Attacks on UK Firms Increase at Four Times Global Rate https://www.infosecurity-magazine.com/news/cyberattacks-uk-firms-increase/ Check Point data shows attack volumes are growing much faster in the UK than worldwide Wed, 11 Mar 2026 10:30:00 GMT https://www.infosecurity-magazine.com/news/cyberattacks-uk-firms-increase/ Microsoft Fixes Two Publicly Disclosed Zero-Days https://www.infosecurity-magazine.com/news/microsoft-fixes-two-publicly/ March Patch Tuesday sees Microsoft release updates for 79 flaws Wed, 11 Mar 2026 09:20:00 GMT https://www.infosecurity-magazine.com/news/microsoft-fixes-two-publicly/ OpenAI's Promptfoo Deal Plugs Agentic AI Testing Gap https://www.infosecurity-magazine.com/news/openai-promptfoo-deal-agentic-ai/ OpenAI’s latest acquisition addresses a security need Jamieson O’Reilly, security advisor at OpenClaw, raised during an exclusive interview with Infosecurity Tue, 10 Mar 2026 17:15:00 GMT https://www.infosecurity-magazine.com/news/openai-promptfoo-deal-agentic-ai/ Only 24% Of organizations Test Identity Recovery Every Six Months https://www.infosecurity-magazine.com/news/organizations-test-identity-sec-6/ Only 24% of organizations test identity disaster recovery plans every 6 months, Quest Software said Tue, 10 Mar 2026 16:00:00 GMT https://www.infosecurity-magazine.com/news/organizations-test-identity-sec-6/ Cloud Attackers Now Prefer Vulnerability Exploits Over Credentials, Google Cloud Finds https://www.infosecurity-magazine.com/news/cloud-attackers-prefer-exploits/ Google Cloud report details a sharp rise in attackers exploiting software vulnerabilities, including React2Shell Tue, 10 Mar 2026 15:30:00 GMT https://www.infosecurity-magazine.com/news/cloud-attackers-prefer-exploits/ Ericsson Breach Exposes Data of 15k Employees and Customers https://www.infosecurity-magazine.com/news/ericsson-breach-exposes-data-15k/ Ericsson data breach affects 15k employees/customers after third-party service provider compromise Tue, 10 Mar 2026 15:00:00 GMT https://www.infosecurity-magazine.com/news/ericsson-breach-exposes-data-15k/ Russian Hackers Target WhatsApp and Signal Accounts of Global Military and Government Officials https://www.infosecurity-magazine.com/news/russian-hackers-target-military/ Dutch intelligence reveals Russian state hackers are trying to hijack the Signal and WhatsApp accounts of key targets Tue, 10 Mar 2026 10:45:00 GMT https://www.infosecurity-magazine.com/news/russian-hackers-target-military/ ShinyHunters Targets Hundreds of Websites in New Salesforce Campaign https://www.infosecurity-magazine.com/news/shinyhunters-hundreds-websites/ Prolific ShinyHunters group claims to have stolen data from nearly 400 websites in Experience Cloud attacks Tue, 10 Mar 2026 10:00:00 GMT https://www.infosecurity-magazine.com/news/shinyhunters-hundreds-websites/ Threat Actor Exploits Flaws and Uses Elastic Cloud SIEM to Manage Stolen Data https://www.infosecurity-magazine.com/news/elastic-cloud-siem-manage-stolen/ Huntress researchers uncover campaign exploiting vulnerabilities to steal data using Elastic Cloud as a data hub Mon, 09 Mar 2026 15:45:00 GMT https://www.infosecurity-magazine.com/news/elastic-cloud-siem-manage-stolen/ Trump Administration Unveils New Cyber Strategy for America https://www.infosecurity-magazine.com/news/usa-unveils-new-cyber-strategy/ US national cyber strategy focuses on stronger defenses, countering threats, fostering innovation Mon, 09 Mar 2026 15:00:00 GMT https://www.infosecurity-magazine.com/news/usa-unveils-new-cyber-strategy/ UK Launches New Crackdown Unit to Tackle Cyber-Fraud at the Source https://www.infosecurity-magazine.com/news/uk-new-crackdown-unit-cyber-fraud/ New UK Online Crime Centre will combine expertise from a range of sources to takedown online channels cyber-scammers rely on Mon, 09 Mar 2026 14:00:00 GMT https://www.infosecurity-magazine.com/news/uk-new-crackdown-unit-cyber-fraud/ AI Security Startups Dominate New Cyber Innovation Awards https://www.infosecurity-magazine.com/news/ai-security-startups-cyber/ Over one in five winners of IT-Harvest’s 2026 Cyber 150 are AI security companies Mon, 09 Mar 2026 13:25:00 GMT https://www.infosecurity-magazine.com/news/ai-security-startups-cyber/ TriZetto Provider Solutions Breach Hits 3.4 Million Patients https://www.infosecurity-magazine.com/news/trizetto-provider-solutions-breach/ Billing services provider TriZetto Provider Solutions has begun notifying millions of patients about a data breach Mon, 09 Mar 2026 10:45:00 GMT https://www.infosecurity-magazine.com/news/trizetto-provider-solutions-breach/ Ghanaian Pleads Guilty to Role in $100m Romance Scam https://www.infosecurity-magazine.com/news/ghanaian-pleads-guilty-100m/ Derrick Van Yeboah admitted he stole over $10m in romance scams as part of crime gang Mon, 09 Mar 2026 10:00:00 GMT https://www.infosecurity-magazine.com/news/ghanaian-pleads-guilty-100m/ Iran's MuddyWater Hackers Hit US Firms with New 'Dindoor' Backdoor https://www.infosecurity-magazine.com/news/iran-muddywater-hackers-us-firms/ A bank, an airport, a non-profit and the Israeli branch of a US software company were among the targets of this new MuddyWater campaign Fri, 06 Mar 2026 15:15:00 GMT https://www.infosecurity-magazine.com/news/iran-muddywater-hackers-us-firms/ Zero‑Day Attacks on Enterprise Software Reach Record High, Google Warns https://www.infosecurity-magazine.com/news/zero-day-enterprise-record-high/ Almost a quarter of the zero days detected by Google in 2025 targeted security and networking appliances Fri, 06 Mar 2026 12:29:00 GMT https://www.infosecurity-magazine.com/news/zero-day-enterprise-record-high/ AI-Driven Insider Risk Now a “Critical Business Threat,” Report Warns https://www.infosecurity-magazine.com/news/ai-insider-risk-critical-business/ Malicious insiders are using misusing AI for nefarious gain, while employees cutting corners also creates risk, warns Mimecast Thu, 05 Mar 2026 16:00:00 GMT https://www.infosecurity-magazine.com/news/ai-insider-risk-critical-business/ ContextCrush Flaw Exposes AI Development Tools to Attacks https://www.infosecurity-magazine.com/news/contextcrush-ai-development-tools/ Critical flaw "ContextCrush" in Context7 MCP Server could allow malicious instructions into AI tools Thu, 05 Mar 2026 14:00:00 GMT https://www.infosecurity-magazine.com/news/contextcrush-ai-development-tools/ Coruna Exploit Kit Targets Older iPhones in Multi-Stage Campaigns https://www.infosecurity-magazine.com/news/coruna-exploit-older-iphones/ Exploit kit "Coruna" targets iPhones running iOS 13.0 to 17.2.1, focusing on financial data theft Thu, 05 Mar 2026 12:15:00 GMT https://www.infosecurity-magazine.com/news/coruna-exploit-older-iphones/ Zero-Click FreeScout Bug Enables Remote Code Execution https://www.infosecurity-magazine.com/news/zeroclick-freescout-bug-remote/ Ox Security warns that Mail2Shell could enable threat actors to hijack FreeScout systems without user interaction Thu, 05 Mar 2026 11:00:00 GMT https://www.infosecurity-magazine.com/news/zeroclick-freescout-bug-remote/ Cisco Issues Patches for 48 Vulnerabilities in Enterprise Networking Products https://www.infosecurity-magazine.com/news/cisco-issues-patches-48/ Two of the 48 Cisco vulnerabilities, affecting Secure Firewall Management Center, are maximum-severity flaws Thu, 05 Mar 2026 10:30:00 GMT https://www.infosecurity-magazine.com/news/cisco-issues-patches-48/ Europol Operation Seizes LeakBase Data Breach Site https://www.infosecurity-magazine.com/news/europol-seizes-leakbase-data/ A global operation has resulted in the takedown of popular cybercrime forum LeakBase Thu, 05 Mar 2026 09:45:00 GMT https://www.infosecurity-magazine.com/news/europol-seizes-leakbase-data/ Coalition of Western Countries Launches 6G Cybersecurity Guidelines https://www.infosecurity-magazine.com/news/gcot-6g-cybersecurity-guidelines/ A coalition of seven Western nations has launched guidelines to help integrate security-by-design principles into future 6G standards Wed, 04 Mar 2026 16:30:00 GMT https://www.infosecurity-magazine.com/news/gcot-6g-cybersecurity-guidelines/ Global Takedown Neutralizes Tycoon2FA Phishing Service https://www.infosecurity-magazine.com/news/global-takedown-tycoon2fa-phishing/ Law enforcers and industry partners have taken down notorious phishing-as-a-service platform Tycoon2FA Wed, 04 Mar 2026 16:00:00 GMT https://www.infosecurity-magazine.com/news/global-takedown-tycoon2fa-phishing/ Surge in Attacks on Surveillance Cameras Linked to Iranian Hackers https://www.infosecurity-magazine.com/news/iran-attacks-surveillance-cameras/ Increased attempts to compromise surveillance cameras linked to Iran during Middle East conflict Wed, 04 Mar 2026 15:00:00 GMT https://www.infosecurity-magazine.com/news/iran-attacks-surveillance-cameras/ Multi-Stage "BadPaw" Malware Campaign Targets Ukraine https://www.infosecurity-magazine.com/news/badpaw-malware-targets-ukraine/ Malware campaign uses Ukrainian email service for credibility, deploying "BadPaw" to execute attacks Wed, 04 Mar 2026 14:30:00 GMT https://www.infosecurity-magazine.com/news/badpaw-malware-targets-ukraine/ Calls for Global Digital Estate Standard as Posthumous Deepfake Fraud Risk Grows https://www.infosecurity-magazine.com/news/digital-estate-post-death-deepfake/ The OpenID Foundation warns that fragmented policies on posthumous digital accounts could open the door for fraudsters to exploit AI deepfakes Wed, 04 Mar 2026 10:45:00 GMT https://www.infosecurity-magazine.com/news/digital-estate-post-death-deepfake/ Israel: RedAlert Spyware Campaign Exploits Wartime Panic With Trojanized App https://www.infosecurity-magazine.com/news/redalert-israel-spyware-campaign/ Espionage campaign exploits Israel-Iran conflict, distributing a trojanized Red Alert app via SMS Tue, 03 Mar 2026 16:15:00 GMT https://www.infosecurity-magazine.com/news/redalert-israel-spyware-campaign/ AI and Deepfakes Supercharge Sophisticated Cyber-Attacks, Says Cloudflare https://www.infosecurity-magazine.com/news/ai-deepfakes-supercharge/ Cloudflare Threat Report warns that AI tools enable attackers who lacked required skills to generate effective attacks rapidly and at scale Tue, 03 Mar 2026 15:30:00 GMT https://www.infosecurity-magazine.com/news/ai-deepfakes-supercharge/ Leaked Database Sheds Light on Iranian Crypto Sanctions Evasion https://www.infosecurity-magazine.com/news/iranian-crypto-leaked-database/ Ariomex database reveals potential sanctions evasion and capital transfers tied to Iranian actors Tue, 03 Mar 2026 14:30:00 GMT https://www.infosecurity-magazine.com/news/iranian-crypto-leaked-database/ Half of US CISOs Work the Equivalent of a Six-Day Week https://www.infosecurity-magazine.com/news/half-us-cisos-work-equivalent/ Seemplicity finds US security leaders work 11 or more extra hours per week Tue, 03 Mar 2026 14:00:00 GMT https://www.infosecurity-magazine.com/news/half-us-cisos-work-equivalent/ Huge “Shadow Layer” of Organizations Hit by Supply Chain Attacks https://www.infosecurity-magazine.com/news/shadow-layer-organizations-supply/ Black Kite reveals 26,000 unnamed corporate victims linked to 136 third-party breaches Tue, 03 Mar 2026 11:00:00 GMT https://www.infosecurity-magazine.com/news/shadow-layer-organizations-supply/ Iranian Cyber Threat Actor Targets Iraqi Government Officials in AI-Powered Campaign https://www.infosecurity-magazine.com/news/iran-cyber-threat-actor-iraq/ Zscaler ThreatLabz assessed with medium to high confidence that an Iranian adversary targeted Iraq’s Ministry of Foreign Affairs in a new cyber-attack Tue, 03 Mar 2026 10:30:00 GMT https://www.infosecurity-magazine.com/news/iran-cyber-threat-actor-iraq/ Chrome Unveils Plan For Quantum-Safe HTTPS Certificates https://www.infosecurity-magazine.com/news/chrome-quantum-safe-https/ Google Chrome initiates quantum-resistant measures via Merkle Tree Certificates to secure HTTPS Mon, 02 Mar 2026 16:15:00 GMT https://www.infosecurity-magazine.com/news/chrome-quantum-safe-https/ Expect Iran to Launch Cyber-Attacks Globally, Warns Google Head of Threat Intel https://www.infosecurity-magazine.com/news/iran-cyber-attacks-global-google/ John Hultquist suggests “aggressive” Iranian cyber attackers will target the US and its Gulf allies with plausibly deniable ransomware attacks, hacktivist campaigns and more Mon, 02 Mar 2026 15:45:00 GMT https://www.infosecurity-magazine.com/news/iran-cyber-attacks-global-google/ Hybrid Middle East Conflict Triggers Surge in Global Cyber Activity https://www.infosecurity-magazine.com/news/middle-east-conflict-surge-global/ Military strikes in the Middle East escalate cyber ops, raising spillover risks globally for firms Mon, 02 Mar 2026 15:00:00 GMT https://www.infosecurity-magazine.com/news/middle-east-conflict-surge-global/ ClawJacked Bug Enables Covert AI Agent Hijacking https://www.infosecurity-magazine.com/news/clawjacked-bug-covert-ai-agent/ Oasis Security reveals how a new ClawJacked vulnerability could allow attackers to silently take over a victim’s OpenClaw agent Mon, 02 Mar 2026 11:30:00 GMT https://www.infosecurity-magazine.com/news/clawjacked-bug-covert-ai-agent/ Ransomware Payments Decline 8% as Attacks Surge 50% https://www.infosecurity-magazine.com/news/ransomware-payments-decline-1/ Chainalysis reveals a big surge in median ransomware payment size in 2025 despite overall drop in criminal revenue Mon, 02 Mar 2026 10:45:00 GMT https://www.infosecurity-magazine.com/news/ransomware-payments-decline-1/ North Korea's APT37 Expands Toolkit to Breach Air-Gapped Networks https://www.infosecurity-magazine.com/news/north-korea-apt37-expands-toolkit/ The security researchers from Zscaler ThreatLabz have also discovered five new tools deployed by the North Korean hacking group Fri, 27 Feb 2026 14:15:00 GMT https://www.infosecurity-magazine.com/news/north-korea-apt37-expands-toolkit/ UK Vulnerability Monitoring Service Cuts Unresolved Security Flaws by 75% https://www.infosecurity-magazine.com/news/uk-vuln-monitoring-service-cuts/ The UK government says its new Vulnerability Monitoring Service has cut