Latest Internet & Cybersecurity News
Kyowon Group Ransomware Attack Impacts Millions in South Korea
Kyowon Group confirmed a ransomware attack on January 14, 2026, after detecting abnormal activity on January 10, affecting 600 of 800 servers and exfiltrating data from up to 5.54 million unique users across education and other services. The breach caused widespread service outages and is under investigation by authorities.
Nissan Hit by Everest Ransomware, 900GB Data Stolen
Japanese automaker Nissan suffered an Everest ransomware attack announced on January 10, with 900GB of sensitive data including internal records and dealer info stolen. The breach raises concerns for global operations, including Australia.
Recovery efforts are ongoing amid threats of data release.
AI Supercharges Cyber Arms Race in 2026 Trends
94% of leaders see AI as the top cyber risk driver, with 87% noting AI vulnerabilities as fastest-growing threat; 64% of organizations assess AI tool security, up from 2025. Attackers use AI for phishing and exploits, while defenders automate responses.
Collaboration is key amid geopolitical fragmentation.
Chinese Hackers Breach North American Critical Infrastructure
Government-backed group UAT-8837 exploited Sitecore zero-day (CVE-2025-53690) and stolen credentials to access multiple organizations using tools like Earthworm and Sharphound. Post-compromise operations targeted critical sectors over the past year.
Cisco Talos reported the hands-on-keyboard activities.
Five Malicious Chrome Extensions Target Enterprise Platforms
Socket discovered extensions stealing auth data from Workday, NetSuite via cookie exfiltration, DOM manipulation, and session hijacking. They block security controls for full account takeover; Google informed for removal.
Investigation ongoing into the campaign's scope.
Lumen Disrupts Kimwolf DDoS Botnet Sinkholing 550+ Servers
Internet firm Lumen sinkholed over 550 C&C servers, cutting off malware on 250,000 devices; botnet partially recovered but at reduced size. Kimwolf launches massive DDoS using residential devices for stealth.
Action mitigates scanning and exploitation activity.
BreachForums Hacking Forum User Database Leaked
Over 320,000 accounts from MyBB user table exposed via 7Zip archive by ShinyHunters-named site, including private PGP key. Latest incarnation of notorious forum hit amid ongoing cybercrime activity.
Leak highlights forum vulnerabilities.
Phishing Services Drive 389% Surge in Account Breaches
eSentire reports 389% jump in compromises targeting Microsoft 365 and BEC scams, fueled by Phishing-as-a-Service. Legal sector faces email bombing plus helpdesk impersonation, up 14x.
Trends expected to persist into 2026 with MaaS/RaaS.
Ransomware Targets OT Systems as Exposure Grows
OT managed via IT/cloud increases internet exposure, predicting more ransomware on edge systems in 2026. No new techniques needed; reachability drives attacks.
Organizations urged to map and secure hybrid environments.
e-machitown Japan Breached, 680K Businesses Affected
Threat actor Solonik claims exfiltration of database with data on over 680,000 local businesses from regional portal emachi.co.jp. Includes shop owner details for events and guides.
Data posted on dark web forums.
Rmoney India Fintech Database Dumped on Dark Web
1.5GB SQL dump of production database leaked January 8, including insurance, KYC, and WhatsApp data. Threat actor lists full schemas on forums.
Impacts customer PII and financial records.