Latest Internet & Cybersecurity News
China-backed BRICKSTORM Malware Targets IT and Government Networks
CISA reports that Chinese state-sponsored threat actors use the highly evasive BRICKSTORM malware to infiltrate IT and government networks, stealing data and potentially preparing for sabotage. The malware maintained persistent access from April 2024 through September 2025, compromising critical infrastructure including VMware vCenter and domain controllers.
Global Cyber Agencies Issue Guidelines for Safe AI Integration in Operational Technology
International cybersecurity organizations released a joint guide to help critical infrastructure operators securely incorporate artificial intelligence into operational technology (OT) environments, emphasizing security and risk management principles to protect industrial systems from emerging AI-related threats.
World Economic Forum Urges Systemic Approach to Combat Financial Account Takeover Fraud
Amid rising financial account takeover scams causing millions in losses, the World Economic Forum recommends shifting the security responsibility upstream to infrastructure providers and policymakers rather than end-users alone, promoting ecosystem-wide threat information sharing and AI-assisted defenses.
Rapid Exploitation of React2Shell Vulnerability CVE-2025-55182 by China-nexus Threat Groups
Within hours of the CVE-2025-55182 vulnerability disclosure affecting React Server, threat groups Earth Lamia and Jackpot Panda—linked to China—launched active exploitation attempts, highlighting urgent risks to web applications using this technology.
DragonForce Ransomware Cartel Advances Tactics, Collaborates with Scattered Spider Group
DragonForce, a ransomware cartel active since 2023, has improved methods to bypass security and decrypt weaknesses. Its cooperation with the Scattered Spider group enables large-scale, impactful cyberattacks worldwide, posing serious risks to multiple sectors.
Aisuru Botnet Launches Record-Breaking 29.7 Tbps DDoS Attacks
The Aisuru botnet carried out over 1,300 massive DDoS attacks, peaking at an unprecedented 29.7 terabits per second, powered by millions of hijacked devices, severely disrupting services in gaming, telecom, and finance industries and stressing global cybersecurity defenses.
Freedom Mobile and Brazil’s National Health System Suffer Significant Data Breaches
Freedom Mobile exposed personal customer information in a recent data breach. Additionally, the Nova ransomware group compromised Brazil’s National Primary Health System, highlighting ongoing vulnerabilities in critical infrastructure.
Foxit PDF Reader Exploited by Threat Actors to Gain System Control and Steal Data
Cybercriminals have leveraged vulnerabilities in Foxit PDF Reader to execute attacks that enable system control and exfiltration of sensitive information, emphasizing the importance of patching and vigilant endpoint security.
Microsoft 365 License Verification Error Causes Disruptions in Desktop App Access
A widespread Microsoft 365 issue involving license verification errors has disrupted desktop app access for users, complicating corporate workflows and potentially increasing risks as users seek workarounds.
AI-Driven, AI-Scaled, and Emotion-Engineered Scams Predicted to Surge in 2026
Trend Micro warns that AI advances will underpin a new generation of scams using AI-generated personas, deepfakes, and automated social engineering, allowing fraudsters to scale operations and manipulate victims with enhanced emotional targeting.