unresolved security flaws by 75% and reduced cyber-attack fix times from nearly two months to just over a week Fri, 27 Feb 2026 11:45:00 GMT https://www.infosecurity-magazine.com/news/uk-vuln-monitoring-service-cuts/ ‘Project Compass’ Cracks Down on ‘The Com’: 30 Members of Notorious Cybercrime Gang Arrested https://www.infosecurity-magazine.com/news/project-compass-com-arrests/ International law enforcement operation led by Europol targets network of teenagers and young adults involved in ransomware attacks, extortion and other crimes Fri, 27 Feb 2026 11:00:00 GMT https://www.infosecurity-magazine.com/news/project-compass-com-arrests/ Aeternum Botnet Shifts Command Control to Polygon Blockchain https://www.infosecurity-magazine.com/news/aeternum-botnet-c2-polygon/ New botnet Aeternum shifted C2 operations to Polygon blockchain, complicating takedown efforts Thu, 26 Feb 2026 16:00:00 GMT https://www.infosecurity-magazine.com/news/aeternum-botnet-c2-polygon/ Darktrace Flags 32 Million Phishing Emails in 2025 as Identity Attacks Intensify https://www.infosecurity-magazine.com/news/32m-phishing-emails-detected-2025/ 2025 saw 32M phishing emails, with identity threats surpassing vulnerabilities Thu, 26 Feb 2026 15:00:00 GMT https://www.infosecurity-magazine.com/news/32m-phishing-emails-detected-2025/ Exploitable Vulnerabilities Present in 87% of Organizations https://www.infosecurity-magazine.com/news/exploitable-vulnerabilities-in-87/ Datadog report reveals two-fifths of services are affected by exploitable bugs Thu, 26 Feb 2026 14:00:00 GMT https://www.infosecurity-magazine.com/news/exploitable-vulnerabilities-in-87/ UK's Data Watchdog Gets a Makeover to Match Growing Demands https://www.infosecurity-magazine.com/news/uk-data-watchdog-ico-makeover/ The UK’s Information Commissioner's Office is about to ditch single-leader model for CEO and board in a major shake-up Thu, 26 Feb 2026 14:00:00 GMT https://www.infosecurity-magazine.com/news/uk-data-watchdog-ico-makeover/ Google Disrupts ‘Prolific’ and ‘Elusive’ China-Linked Global Hacking Campaign https://www.infosecurity-magazine.com/news/google-prolific-china-hacking/ UNC2814 hit 53 victims in 42 countries with novel backdoor in decade long cyber espionage operation Thu, 26 Feb 2026 12:09:00 GMT https://www.infosecurity-magazine.com/news/google-prolific-china-hacking/ Global Cyber Agencies Urge Immediate Patching of Cisco SD-WAN Zero Day https://www.infosecurity-magazine.com/news/immediate-patch-cisco-catalyst/ The US and allies are urging Cisco Catalyst SD-WAN customers to hunt for signs of exploitation Thu, 26 Feb 2026 09:30:00 GMT https://www.infosecurity-magazine.com/news/immediate-patch-cisco-catalyst/ 44% Surge in App Exploits as AI Speeds Up Cyber-Attacks, IBM Finds https://www.infosecurity-magazine.com/news/app-exploits-surge-ai-speeds/ IBM's 2026 X-Force report reveals 44% rise in cyber-attacks on public apps, driven by AI and flaws Wed, 25 Feb 2026 14:30:00 GMT https://www.infosecurity-magazine.com/news/app-exploits-surge-ai-speeds/ Malicious NuGet Package Targets Stripe Developers https://www.infosecurity-magazine.com/news/malicious-nuget-package-stripe-devs/ Malicious NuGet package mimicking Stripe's library targeted developers Wed, 25 Feb 2026 13:00:00 GMT https://www.infosecurity-magazine.com/news/malicious-nuget-package-stripe-devs/ Former Defense Contractor Boss Gets 7+ Years for Selling Zero Days https://www.infosecurity-magazine.com/news/defense-contractor-boss-7-years/ A former general manager of a US defense contractor has been sentenced after selling zero days to Russia Wed, 25 Feb 2026 10:30:00 GMT https://www.infosecurity-magazine.com/news/defense-contractor-boss-7-years/ ICO’s £14m Reddit Fine Highlights Age Check Privacy Concerns https://www.infosecurity-magazine.com/news/icos-14m-reddit-fine-age-check/ The UK’s ICO has fined Reddit over £14m for failing to use children’s personal information lawfully Wed, 25 Feb 2026 09:40:00 GMT https://www.infosecurity-magazine.com/news/icos-14m-reddit-fine-age-check/ Cost of Insider Incidents Surges 20% to Nearly $20m https://www.infosecurity-magazine.com/news/cost-of-insider-incidents-surges/ DTEX claims insider incidents cost $19.5m in 2025, with employee negligence most expensive Tue, 24 Feb 2026 17:00:00 GMT https://www.infosecurity-magazine.com/news/cost-of-insider-incidents-surges/ Multifaceted Phishing Scheme Deceives Bitpanda Customers https://www.infosecurity-magazine.com/news/bitpanda-mfa-phishing-scheme/ Phishing attack mimicking Bitpanda targets users, harvesting credentials and personal information Tue, 24 Feb 2026 16:05:00 GMT https://www.infosecurity-magazine.com/news/bitpanda-mfa-phishing-scheme/ North Korean Lazarus Group Expands Ransomware Activity With Medusa https://www.infosecurity-magazine.com/news/north-korean-lazarus-group-medusa/ Ransomware Medusa linked to North Korean hackers targets US healthcare amid ongoing attacks Tue, 24 Feb 2026 14:30:00 GMT https://www.infosecurity-magazine.com/news/north-korean-lazarus-group-medusa/ AI Accelerates Attacker Breakout Time to Just Four Minutes https://www.infosecurity-magazine.com/news/ai-accelerates-attack-breakout/ ReliaQuest claims AI has reduced breakout and exfiltration time to under 10 minutes Tue, 24 Feb 2026 13:00:00 GMT https://www.infosecurity-magazine.com/news/ai-accelerates-attack-breakout/ Chinese AI Firms Hit Claude with Distillation Attacks, Anthropic Warns https://www.infosecurity-magazine.com/news/chinese-ai-claude-distillation/ Anthropic accused DeepSeek, Moonshot and MiniMax of illicitly using Claude to steal some of the AI model’s capabilities Tue, 24 Feb 2026 11:30:00 GMT https://www.infosecurity-magazine.com/news/chinese-ai-claude-distillation/ AI-powered Cyber-Attacks Up Significantly in the Last Year, Warns CrowdStrike https://www.infosecurity-magazine.com/news/ai-powered-cyberattacks-up/ CrowdStrike Global Threat Report warns how adversaries are leveraging AI to make campaigns more efficient and more effective Tue, 24 Feb 2026 10:00:00 GMT https://www.infosecurity-magazine.com/news/ai-powered-cyberattacks-up/ Shai-Hulud-Like Worm Targets Developers via npm and AI Tools https://www.infosecurity-magazine.com/news/shai-hulud-like-worm-devs-npm-ai/ Supply chain worm mimicking Shai-Hulud malware spread via malicious npm packages, targeting AI tools has been identified by security researchers Mon, 23 Feb 2026 16:00:00 GMT https://www.infosecurity-magazine.com/news/shai-hulud-like-worm-devs-npm-ai/ Fraud Investigation Reveals Sophisticated Python Malware https://www.infosecurity-magazine.com/news/fraud-investigation-python-malware/ Sophisticated Python malware uncovered in fraud probe shows obfuscation, disposable infrastructure Mon, 23 Feb 2026 15:30:00 GMT https://www.infosecurity-magazine.com/news/fraud-investigation-python-malware/ Russian Cyber Threat Actor Uses GenAI to Compromise Fortinet Firewalls https://www.infosecurity-magazine.com/news/russian-threat-actor-genai/ A low-skilled Russian-speaking attacker has used GenAI tools to help