Latest Internet & Cybersecurity News
Quorum Cyber's 2026 Global Cyber Risk Outlook Highlights AI and Ransomware Surge
Quorum Cyber reports a 30% increase in new ransomware groups and 21% rise in vulnerabilities exceeding 35,000 in 2025. Nation-state actors used AI agents for 90% of intrusions, shifting to data exfiltration over encryption. Russia, China, Iran, and North Korea lead threats, with North Korea earning over $2B from cybercrime.
Promethean PAC Donor Data Breached and Leaked on Dark Web
Threat actor MR-Zeeone-Grayhat leaked Promethean PAC donor data including names, addresses, occupations, and donation amounts on February 15, 2026. The dataset linked to Larouche PAC was shared freely, posing privacy risks. Severity rated low for organization but sensitive for individuals.
Ransomware Persists as Top Threat Due to Basic Security Failures
High-profile ransomware incidents continue in 2026, exploiting unpatched vulnerabilities, phishing, weak passwords, and lack of MFA. Complex IT environments and excessive permissions aid lateral movement. AI supercharges attacks with customized lures and deepfakes, lowering entry barriers.
Washington Hotel Chain in Japan Hit by Ransomware Infection
Japanese Washington Hotel chain disclosed a ransomware attack on February 13, 2026, compromising servers and business data across 30 locations. IT staff disconnected systems; external experts engaged for investigation amid rising breaches in Japan like Nissan and NTT. JPCERT noted related FileZen vulnerability CVE-2026-25108.
Study Reveals 25 Password Recovery Attacks in Cloud Managers
Researchers uncovered 12 attacks on Bitwarden, 7 on LastPass, and 6 on Dashlane, affecting over 60M users. Flaws in key escrow, item-level encryption, and metadata enable vault compromise and integrity violations. Attacks range from password recovery to full organizational breaches.
Critical BeyondTrust Vulnerability CVE-2026-1731 Exploited in Wild
High-severity pre-auth RCE in BeyondTrust Remote Support and Privileged Remote Access allows OS command execution. Observed exploitation reported; patches available for versions up to 24.3.4, with SaaS auto-patched. Canadian Cyber Centre urges immediate updates.
Unit 42 Report: AI Compresses Attack Timelines 4x Faster
Palo Alto's analysis of 750 incidents shows AI enabling 72-minute access-to-exfiltration in fastest cases. Identity issues in 90% of breaches; supply chain risks in 23%. Visibility gaps and excessive trust amplify damage via stolen credentials.
Microsoft February 2026 Patch Tuesday Fixes 58 Vulnerabilities, 6 Zero-Days
Check Point reports Microsoft's patches address 58 flaws, including six zero-days under active exploitation. Bulletin covers top attacks, AI threats like Trojan.Wins.SugarLoader, and latest vulnerabilities. Organizations urged to apply updates promptly.
Luxury Brands Dior, Louis Vuitton, Tiffany Fined $25M for Data Breaches
South Korea fined Dior, Louis Vuitton, and Tiffany $25 million over massive hacker attacks exposing customer data. Breaches highlight ongoing risks to retail sectors. Regulators demand enhanced protections.
First Contact Health Sanctioned for Cybersecurity Lapses
UK Data Protection Authority sanctioned First Contact Health for lacking MFA, conditional access, and monitoring tools, risking health data. Enforcement order mandates improvements or faces penalties. Google warns AI boosts hacking speed.