Latest Internet & Cybersecurity News
FBI Labels China-Linked Hack of Surveillance System a Major Cyber Incident
The FBI classified a breach of its DCS-3000 surveillance system as a major incident, with suspected Chinese hackers, possibly Salt Typhoon, accessing wiretap data. The intrusion, discovered February 17, compromises pen register and trap-and-trace operations used for monitoring calls and internet activity.
FBI is investigating with CISA and NSA amid ongoing Chinese cyber threats to U.S. infrastructure.
SonicWall 2026 Cyber Protect Report Reveals Seven Deadly Sins for SMBs
SonicWall's annual report reframes research around SMB protection outcomes, identifying seven deadly sins in cybersecurity practices. Released April 3, it highlights risks facing small and medium businesses in the evolving threat landscape.
The findings aim to guide better protection strategies for SMBs.
Microsoft Announces $10 Billion Investment in Japan for AI and Cybersecurity
Microsoft plans a $10 billion investment over four years in Japan to build AI infrastructure and bolster cybersecurity. Partnerships with SoftBank and Sakura Internet will develop domestic AI services via Azure cloud.
The initiative includes training one million engineers by 2030 and aiding early cyberattack detection.
North Korean Hackers Drain $285 Million from Drift Protocol in 10 Seconds
North Korean actors exploited Drift, a DeFi platform, stealing $285 million by taking over an admin key and draining five vaults using nonce-based transactions. The attack occurred rapidly, prompting service suspension.
Infrastructure was prepped in advance for the large-scale theft.
Critical strongSwan Vulnerability Allows VPN Crashes via Integer Underflow
CVE-2026-25075 in strongSwan's EAP-TTLS plugin (versions 4.5.0-6.0.4) enables attackers to crash VPNs through memory corruption. The 15-year-old flaw poses risks to VPN services worldwide.
Organizations are urged to patch immediately.
Ransomware Group Claims Hack of Meriden, CT City Systems
The Inc ransomware group claims responsibility for attacking Meriden, CT, causing ongoing service disruptions since February 17. City officials confirmed the breach, with data stolen.
Restoration efforts continue over a month later.
New RoadK1ll WebSocket Implant Enables Network Pivoting
RoadK1ll, a Node.js implant, uses custom WebSocket protocol to pivot in breached networks without inbound listeners. It blends with normal traffic for stealthy operations.
Threat actors deploy it for persistent access.
AI-Powered Phishing Campaign Compromises 344 Organizations
An AI-driven phishing operation exploited Microsoft cloud accounts via OAuth tokens, hitting sectors like healthcare and government. Hundreds of organizations affected across construction, law, and more.
The campaign demonstrates advanced social engineering.
Axonius Adapt 2026 Conference Addresses Cybersecurity Actionability Gap
Axonius Adapt 2026 on April 15 features keynotes from former NASA CIO Renee Wynn and CEO Joe Diamond on cyber resilience and asset intelligence. Research shows 56% of teams struggle with prioritization amid data overload.
The event focuses on intelligence-driven security operations.
Iran Conflict Escalates Cyber Threats to U.S. Energy Infrastructure
Heightened Middle East tensions raise risks from Iranian cyber actors targeting U.S. energy sectors. Iran has built capabilities and ties to hacker groups, with warnings of disruptive attacks.
Energy firms urged to enhance defenses.
Cisco Patches Critical Vulnerabilities Including RCE and Auth Bypass
Cisco addressed critical and high-severity bugs that could lead to remote code execution, info disclosure, and privilege escalation. Patches are essential to prevent exploitation.
Affected products require immediate updates.
Palo Alto Networks Warns of Breaches in 39 Seconds
Attackers can breach defenses in 39 seconds, accelerated by AI, outpacing human responses. Resilience requires AI-enhanced defenses.
Podcast discusses building rapid security postures.