Latest Internet & Cybersecurity News
Industrial CISOs Redefine Influence in 2026 Amid OT Risks
Industrial CISOs are gaining more authority in 2026 as 52% of organizations place OT security under CISO oversight, up from 16% in 2022, amid 670 new OT vulnerabilities disclosed in early 2025, half critical or high severity. Experts emphasize translating cyber risks into financial and operational impacts to secure boardroom trust, especially in sectors like semiconductor and automotive.
Boards respond 40-60% of the time when risks are framed as business disruptions rather than technical issues.
Qilin Ransomware Hits Pro-Plastics Manufacturing Firm
On February 28, 2026, Qilin ransomware group attacked U.S. manufacturer Pro-Plastics, threatening to leak confidential data unless demands are met. The incident highlights ongoing threats to manufacturing, urging continuous dark web monitoring and compromise assessments.
No details on data exfiltration confirmed yet.
SilentRansomGroup Targets Plaza Home Mortgage
Ransomware group SilentRansomGroup claimed a cyberattack on U.S. mortgage provider Plaza Home Mortgage on February 27, 2026, threatening data release. The group issued an ultimatum via provided channels, similar to recent manufacturing hits.
Organizations advised to review network infiltration and persistence mechanisms.
UH Cancer Center Cyberattack Exposes Personal Data
University of Hawaiʻi Cancer Center suffered a cyberattack potentially exposing Social Security numbers and driver's licenses of up to 900,000 individuals from old records. Notifications sent with credit monitoring; enhancements include network hardening and stricter access controls.
No evidence of data misuse reported to date.
Ex-L3Harris Executive Sentenced for Selling Zero-Days to Russia
Former L3Harris executive Peter Williams sentenced to over seven years for selling eight zero-day exploits to a Russian broker for millions. The exploits were meant for U.S. government and allies; he pleaded guilty to theft of trade secrets.
Case underscores insider threats in cybersecurity firms.
CISA Urges Federal Patch for Cisco SD-WAN Vulnerabilities
CISA issued an emergency directive for federal agencies to patch Cisco Catalyst SD-WAN vulnerabilities under active exploitation by threat actors. Deadline was February 27, 2026, posing imminent threat to networks.
Activity involves ongoing compromises of networking devices.
Conduent Breach Affects Over 25 Million Americans
The January 2025 Conduent cyberattack, impacting U.S. government contractor, now confirmed to affect over 25 million with SSNs and medical records exposed. Conduent handles payment processing for state benefits, amplifying scope.
One of the largest U.S. breaches on record.
Chinese Hackers Breach 50+ Telecoms and Agencies in 42 Countries
Hackers linked to Chinese government infiltrated over 50 telecoms and agencies across 42 countries using SaaS apps for C2 via API calls. Google Threat Intelligence and Mandiant reported exploitation of cloud features to mask activity.
Campaign disguises malicious traffic as benign.
SMEs Boost AI and Cybersecurity Adoption but Face Phishing Surge
More SMEs adopt AI and cybersecurity tools like firewalls (up to 41% from 35% since 2021), yet phishing now causes 47% of incidents amid ransomware decline. Human factor remains weakest link; AI aids both attackers and defenders in phishing.
Sectors like professional services lead AI use at 30%.
Ransomware Hits University of Mississippi Medical Center
Ransomware attack disrupted operations and potentially compromised patient data at University of Mississippi Medical Center. Incident part of rising attacks on public institutions via weak VPN access.
Implications for hospital services reported.
Odido Telecom Confirms Data Breach
Dutch telecom provider Odido suffered a confirmed data breach; analysis of affected data scope ongoing. Part of broader incidents including cloud misconfigurations and credential stuffing.
No further details on impact released.
European Municipalities Targeted by Ransomware
Multiple European local governments faced ransomware disrupting citizen portals and internal systems via compromised VPNs. Attacks highlight weak passwords and poor segmentation in public sector.
Systems like registration and document management hit.