deploy a successful attack workflow targeting FortiGate instances Mon, 23 Feb 2026 12:30:00 GMT https://www.infosecurity-magazine.com/news/russian-threat-actor-genai/ Leading Semiconductor Supplier Advantest Hit by Ransomware Attack https://www.infosecurity-magazine.com/news/advantest-ransomware-attack/ Advantest, a Japanese specialist in testing computer chips for major semiconductor manufacturers, has deployed incident response protocols following a cybersecurity incident Mon, 23 Feb 2026 11:30:00 GMT https://www.infosecurity-magazine.com/news/advantest-ransomware-attack/ Jackpotting Surge Costs Banks Over $20m, Warns FBI https://www.infosecurity-magazine.com/news/jackpotting-surge-costs-banks-20m/ A new FBI Flash alert claims $20m was lost to ATM jackpotting attacks in 2025 alone Mon, 23 Feb 2026 10:30:00 GMT https://www.infosecurity-magazine.com/news/jackpotting-surge-costs-banks-20m/ University of Mississippi Medical Center Still Offline After Ransomware Attack https://www.infosecurity-magazine.com/news/university-mississippi-medical/ University of Mississippi Medical Center is still scrambling to respond to a ransomware attack last Thursday Mon, 23 Feb 2026 08:30:00 GMT https://www.infosecurity-magazine.com/news/university-mississippi-medical/ Dramatic Escalation in Frequency and Power of DDoS Attacks https://www.infosecurity-magazine.com/news/ddos-escalation-frequency-power/ DDoS attack frequency has risen to ‘alarming levels,’ warns Radware report Fri, 20 Feb 2026 12:30:00 GMT https://www.infosecurity-magazine.com/news/ddos-escalation-frequency-power/ Android Malware Hijacks Google Gemini to Stay Hidden https://www.infosecurity-magazine.com/news/android-malware-hijacks-google/ A new Android malware implant using Google Gemini to perform persistence tasks was discovered on VirusTotal and analyzed by ESET Fri, 20 Feb 2026 11:35:00 GMT https://www.infosecurity-magazine.com/news/android-malware-hijacks-google/ Remcos RAT Expands Real-Time Surveillance Capabilities https://www.infosecurity-magazine.com/news/remcos-rat-expands-real-time/ New Remcos RAT variant enhances real-time surveillance and evasion techniques to compromise Windows Thu, 19 Feb 2026 16:30:00 GMT https://www.infosecurity-magazine.com/news/remcos-rat-expands-real-time/ Industrial-Scale Fake Coretax Apps Drive $2m Fraud in Indonesia https://www.infosecurity-magazine.com/news/fake-coretax-apps-fraud-indonesia/ Fraud campaign exploiting Indonesia’s Coretax resulted in $1.5m to $2m in losses via malicious apps Thu, 19 Feb 2026 15:30:00 GMT https://www.infosecurity-magazine.com/news/fake-coretax-apps-fraud-indonesia/ Industrial Control System Vulnerabilities Hit Record Highs https://www.infosecurity-magazine.com/news/industrial-control-system-vulns/ Forescout paper reveals ICS advisories hit a record 508 in 2025 Thu, 19 Feb 2026 13:00:00 GMT https://www.infosecurity-magazine.com/news/industrial-control-system-vulns/ Starkiller: New ‘Commercial-Grade’ Phishing Kit Bypasses MFA https://www.infosecurity-magazine.com/news/starkiller-phishing-kit-bypasses/ A new cybercriminal toolkit uses proxies to mimic popular online services and represents a “significant escalation in phishing infrastructure,” warn researchers at Abnormal Thu, 19 Feb 2026 12:00:00 GMT https://www.infosecurity-magazine.com/news/starkiller-phishing-kit-bypasses/ Flaws in Popular Software Development App Extensions Allow Data Exfiltration https://www.infosecurity-magazine.com/news/vulnerabilities-vs-code-cursor/ Four serious new vulnerabilities affect Microsoft Visual Studio Code, Cursor and Windsurf extensions, three of which remain unpatched Thu, 19 Feb 2026 10:45:00 GMT https://www.infosecurity-magazine.com/news/vulnerabilities-vs-code-cursor/ Researchers Reveal Six New OpenClaw Vulnerabilities https://www.infosecurity-magazine.com/news/researchers-six-new-openclaw/ Endor Labs has published details of six new vulnerabilities in popular AI assistant OpenClaw Thu, 19 Feb 2026 10:00:00 GMT https://www.infosecurity-magazine.com/news/researchers-six-new-openclaw/ Cryptojacking Campaign Exploits Driver to Boost Monero Mining https://www.infosecurity-magazine.com/news/cryptojacking-driver-boost-monero/ Cryptojacking campaign used pirated software to deploy a persistent XMRig miner with stealth tactics Wed, 18 Feb 2026 16:00:00 GMT https://www.infosecurity-magazine.com/news/cryptojacking-driver-boost-monero/ AI Assistants Used as Covert Command-and-Control Relays https://www.infosecurity-magazine.com/news/ai-assistants-covert-c2-relays/ AIs like Grok and Microsoft Copilot can be exploited as covert C2 channels for malware communication Wed, 18 Feb 2026 15:00:00 GMT https://www.infosecurity-magazine.com/news/ai-assistants-covert-c2-relays/ Record Number of Ransomware Victims and Groups in 2025 https://www.infosecurity-magazine.com/news/record-number-ransomware-victims/ Searchlight Cyber reports a 30% annual increase in ransomware victim numbers in 2025 Wed, 18 Feb 2026 11:30:00 GMT https://www.infosecurity-magazine.com/news/record-number-ransomware-victims/ Chinese APT Group Exploits Dell Zero-Day for Two Years https://www.infosecurity-magazine.com/news/chinese-apt-exploits-dell-zeroday/ Mandiant reveals campaign featuring exploit of a CVSS 10.0 CVE in Dell RecoverPoint for Virtual Machines Wed, 18 Feb 2026 10:10:00 GMT https://www.infosecurity-magazine.com/news/chinese-apt-exploits-dell-zeroday/ Android 17 Beta Introduces Secure-By-Default Architecture https://www.infosecurity-magazine.com/news/android-17-beta-secure-default/ Android 17 Beta introduces privacy, security updates and a new Canary channel for improved development Tue, 17 Feb 2026 16:00:00 GMT https://www.infosecurity-magazine.com/news/android-17-beta-secure-default/ Apple Expands RCS Encryption and Memory Protections in iOS 26.4 https://www.infosecurity-magazine.com/news/apple-rcs-encryption-memory/ iOS 26.4 Beta adds end-to-end encryption for RCS messaging and enhanced Memory Integrity Enforcement Tue, 17 Feb 2026 15:00:00 GMT https://www.infosecurity-magazine.com/news/apple-rcs-encryption-memory/ Low-Skilled Cybercriminals Use AI to Perform "Vibe Extortion" Attacks https://www.infosecurity-magazine.com/news/cybercriminals-ai-vibe-extortion/ Unit 42 researchers observed a low-skilled threat actor using an LLM to script a professional extortion strategy, complete with deadlines and pressure tactics Tue, 17 Feb 2026 13:45:00 GMT https://www.infosecurity-magazine.com/news/cybercriminals-ai-vibe-extortion/ Over-Privileged AI Drives 4.5 Times Higher Incident Rates https://www.infosecurity-magazine.com/news/overprivileged-ai-45-times-higher/ Teleport study reveals that organizations running over-privileged AI have a 76% incident rate Tue, 17 Feb 2026 13:00:00 GMT https://www.infosecurity-magazine.com/news/overprivileged-ai-45-times-higher/ Significant Rise in Ransomware Attacks Targeting Industrial Operations https://www.infosecurity-magazine.com/news/rise-in-ransomware-targeting/ Dragos annual report warns of a surge in ransomware attacks causing increased