Latest Internet & Cybersecurity News
Tenable Predicts AI Will Supercharge Cyber Attacks in 2026
Tenable forecasts that AI will increase the speed and volume of cyber attacks, making them cheaper while emphasizing proactive prevention over reactive measures. Machine identities are expected to become the top cloud breach vector due to excessive privileges. Custom AI security tools and automated remediation will rise to counter these threats.
Phishing Campaign Abuses Google Cloud for Fake Emails
Check Point researchers uncovered a phishing operation using Google Cloud Application Integration to impersonate legitimate Google messages. The campaign targets users with deceptive emails to steal credentials. This highlights ongoing abuse of cloud services for phishing.
IBM Patches Critical API Connect Vulnerability CVE-2025-13915
IBM disclosed a critical flaw (CVSS 9.8) in API Connect allowing remote authentication bypass and access. The vulnerability has been addressed in recent updates. Organizations are urged to patch immediately.
Trust Wallet Chrome Extension Hit by Second Shai-Hulud Attack
Trust Wallet reports a likely supply-chain compromise of its Chrome extension, resulting in $8.5 million crypto theft. This marks the second Shai-Hulud incident targeting the wallet. Users are advised to update and monitor accounts.
RondoDox Botnet Exploits React2Shell Flaw in Next.js Servers
CloudSEK warns of the RondoDox botnet using CVE-2025-55182 to infect vulnerable Next.js servers with malware and cryptominers. Server owners should apply patches urgently. The botnet spreads rapidly across cloud environments.
European Space Agency Confirms Data Breach
ESA disclosed a breach after a hacker offered stolen data from external science servers for sale. The incident compromises sensitive research information. Investigations are ongoing to assess full impact.
Singapore Warns of Critical SmarterMail RCE Flaw CVE-2025-52691
CSA alerts on a SmarterMail vulnerability enabling unauthenticated remote code execution via file upload. Immediate updates are recommended to prevent exploitation. This poses high risk to email servers.
Sedgwick Confirms Cyber Incident on Federal Contractor Subsidiary
Claims administration firm Sedgwick reported a cyber incident disrupting its major federal contractor operations. The breach affects sensitive data handling. Recovery efforts are underway as of January 2, 2026.
Two US Cybersecurity Pros Plead Guilty in BlackCat Ransomware Attacks
Ryan Goldberg and Kevin Martin admitted to being BlackCat/Alphv ransomware affiliates. They face charges for deploying ransomware against US victims. The guilty pleas highlight internal threats from insiders.
Ransomware Hits Romania’s Oltenia Energy Complex
A ransomware attack on December 26 disrupted IT systems at Romania's largest coal power producer. Operations remain impacted, raising energy sector concerns. This underscores persistent ransomware risks to infrastructure.
Hacker Leaks 2.3M WIRED Subscriber Records from Condé Nast
Hacker 'Lovely' claims breach of Condé Nast, leaking WIRED data and threatening 40M more records from other brands. Personal details are exposed. Victims should monitor for identity theft.
China-Linked Mustang Panda Deploys ToneShell Backdoor
APT Mustang Panda used a signed kernel rootkit to load shellcode and deploy ToneShell in attacks. Targets include various organizations. This reflects state-sponsored espionage trends.