Latest Internet & Cybersecurity News
Two U.S. Cybersecurity Professionals Plead Guilty in BlackCat/Alphv Ransomware Case
Ryan Goldberg and Kevin Martin pleaded guilty to charges related to their roles in BlackCat/Alphv ransomware attacks. The guilty pleas highlight accountability for insiders aiding cybercrime. This case underscores ongoing efforts to prosecute ransomware affiliates.
Hackers Claim Resecurity Breach, Firm Reveals Honeypot Defense
Scattered Lapsus$ Hunters claimed to hack cybersecurity firm Resecurity, stealing internal data and client lists. Resecurity countered that it was a honeypot operation, monitoring the attackers and sharing intel with law enforcement. The incident exposed attacker tactics using proxies from Egypt and Mullvad VPN.
Trump Suggests U.S. Cyberattacks Disrupted Power in Venezuela
President Trump indicated U.S. involvement in cyberattacks that cut power in Caracas during strikes leading to Maduro's capture. U.S. Cyber Command reportedly set the stage for the operation. This marks a rare public acknowledgment of offensive U.S. cyber capabilities.
Covenant Health Ransomware Attack Exposes 478,000 Individuals' Data
Qilin ransomware group hit Covenant Health in May 2025, compromising data of over 478,000 people. The Massachusetts-based healthcare provider confirmed the breach. This incident reflects persistent threats to healthcare infrastructure.
Aflac Data Breach Impacts 22.65 Million People
Insurance giant Aflac disclosed a June 2025 breach stealing personal data including SSNs, addresses, and health info from 22.65 million individuals. A sophisticated cybercrime group was blamed after suspicious network activity. The scale highlights massive breach risks.
ESA Confirms Data Breach After Hacker Offers Stolen Data
European Space Agency disclosed a breach compromising external science servers. A hacker offered the stolen data for sale. This exposes vulnerabilities in space agency's infrastructure.
Singapore Warns of Critical SmarterMail Vulnerability CVE-2025-52691
Cyber Security Agency of Singapore alerted on a flaw allowing unauthenticated RCE via file upload. Organizations urged to patch immediately. The vulnerability poses high risks to email servers.
Lithuanian Arrested for Spreading KMSAuto Malware Infecting 2.8M Systems
A 29-year-old Lithuanian national was arrested for distributing KMSAuto malware that stole clipboard data across 2.8 million Windows and Office systems. The malware spread widely via illicit activators. Law enforcement action disrupts malware operations.
Chrysler Hit by Everest Ransomware, Over 1TB Data Exfiltrated
U.S. automaker Chrysler suffered a breach with Everest ransomware claiming 1TB of data stolen, including 105GB Salesforce info. The attack targeted automotive sector supply chains. Recovery efforts ongoing amid data exposure risks.
ISACA Authorized as CMMC Assessor and Instructor Certification Body
ISACA named the new CMMC Assessor and Instructor Certification Organization for the Defense Industrial Base. This elevates standards for cybersecurity in supply chains impacting global security. The program covers hundreds of thousands of organizations.
Predictions: 2026 to See Surge in SaaS Breaches
Experts forecast 2026 as the year of SaaS breaches, with attackers already inside environments undetected. Focus shifts from perimeter to SaaS security gaps. Businesses urged to enhance monitoring.
LockBit Ransomware Takedown Highlights Global Collaboration
2024 Operation Cronos led by Gavin Webb dismantled LockBit via cross-border efforts involving NCA, FBI, and private firms like Microsoft. Infrastructure seized, affiliates unmasked. Investments in cyber resilience rise amid $10.5T annual costs.