operational disruption in industrial environments Tue, 17 Feb 2026 12:50:00 GMT https://www.infosecurity-magazine.com/news/rise-in-ransomware-targeting/ Infostealer Targets OpenClaw to Loot Victim’s Digital Life https://www.infosecurity-magazine.com/news/infostealer-targets-openclaw/ Hudson Rock has warned OpenClaw users that infostealers are targeting their configuration files Tue, 17 Feb 2026 09:35:00 GMT https://www.infosecurity-magazine.com/news/infostealer-targets-openclaw/ Vulnerabilities in Password Managers Allow Hackers to View and Change Passwords https://www.infosecurity-magazine.com/news/vulnerabilities-password-managers/ Security researchers have challenged end-to-end encryption claims from popular commercial password managers Mon, 16 Feb 2026 17:15:00 GMT https://www.infosecurity-magazine.com/news/vulnerabilities-password-managers/ SMEs Wrong to Assume They Won’t Be Hit by Cyber-Attacks, NCSC Boss Warns https://www.infosecurity-magazine.com/news/sme-cyber-attack-threat-ncsc/ NCSC’s Richard Horne has warned that cybercriminals do not care about business size and called for SMEs to act now to secure their organizations Mon, 16 Feb 2026 16:30:00 GMT https://www.infosecurity-magazine.com/news/sme-cyber-attack-threat-ncsc/ OysterLoader Evolves With New C2 Infrastructure and Obfuscation https://www.infosecurity-magazine.com/news/oysterloader-new-c2-infrastructure/ OysterLoader malware evolves into 2026, refining C2 infrastructure, obfuscation & infection stages Mon, 16 Feb 2026 16:15:00 GMT https://www.infosecurity-magazine.com/news/oysterloader-new-c2-infrastructure/ Operation DoppelBrand Weaponizes Trusted Brands For Credential Theft https://www.infosecurity-magazine.com/news/operation-doppelbrand-trusted/ New phishing campaign dubbed Operation DoppelBrand targeted major financial firms like Wells Fargo Mon, 16 Feb 2026 15:45:00 GMT https://www.infosecurity-magazine.com/news/operation-doppelbrand-trusted/ Google Warns of In the Wild Exploit as It Patches New Chrome Zero Day https://www.infosecurity-magazine.com/news/google-patches-new-in-wild-chrome/ A high severity vulnerability in Google Chrome and allows remote attackers to execute code Mon, 16 Feb 2026 11:30:00 GMT https://www.infosecurity-magazine.com/news/google-patches-new-in-wild-chrome/ Crypto Payments to Human Traffickers Surges 85% https://www.infosecurity-magazine.com/news/crypto-payments-human-traffickers/ Chainalysis warns that online fraud is fuelling sophisticated human trafficking operations Mon, 16 Feb 2026 10:30:00 GMT https://www.infosecurity-magazine.com/news/crypto-payments-human-traffickers/ Odido Breach Impacts Millions of Dutch Telco Users https://www.infosecurity-magazine.com/news/odido-breach-millions-dutch-telco/ Dutch telco Odido has revealed a major data breach impacting over six million customers Mon, 16 Feb 2026 09:30:00 GMT https://www.infosecurity-magazine.com/news/odido-breach-millions-dutch-telco/ Munich Security Conference: Cyber Threats Lead G7 Risk Index, Disinformation Ranks Third https://www.infosecurity-magazine.com/news/munich-security-index-cyberattacks/ G7 countries ranked cyber-attacks as the top risk, while BICS members placed cyber threats only as the eighth most pressing risk Fri, 13 Feb 2026 12:30:00 GMT https://www.infosecurity-magazine.com/news/munich-security-index-cyberattacks/ Fake AI Assistants in Google Chrome Web Store Steal Passwords and Spy on Emails https://www.infosecurity-magazine.com/news/fake-ai-assistants-google-chrome/ Hundreds of thousands of users have downloaded malicious AI extensions masquerading as ChatGPT, Gemini, Grok and others, warn cybersecurity researchers at LayerX Fri, 13 Feb 2026 11:25:00 GMT https://www.infosecurity-magazine.com/news/fake-ai-assistants-google-chrome/ World Leaks Ransomware Group Adds Stealthy, Custom Malware ‘RustyRocket’ to Attacks https://www.infosecurity-magazine.com/news/world-leaks-ransomware-rustyrocket/ Accenture Cybersecurity warns over difficult to detect, “sophisticated toolset” being deployed as part of extortion campaigns Thu, 12 Feb 2026 13:30:00 GMT https://www.infosecurity-magazine.com/news/world-leaks-ransomware-rustyrocket/ Nation-State Hackers Embrace Gemini AI for Malicious Campaigns, Google Finds https://www.infosecurity-magazine.com/news/nation-state-hackers-gemini-ai/ Google researchers found that government-backed hackers now use AI throughout the whole attack lifecycle Thu, 12 Feb 2026 12:45:00 GMT https://www.infosecurity-magazine.com/news/nation-state-hackers-gemini-ai/ AI Skills Represent Dangerous New Attack Surface, Says TrendAI https://www.infosecurity-magazine.com/news/ai-skills-dangerous-new-attack/ New TrendAI report warns that most security tools can’t protect against attacks on AI skills artifacts Thu, 12 Feb 2026 10:45:00 GMT https://www.infosecurity-magazine.com/news/ai-skills-dangerous-new-attack/ Time to Exploit Plummets as N-Day Flaws Dominate https://www.infosecurity-magazine.com/news/time-exploit-plummets-nday-flaws/ Flashpoint warns of a dramatic drop in the average time between vulnerability disclosure and exploitation Thu, 12 Feb 2026 09:30:00 GMT https://www.infosecurity-magazine.com/news/time-exploit-plummets-nday-flaws/ North Korean Hackers Use Deepfake Video Calls to Target Crypto Firms https://www.infosecurity-magazine.com/news/north-korea-hackers-deepfake-crypto/ Campaign combines stolen Telegram accounts, fake Zoom calls and ClickFix attacks to deploy infostealer malware Wed, 11 Feb 2026 16:35:00 GMT https://www.infosecurity-magazine.com/news/north-korea-hackers-deepfake-crypto/ US Court Hands Crypto Scammer 20 Years in $73m Case https://www.infosecurity-magazine.com/news/court-hands-crypto-scammer-20-years/ A federal court has sentenced crypto-scammer Daren Li to 20 years in absentia Wed, 11 Feb 2026 12:05:00 GMT https://www.infosecurity-magazine.com/news/court-hands-crypto-scammer-20-years/ FIRST Forecasts Record-Breaking 50,000+ CVEs in 2026 https://www.infosecurity-magazine.com/news/first-forecasts-record-50000-cve/ This year should break all the records in terms of vulnerability disclosed, reaching or even surpassing 50,000 new CVEs disclosed Wed, 11 Feb 2026 11:35:00 GMT https://www.infosecurity-magazine.com/news/first-forecasts-record-50000-cve/ Microsoft Fixes Six Zero Day Vulnerability in February Patch Tuesday https://www.infosecurity-magazine.com/news/microsoft-six-zero-day-feb-2026/ Six actively exploited zero-day bug have been patched by Microsoft Wed, 11 Feb 2026 09:50:00 GMT https://www.infosecurity-magazine.com/news/microsoft-six-zero-day-feb-2026/ Phorpiex Phishing Delivers Low-Noise Global Group Ransomware https://www.infosecurity-magazine.com/news/phorpiex-phishing-global-group/ High-volume phishing campaign delivers Phorpiex malware via malicious Windows Shortcut files Tue, 10 Feb 2026 16:00:00 GMT https://www.infosecurity-magazine.com/news/phorpiex-phishing-global-group/ “Digital Parasite” Warning as Attackers Favor Stealth for Extortion https://www.infosecurity-magazine.com/news/digital-parasite-attackers-stealth/ Picus Security warns of the increasingly sophisticated ways malicious activity is staying hidden Tue, 10 Feb 2026 14:00:00 GMT https://www.infosecurity-magazine.com/news/digital-parasite-attackers-stealth/ New Mobile Spyware ZeroDayRAT Targets Android and iOS https://www.infosecurity-magazine.com/news/zerodayrat-mobile-spyware-android/ ZeroDayRAT is a new mobile spyware targeting Android and iOS, offering attackers persistent access Tue, 10 Feb 2026 14:00:00 GMT https://www.infosecurity-magazine.com/news/zerodayrat-mobile-spyware-android/ Singapore Takes Down Chinese Hackers Targeting Telco Networks https://www.infosecurity-magazine.com/news/singapore-takes-down-china-hackers/ Operation Cyber Guardian was Singapore’s largest and longest running anti-cyber threat law enforcement operation Tue, 10 Feb 2026 12:30:00 GMT https://www.infosecurity-magazine.com/news/singapore-takes-down-china-hackers/ NCSC Issues Warning Over “Severe” Cyber-Attacks Targeting Critical National Infrastructure https://www.infosecurity-magazine.com/news/ncsc-warning-severe-cyberattacks/ NCSC call firms to ‘act now’ following disruptive malware attacks targeting Polish energy providers Tue, 10 Feb 2026 11:50:00 GMT https://www.infosecurity-magazine.com/news/ncsc-warning-severe-cyberattacks/ European Governments Breached in Zero-Day Attacks Targeting Ivanti https://www.infosecurity-magazine.com/news/european-governments-zeroday/ The European Commission and government agencies in Finland and the Netherlands have suffered potentially related breaches Tue, 10 Feb 2026 09:45:00 GMT https://www.infosecurity-magazine.com/news/european-governments-zeroday/ New Zero-Click Flaw in Claude Desktop Extensions, Anthropic Declines Fix https://www.infosecurity-magazine.com/news/zeroclick-flaw-claude-dxt/ Security researchers from LayerX identified a new flaw in 50 Claude Desktop Extensions that could lead to unauthorized remote code execution Mon, 09 Feb 2026 17:30:00 GMT https://www.infosecurity-magazine.com/news/zeroclick-flaw-claude-dxt/ Two Connecticut Men Charged In Alleged $3m Gambling Fraud Scheme https://www.infosecurity-magazine.com/news/men-charged-gambling-fraud-scheme/ Two Connecticut men face federal charges for a $3m scheme targeting online gambling platforms Mon, 09 Feb 2026 16:00:00 GMT https://www.infosecurity-magazine.com/news/men-charged-gambling-fraud-scheme/ VoidLink Malware Exhibits Multi-Cloud Capabilities and AI Code https://www.infosecurity-magazine.com/news/voidlink-malware-multi-cloud-ai/ VoidLink, a Linux-based C2 framework, facilitates credential theft, data exfiltration across clouds Mon, 09 Feb 2026 15:25:00 GMT https://www.infosecurity-magazine.com/news/voidlink-malware-multi-cloud-ai/ BridgePay Confirms Ransomware Attack, No Card Data Compromised https://www.infosecurity-magazine.com/news/bridgepay-confirms-ransomware/ The services of Florida-based payments platform BridgePay are offline due to a ransomware attack Mon, 09 Feb 2026 11:15:00 GMT https://www.infosecurity-magazine.com/news/bridgepay-confirms-ransomware/ Social Media Platforms Earn Billions from Scam Ads https://www.infosecurity-magazine.com/news/social-media-platforms-billions/ Revolut claims social media sites make £3.8bn annually from scam ads targeting European users Mon, 09 Feb 2026 10:30:00 GMT https://www.infosecurity-magazine.com/news/social-media-platforms-billions/ Researchers Find 40,000+ Exposed OpenClaw Instances https://www.infosecurity-magazine.com/news/researchers-40000-exposed-openclaw/ SecurityScorecard has identified over 40,000 OpenClaw deployments exposed to potential attack Mon, 09 Feb 2026 09:30:00 GMT https://www.infosecurity-magazine.com/news/researchers-40000-exposed-openclaw/ US Agencies Told to Scrap End of Support Edge Devices https://www.infosecurity-magazine.com/news/us-agencies-scrap-end-of-support/ CISA has issued a new directive requiring federal agencies to decommission all end of support edge devices within 12 months to reduce ongoing exploitation risks Mon, 09 Feb 2026 09:00:00 GMT https://www.infosecurity-magazine.com/news/us-agencies-scrap-end-of-support/ Chinese-Made Malware Kit Targets Chinese-Based Routers and Edge Devices https://www.infosecurity-magazine.com/news/china-malware-kit-targets-routers/ DKnife is a Chinese made malware framework that targets Chinese-based users Fri, 06 Feb 2026 17:00:00 GMT https://www.infosecurity-magazine.com/news/china-malware-kit-targets-routers/ Substack Confirms Data Breach, "Limited User Data" Compromised https://www.infosecurity-magazine.com/news/substack-confirms-data-breach/ Substack did not specify the number of users affected by the data breach Fri, 06 Feb 2026 16:22:00 GMT https://www.infosecurity-magazine.com/news/substack-confirms-data-breach/ New Cyber Startup Programme to Debut at Infosecurity Europe 2026 https://www.infosecurity-magazine.com/news/cyber-startup-programme/ Infosecurity Europe 2026 will debut a new Cyber Startup Programme, featuring a dedicated show-floor zone for early-stage cybersecurity companies to showcase innovations, connect with investors and highlight emerging technologies Fri, 06 Feb 2026 08:30:00 GMT https://www.infosecurity-magazine.com/news/cyber-startup-programme/ Malicious Commands in GitHub Codespaces Enable RCE https://www.infosecurity-magazine.com/news/malicious-commands-in-github/ Flaws in GitHub Codespaces allow RCE via crafted repositories or pull requests Thu, 05 Feb 2026 14:30:00 GMT https://www.infosecurity-magazine.com/news/malicious-commands-in-github/ Smartphones Now Involved in Nearly Every Police Investigation https://www.infosecurity-magazine.com/news/smartphones-involved-every-police/ Cellebrite data confirms digital evidence is now central to almost all cases Thu, 05 Feb 2026 13:30:00 GMT https://www.infosecurity-magazine.com/news/smartphones-involved-every-police/ New Hacking Campaign Exploits Microsoft Windows WinRAR Vulnerability https://www.infosecurity-magazine.com/news/hacking-exploits-windows-winrar/ Researchers at Check Point link ‘Amarath-Dragon’ attacks to prolific Chinese cyber-espionage operation Thu, 05 Feb 2026 11:50:00 GMT https://www.infosecurity-magazine.com/news/hacking-exploits-windows-winrar/ AI-Enabled Voice and Virtual Meeting Fraud Surges 1000%+ https://www.infosecurity-magazine.com/news/ai-voice-virtual-meeting-fraud/ Pindrop warns of 1210% increase in AI-powered fraud last year Thu, 05 Feb 2026 10:05:00 GMT https://www.infosecurity-magazine.com/news/ai-voice-virtual-meeting-fraud/ Global SystemBC Botnet Found Active Across 10,000 Infected Systems https://www.infosecurity-magazine.com/news/global-systembc-botnet-10000/ SystemBC malware linked to 10,000 infected IPs, posing risks to sensitive government infrastructure Wed, 04 Feb 2026 16:15:00 GMT https://www.infosecurity-magazine.com/news/global-systembc-botnet-10000/ New Technical Markers Reveal Expanding ShadowSyndicate Cybercriminal Infrastructure https://www.infosecurity-magazine.com/news/shadowsyndicate/ ShadowSyndicate cluster expands with new SSH