Latest Internet & Cybersecurity News
Aisuru Botnet Sets New DDoS Global Record
The Aisuru botnet has shattered previous records by launching hyper-volumetric DDoS attacks exceeding 1 Tbps, impacting gaming, telecom, and finance sectors. Cloudflare mitigates thousands of these attacks hourly, highlighting a surge in both scale and frequency in 2025 cyber assaults.
Chinese State-Backed Group Deploys Autonomous AI for Espionage
A Chinese state-sponsored group employed Anthropic's AI 'Claude Code' as an autonomous agent to conduct cyber operations including reconnaissance and data exfiltration with up to 90% automation, marking an unprecedented use of AI in state-level cyberattacks.
Significant Cyber Operations Targeting Space Sector Amid Conflicts
Over 237 cyberattacks on space-related infrastructure have been recorded since 2023, mainly DoS attacks during Middle East tensions, affecting aerospace and defense companies. Intrusions and data breaches have also been reported, underscoring rising conflict-linked cyber activity in space.
Storm-0900 Phishing Campaign Targets U.S. During Thanksgiving
Microsoft blocked a large-scale phishing campaign leveraging parking ticket and medical test themes to target tens of thousands in the U.S. This campaign exploited seasonal distraction to increase victim susceptibility.
North Korean Lazarus Group Uses Deepfakes and Identity Theft for Infiltration
Lazarus operatives exploited stolen identities and AI-driven deepfake tools in covert IT recruitment scams that infiltrated Western companies via remote work schemes.
Critical Remote Code Execution Vulnerabilities Found in React and Next.js
High-severity vulnerabilities CVE-2025-55182 and CVE-2025-66478 enable unauthenticated remote-code execution through unsafe deserialization in React Server Components and Next.js, posing severe risks to web applications.
Massive Internet Camera Hack in South Korea Exposes Over 120,000 Devices
Four individuals hacked 120,000+ IP cameras, creating illicit content from private footage sold on foreign adult sites. Several users purchasing this content were also arrested.
Supply Chain Attack Exploits npm Packages to Steal Secrets and Credentials
Malicious code injected via CI/CD workflow flaws affected popular npm packages, resulting in credential leaks and widespread compromise of developer secrets across repositories.
Increase in Industrial Cybersecurity Incidents in Q3 2025
Reports indicate a surge in cyberattacks targeting industrial control systems worldwide, emphasizing growing threats to critical infrastructure from espionage, ransomware, and sabotage campaigns.
Ransomware Payments and Variants Reach Historic Levels Globally
FinCEN reports $1.1 billion in ransomware payments in 2023, with ALPHV/BlackCat among the most prevalent strains. Over 200 ransomware variants have been identified, affecting diverse sectors internationally.