Latest Internet & Cybersecurity News
Keeper Security 2025 Retrospective Highlights Momentum in Zero-Trust Innovation
Keeper Security reported significant growth in 2025, strengthening its Privileged Access Management amid rising credential attacks, AI adoption, and hybrid work demands. Key advancements include KeeperAI for real-time threat detection in sessions, expanded endpoint protection, and modernized secure connections.
CTO Craig Lurey emphasized the platform's scalability and security focus.
Amazon Links Years-Long Cyber Campaign to Russia's GRU Sandworm Group
Amazon's threat team traced a multi-year operation by Sandworm (aka Seashell Blizzard), linked to Russia's GRU, exploiting misconfigured edge devices like routers and VPNs. Attackers harvested credentials, moved laterally without advanced malware, and targeted systems from 2021-2024 including WatchGuard flaws and Veeam vuln.
Amazon notified affected customers and disrupted operations; orgs urged to check edge devices for unauthorized tools.
AI-Driven Cyberattacks Dominate 2025 Trends Heading into 2026
2025 featured massive scale of generative AI weaponized for phishing, automation, and attacks, per cybersecurity analysis. Lessons stress ignoring these trends risks escalation in 2026.
Europol-Led Operation in Africa Nets 574 Cybercrime Arrests, $3M Recovered
INTERPOL's Operation Sentinel across 19 African countries targeted BEC, extortion, ransomware, arresting 574 and recovering $3M with $21M losses prevented. Highlights include Senegal stopping $7.9M BEC fraud and Ghana decrypting ransomware, seizing fraud networks mimicking brands.
Over 6,000 malicious links taken down and six ransomware variants decrypted.
UK NHS Supplier DXS International Confirms Cyber-Attack with Minimal Impact
DXS International, NHS tech supplier, confirmed a cyber-attack on December 14 affecting office servers but with minimal service disruption. Front-line clinical services remain fully operational.
South Korean Firm Faces Securities Suit Over Massive 33M-User Data Breach
A South Korean company disclosed a November 18 data breach exposing 33 million customers' info, dubbed the largest in history, triggering share price drops and a class action suit. Investors claim misleading security statements during August 6-December 16, 2025 period.
F5 Inc. Hit with Lawsuit After Nation-State Breach of Engineering Systems
F5 revealed an August 2025 nation-state breach of BIG-IP product dev systems, causing 14% share drop and a securities class action alleging false security claims. Suit covers October 2024-October 2025 investors, claiming inadequate data protection.
Romanian Waters Ransomware Attack Compromises 1,000 Systems
Ransomware hit Romania's water management admin on December 20, affecting ~1,000 systems across 10/11 river basin orgs, taking website offline. Oversees critical dams, waterways, drinking water; info via alternative channels.
WatchGuard Patches Firebox Zero-Day Actively Exploited in the Wild
WatchGuard released patches for a Firebox zero-day vulnerability exploited by attackers.
Massive Android Botnet Kimwolf Infects 1.8M+ Devices for DDoS Attacks
The Kimwolf Android botnet has compromised over 1.8 million devices worldwide, launching DDoS strikes. Reported December 21, highlighting mobile malware surge.
New York Home Healthcare Provider Notifies of Email Account Breach
Excellent Home Care Services identified an email breach, mailing notifications December 17 with identity monitoring offered.
Healthcare Cyberattacks in 2025 Affect 40M Despite Fewer Incidents
2025 healthcare attacks impacted over 40 million, with hospitals prime targets though victim count dipped.