Latest Internet & Cybersecurity News
Nissan Hit by Everest Ransomware, 900GB Data Stolen
Japanese automaker Nissan suffered a ransomware attack by the Everest group, which claims to have exfiltrated 900GB of sensitive data including internal records and dealer information. The breach was announced on January 10, 2026, raising concerns for global operations. No ransom payment or recovery details have been disclosed yet.
TotalEnergies Alleged Data Breach Exposes 183M Records
Hackers claiming affiliation with HawkSec announced stealing nearly 184 million records from TotalEnergies, including bank details of French customers. The group posted samples on social media and a data leak forum, though legitimacy remains unverified. HawkSec also claimed breaches at Discord and Orange Rwanda.
Microsoft Disrupts RedVDS Infrastructure for BEC Attacks
Microsoft used UK and US courts to seize domains of RedVDS, a virtual desktop service enabling phishing, business email compromises, and scams causing $40M in losses. This action targets infrastructure widely used for malicious virtual machines.
Palo Alto Networks Patches Critical CVE-2026-0227 in PAN-OS
Palo Alto released updates for a high-severity vulnerability in GlobalProtect Gateway and Portal that enables denial-of-service attacks due to improper exception handling. A proof-of-concept exploit is publicly available.
Organizations urged to patch immediately.
Instagram Data Leak Affects 17.5M Users
Threat actor 'Solonik' leaked data of 17.5 million Instagram users on dark web forums, including emails, phones, names, and geodata from a 2024 API breach. This enables advanced social engineering attacks beyond simple credential stuffing.
Victorian Schools Breach Exposes 665K Students' Data
Unauthorized access hit a database for all 1,700 Victorian government schools, compromising names, emails, encrypted passwords, and year levels of over 665,000 students. Systems were shut down for mass password resets ahead of school return.
Ledger Third-Party Breach via Global-e Exposes Millions
Cryptocurrency wallet maker Ledger disclosed exposure of customer order data through e-commerce partner Global-e, with ShinyHunters claiming over 200M records across brands. This affects multiple companies using the service.
Microsoft Releases First 2026 Patch Tuesday Fixing Zero-Days
Microsoft's January patches address three zero-days, including one actively exploited and another from compromised modems; other vendors like Fortinet also issued updates. Fixes target Windows and related vulnerabilities.
Lumen Sinkholes Kimwolf DDoS Botnet Disrupting 250K Devices
Internet firm Lumen disrupted the Kimwolf DDoS botnet by sinkholing over 550 C&C servers, severing control from nearly 250,000 infected devices. The botnet partially recovered but at reduced scale.
It specializes in massive DDoS using residential proxies.
BreachForums User Database Leaked with 320K Accounts
The latest BreachForums incarnation suffered a leak of its MyBB user database containing over 320,000 accounts and private PGP keys, posted by ShinyHunters. This exposes hacker forum users.
Chinese Hackers Breach North American Critical Infrastructure
Government-backed group UAT-8837, tracked by Cisco Talos, infiltrated multiple North American orgs using stolen credentials and a Sitecore zero-day (CVE-2025-53690). They employed tools like Earthworm and Sharphound post-compromise.
Malicious Chrome Extensions Target Enterprise Platforms
Socket discovered five rogue Chrome extensions stealing auth data from Workday, NetSuite via cookie theft, DOM manipulation, and session hijacking. They enable full account takeovers; Google notified.