Latest Internet & Cybersecurity News
Unit 42 Report: Attacks Now 4x Faster, Identity Weaknesses in 90% of Breaches
Palo Alto Networks' Unit 42 2026 Global Incident Response Report analyzed over 750 incidents, finding attackers exfiltrate data in as little as 72 minutes, 4x faster than prior year. Identity issues drove nearly 90% of investigations, with AI accelerating reconnaissance and ransomware. Most breaches stem from preventable gaps like poor visibility.
North Korean Laptop Farms Enable Remote Job Infiltration at US Firms
US authorities sentenced a Ukrainian facilitator for operating laptop farms and providing fake identities to North Korean operatives securing remote jobs at dozens of US companies. This highlights scaled identity fraud and insider threats via HR and IT vectors. Investigative indicators now include device brokering and remote access logistics.
Figure Data Breach Exposes Nearly 1 Million User Records
Financial firm Figure confirmed a breach compromising nearly 1 million user records, listed among major consumer app data leaks. This incident underscores risks in fintech data handling amid rising exposure cases. AI chat logs for 25 million users also leaked separately.
Mandiant Confirms Grimbolt Malware Exploits Dell RecoverPoint Zero-Day
Mandiant reported active exploitation of a Dell RecoverPoint zero-day vulnerability by Grimbolt malware, featured in threat intelligence advisories. This affects storage systems, enabling potential data manipulation. ICS advisories also issued for related risks.
French FICOBA Bank Account Register Breached, 1.2 Million Accounts Exposed
Unauthorized access hit France's national bank account register FICOBA, exposing data on 1.2 million accounts critical for identity theft and fraud. The register verifies bank accounts, amplifying risks for phishing and deception chains. Incident classified as highly sensitive.
Odido Telecom Cyberattack Leaks Data of 6.2 Million Dutch Customers
Dutch provider Odido suffered a cyberattack on its customer contact system, impacting 6.2 million users with names, addresses, phones, emails, DOB, IBANs, and IDs. Data enables SIM swaps, account takeovers, and phishing. Operational services unaffected but downstream damage likely.
Ransomware Cripples University of Mississippi Medical Center
Ransomware attack forced closure of clinics, cancellation of surgeries, and manual operations at University of Mississippi Medical Center. Electronic patient records disrupted across the state. Highlights healthcare vulnerability to disruptive attacks.
Ivanti EPMM Zero-Days CVE-2026-1281 and CVE-2026-1340 Actively Exploited
Unit 42 and Ivanti reported widespread exploitation of two critical zero-days in Endpoint Manager Mobile, allowing server access and device fleet control. German warnings issued for active attacks. Compromise risks identities, certificates, and network springboards.
Deutsche Bahn Faces Major DDoS Attack Disrupting bahn.de and DB Navigator
Cyberattack starting February 17 targeted Deutsche Bahn, knocking out critical systems like bahn.de and the DB Navigator app through February 18. Services heavily disrupted in Germany. Underscores infrastructure risks from DDoS.
CISA Adds Actively Exploited Roundcube Flaws CVE-2025-68461 and CVE-2025-49113 to KEV
CISA listed two Roundcube vulnerabilities: 7.2 CVSS XSS via SVG and 9.9 RCE weaponized in 48 hours, with exploits sold shortly after. FCEB agencies must patch by March 13, 2026. Rapid exploitation highlights email server risks.
Barracuda Report: 90% of 2025 Ransomware from Compromised Firewalls
Barracuda's analysis of two trillion data points found 90% of ransomware incidents originated from hacked firewalls, doubling victim growth since 2024. SonicWall appliances notably hit by Akira group. Firewalls as entry points demand robust security.
AI-Driven Phishing Surges 204%, Malicious Email Every 19 Seconds
Cofense reported 204% rise in malware phishing campaigns, with polymorphic attacks using AI for unique URLs but shared IPs evading detection. Legitimate RAT abuse up 57%, payloads on cloud platforms. Firms face one malicious email every 19 seconds.