fingerprints connecting servers to other ransomware ops Wed, 04 Feb 2026 15:00:00 GMT https://www.infosecurity-magazine.com/news/shadowsyndicate/ AI Drives Doubling of Phishing Attacks in a Year https://www.infosecurity-magazine.com/news/ai-double-volume-phishing-attacks/ Cofense claims AI is making phishing emails more personalized and sophisticated Wed, 04 Feb 2026 14:00:00 GMT https://www.infosecurity-magazine.com/news/ai-double-volume-phishing-attacks/ Two Critical Flaws in n8n AI Workflow Automation Platform Allow Complete Takeover https://www.infosecurity-magazine.com/news/two-critical-flaws-in-n8n-ai/ Pillar Security discovered two new critical vulnerabilities in n8n that could lead to supply chain compromise, credential harvesting and complete takeover attacks Wed, 04 Feb 2026 13:00:00 GMT https://www.infosecurity-magazine.com/news/two-critical-flaws-in-n8n-ai/ SolarWinds Web Help Desk Vulnerability Actively Exploited https://www.infosecurity-magazine.com/news/solarwinds-web-help-desk/ CISA has added a critical CVE in SolarWinds Web Help Desk to its KEV Catalog Wed, 04 Feb 2026 10:15:00 GMT https://www.infosecurity-magazine.com/news/solarwinds-web-help-desk/ Hundreds of Malicious Crypto Trading Add-Ons Found in Moltbot/OpenClaw https://www.infosecurity-magazine.com/news/malicious-crypto-trading-skills/ A security researcher found 386 malicious ‘skills’ published on ClawHub, a skill repository for the popular OpenClaw AI assistant project Tue, 03 Feb 2026 16:30:00 GMT https://www.infosecurity-magazine.com/news/malicious-crypto-trading-skills/ SQL Injection Flaw Affects 40,000 WordPress Sites https://www.infosecurity-magazine.com/news/wordpress-sql-injection-flaw-40000/ 40,000 WordPress sites are vulnerable to SQL injection in Quiz and Survey Master plugin Tue, 03 Feb 2026 16:15:00 GMT https://www.infosecurity-magazine.com/news/wordpress-sql-injection-flaw-40000/ DockerDash Exposes AI Supply Chain Weakness In Docker's Ask Gordon https://www.infosecurity-magazine.com/news/dockerdash-weakness-dockers-ask/ DockerDash vulnerability allows RCE and data exfiltration via unverified metadata in Ask Gordon Tue, 03 Feb 2026 15:15:00 GMT https://www.infosecurity-magazine.com/news/dockerdash-weakness-dockers-ask/ UK ICO Launches Investigation into X Over AI Generated Non-Consensual Sexual Imagery https://www.infosecurity-magazine.com/news/ico-investigates-x-over-grok-ai/ UK Data Protection Watchdog has “serious concerns” over data privacy on Elon Musk’s social platform Tue, 03 Feb 2026 14:47:00 GMT https://www.infosecurity-magazine.com/news/ico-investigates-x-over-grok-ai/ Researchers Warn of New “Vect” RaaS Variant https://www.infosecurity-magazine.com/news/researchers-warn-new-vect-raas/ A new ransomware-as-a-service operation dubbed “Vect” features custom malware Tue, 03 Feb 2026 14:00:00 GMT https://www.infosecurity-magazine.com/news/researchers-warn-new-vect-raas/ Cybercrime Unit of Paris Prosecutors Raid Elon Musk’s X Offices in France https://www.infosecurity-magazine.com/news/paris-prosecutors-raid-elon-musk-x/ Elon Musk and X’s former CEO were summoned for voluntary interviews in Paris on April 20, 2026 Tue, 03 Feb 2026 12:45:00 GMT https://www.infosecurity-magazine.com/news/paris-prosecutors-raid-elon-musk-x/ New Password-Stealing Phishing Campaign Targets Corporate Dropbox Credentials https://www.infosecurity-magazine.com/news/password-stealing-phishing-pdf/ Multi-stage attack begins with fake message relating to business requests and evades detection with link hidden in a PDF Tue, 03 Feb 2026 10:55:00 GMT https://www.infosecurity-magazine.com/news/password-stealing-phishing-pdf/ Vibe-Coded Moltbook Exposes User Data, API Keys and More https://www.infosecurity-magazine.com/news/moltbook-exposes-user-data-api/ Wiz Security claims Moltbook misconfiguration allowed full read and write access Tue, 03 Feb 2026 10:00:00 GMT https://www.infosecurity-magazine.com/news/moltbook-exposes-user-data-api/ NSA Publishes New Zero Trust Implementation Guidelines https://www.infosecurity-magazine.com/news/nsa-zero-trust-implementation/ NSA released new guidelines to help organizations achieve target-level Zero Trust maturity Mon, 02 Feb 2026 16:05:00 GMT https://www.infosecurity-magazine.com/news/nsa-zero-trust-implementation/ Notepad++ Update Hijacking Linked to Hosting Provider Compromise https://www.infosecurity-magazine.com/news/notepad-update-hijacked/ A supply chain attack on Notepad++ update process was linked to compromised hosting infrastructure Mon, 02 Feb 2026 15:15:00 GMT https://www.infosecurity-magazine.com/news/notepad-update-hijacked/ Fancy Bear Exploits Microsoft Office Flaw in Ukraine, EU Cyber-Attacks https://www.infosecurity-magazine.com/news/fancy-bear-exploits-office-flaw/ Russia-linked hacking group Fancy Bear is exploiting a brand-new vulnerability in Microsoft Office, CERT-UA says Mon, 02 Feb 2026 12:45:00 GMT https://www.infosecurity-magazine.com/news/fancy-bear-exploits-office-flaw/ Android RAT Uses Hugging Face to Host Malware https://www.infosecurity-magazine.com/news/android-rat-hugging-face-host/ Bitdefender has discovered a new Android malware campaign that uses Hugging Face Mon, 02 Feb 2026 10:30:00 GMT https://www.infosecurity-magazine.com/news/android-rat-hugging-face-host/ Former Google Engineer Found Guilty of Stealing AI Secrets https://www.infosecurity-magazine.com/news/former-google-engineer-guilty/ Linwei Ding, a former Google engineer, has been found guilty of stealing trade secrets for China Mon, 02 Feb 2026 09:20:00 GMT https://www.infosecurity-magazine.com/news/former-google-engineer-guilty/ Labyrinth Chollima Evolves into Three North Korean Hacking Groups https://www.infosecurity-magazine.com/news/labyrinth-chollima-dprk-three/ CrowdStrike assessed that two new threat actor groups have spun off from North Korean Labyrinth Chollima hackers Fri, 30 Jan 2026 15:40:00 GMT https://www.infosecurity-magazine.com/news/labyrinth-chollima-dprk-three/ New AI-Developed Malware Campaign Targets Iranian Protests https://www.infosecurity-magazine.com/news/ai-malware-redkitten-iranian/ The RedKitten campaign distributes lures designed to target people seeking information about missing persons or political dissidents in Iran Fri, 30 Jan 2026 11:55:00 GMT https://www.infosecurity-magazine.com/news/ai-malware-redkitten-iranian/ National Crime Agency and NatWest Issue Joint Warning Over Invoice Fraud Threat https://www.infosecurity-magazine.com/news/nca-natwest-warning-over-invoice/ Cyber fraudsters targeting corporate finance departments costs businesses millions a year Fri, 30 Jan 2026 11:10:00 GMT https://www.infosecurity-magazine.com/news/nca-natwest-warning-over-invoice/ Google Disrupts Extensive Residential Proxy Networks https://www.infosecurity-magazine.com/news/google-disrupts-proxy-networks/ Google has taken coordinated action against the massive IPIDEA residential proxy network, enhancing customer protections and disrupting cybercrime operations Thu, 29 Jan 2026 17:15:00 GMT https://www.infosecurity-magazine.com/news/google-disrupts-proxy-networks/ Operation Winter SHIELD: FBI Issues Call to Arms for Organizations to Improve Cybersecurity https://www.infosecurity-magazine.com/news/fbi-operation-winter-shield-cyber/ The FBI outlines ten actions which organizations can take to defend networks against cybercriminal and nation-state threats Thu, 29 Jan 2026 16:50:00 GMT https://www.infosecurity-magazine.com/news/fbi-operation-winter-shield-cyber/ France Fines National Employment Agency €5m Over 2024 Data Breach https://www.infosecurity-magazine.com/news/france-finesemployment-agency-5m/ The French data protection regulator said that France Travail’s response to a 2024 data breach violated GDPR Thu, 29 Jan 2026 16:30:00 GMT https://www.infosecurity-magazine.com/news/france-finesemployment-agency-5m/ New CISA Guidance Targets Insider Threat Risks https://www.infosecurity-magazine.com/news/cisa-targets-insider-threat-risks/ CISA urges action against insider threats with publication of a new infographic offering strategies to manage risks Thu, 29 Jan 2026 16:00:00 GMT https://www.infosecurity-magazine.com/news/cisa-targets-insider-threat-risks/ FBI Takes Down RAMP Ransomware Forum https://www.infosecurity-magazine.com/news/fbi-takes-down-ramp-ransomware/ The dark web forum administrator confirmed the takedown and said they had “no plans to rebuild” Thu, 29 Jan 2026 13:05:00 GMT https://www.infosecurity-magazine.com/news/fbi-takes-down-ramp-ransomware/ Ransomware Victim Numbers Rise, Despite Drop in Active Extortion Groups https://www.infosecurity-magazine.com/news/ransomware-numbers-rise-despite/ Ransomware victims surged in Q4 2025 despite fewer active extortion groups, with data leaks rising 50%, ReliaQuest researchers report Thu, 29 Jan 2026 13:01:00 GMT https://www.infosecurity-magazine.com/news/ransomware-numbers-rise-despite/ US Data Breaches Hit Record High but Victim Numbers Decline https://www.infosecurity-magazine.com/news/us-data-breaches-record-high/ Non-profit ITRC says the number of data breaches increased 5% annually to reach a record total in 2025 Thu, 29 Jan 2026 12:45:00 GMT https://www.infosecurity-magazine.com/news/us-data-breaches-record-high/ Number of Cybersecurity Pros Surges 194% in Four Years https://www.infosecurity-magazine.com/news/number-cybersecurity-pros-surges/ Cybersecurity is now the fifth fastest-growing occupation in the UK, says Socura Thu, 29 Jan 2026 09:45:00 GMT https://www.infosecurity-magazine.com/news/number-cybersecurity-pros-surges/ Cybersecurity Teams Embrace AI, Just Not at the Scale Marketing Suggests https://www.infosecurity-magazine.com/news/cybersecurity-teams-embrace-ai/ Despite the seemingly widespread adoption of AI for security operations, security leaders primarily use it for “relatively basic use cases,” said a Sumo Logic study Thu, 29 Jan 2026 09:00:00 GMT https://www.infosecurity-magazine.com/news/cybersecurity-teams-embrace-ai/ Autonomous System Uncovers Long-Standing OpenSSL Flaws https://www.infosecurity-magazine.com/news/12-openssl-flaws/ A recent update has fixed 12 vulnerabilities in OpenSSL, some existing in the codebase for years Wed, 28 Jan 2026 16:45:00 GMT https://www.infosecurity-magazine.com/news/12-openssl-flaws/ Critical and High Severity n8n Sandbox Flaws Allow RCE https://www.infosecurity-magazine.com/news/n8n-sandbox-flaws-allow-rce/ Two critical security flaws in n8n have exposed sandboxing vulnerabilities, enabling remote code execution for attackers Wed, 28 Jan 2026 16:00:00 GMT https://www.infosecurity-magazine.com/news/n8n-sandbox-flaws-allow-rce/ Emojis in PureRAT’s Code Point to AI-Generated Malware Campaign https://www.infosecurity-magazine.com/news/emojis-in-purerats-code/ Researchers discover that PureRAT’s code now contains emojis – indicating it has been written by AI based-on comments ripped from social media. Wed, 28 Jan 2026 12:10:00 GMT https://www.infosecurity-magazine.com/news/emojis-in-purerats-code/ AI Security Threats Loom as Enterprise Usage Jumps 91% https://www.infosecurity-magazine.com/news/ai-security-threats-loom-zscaler/ Zscaler analysts found critical vulnerabilities in 100% of enterprise AI systems, with 90% compromised in under 90 minutes Wed, 28 Jan 2026 11:45:00 GMT https://www.infosecurity-magazine.com/news/ai-security-threats-loom-zscaler/ Researchers Uncover 454,000+ Malicious Open Source Packages https://www.infosecurity-magazine.com/news/454000-malicious-open-source/ Sonatype warns that open source threats became industrialized with a surge in malicious packages in 2025 Wed, 28 Jan 2026 11:00:00 GMT https://www.infosecurity-magazine.com/news/454000-malicious-open-source/ Chinese Money Launderers Drive Global Ecosystem Worth $82bn https://www.infosecurity-magazine.com/news/chinese-money-launderers-global/ Chainalysis claims Chinese money launderers now account for 20% of global activity Wed, 28 Jan 2026 10:30:00 GMT https://www.infosecurity-magazine.com/news/chinese-money-launderers-global/ Pyodide Sandbox Escape Enables Remote Code Execution in Grist-Core https://www.infosecurity-magazine.com/news/pyodide-sandbox-escape-rce-grist/ Critical sandbox escape vulnerability in Grist-Core enables remote code execution via a malicious formula Tue, 27 Jan 2026 16:45:00 GMT https://www.infosecurity-magazine.com/news/pyodide-sandbox-escape-rce-grist/ PeckBirdy Framework Tied to China-Aligned Cyber Campaigns https://www.infosecurity-magazine.com/news/peckbirdy-framework-tied-china/ PeckBirdy command-and-control framework targeting gambling, government sectors in Asia since 2023 has been linked to China-aligned APTs Tue, 27 Jan 2026 16:00:00 GMT https://www.infosecurity-magazine.com/news/peckbirdy-framework-tied-china/ Over 80% of Ethical Hackers Now Use AI https://www.infosecurity-magazine.com/news/over-80-of-ethical-hackers-now-use/ Bugcrowd study reveals 82% of security researchers now use AI, a big increase from 2023 figures Tue, 27 Jan 2026 14:00:00 GMT https://www.infosecurity-magazine.com/news/over-80-of-ethical-hackers-now-use/ Microsoft Releases Patch for Office Zero Day Amid Evidence of Exploitation https://www.infosecurity-magazine.com/news/microsoft-patch-office-zero-day/ Microsoft urged customers running Microsoft Office 2016 and 2019 to apply the patch to be protected Tue, 27 Jan 2026 10:45:00 GMT https://www.infosecurity-magazine.com/news/microsoft-patch-office-zero-day/ World Leaks Ransomware Group Claims 1.4TB Nike Data Breach https://www.infosecurity-magazine.com/news/worldleaks-ransomware-14tb-nike/ Nike is investigating after the World Leaks ransomware group posted a 1.4TB data dump Tue, 27 Jan 2026 09:45:00 GMT https://www.infosecurity-magazine.com/news/worldleaks-ransomware-14tb-nike/ CISA Releases List of Post-Quantum Cryptography Product Categories https://www.infosecurity-magazine.com/news/cisa-post-quantum-cryptography/ CISA released initial list of PQC-capable hardware and software to guide companies amid quantum threats Mon, 26 Jan 2026 16:15:00 GMT https://www.infosecurity-magazine.com/news/cisa-post-quantum-cryptography/