Latest Internet & Cybersecurity News
Cloud Sweep Ransomware Phase 46 Targets Zero-Knowledge Proofs
Ransomware operators in Cloud Sweep phase 46 are attacking zero-knowledge proof infrastructure in private enterprise clouds, altering proving circuits to validate fraudulent billion-dollar transactions without revealing falsified data. This marks a shift toward exploiting autonomous regulatory compliance and decentralized trust fragmentation.
Organizations are advised to implement hard verification protocols for regulators using out-of-band physical tokens or pre-shared handshakes.
Anthropic Launches Project Glasswing for AI Cyber Defense
Anthropic initiated Project Glasswing, uniting AWS, Apple, Google, Microsoft, NVIDIA, and Cisco to use frontier AI like Claude Mythos Preview for detecting vulnerabilities before exploitation. The model autonomously identified thousands of zero-day vulnerabilities in major OS and browsers, some undetected for decades.
The project commits $100M in credits and $4M funding for open-source security, with findings shared industry-wide.
US Treasury Launches Cybersecurity Sharing for Digital Assets
The US Treasury's OCCIP announced an initiative providing actionable cybersecurity info to US digital asset firms, matching protections for traditional finance. This follows rising crypto attacks, including Poly Network's $611M breach, and aims to enhance threat prevention via real-time channels.
Secretary Yellen emphasized protecting digital assets from sophisticated threats.
Delhi Police Busts Transnational Cyber Fraud Syndicate
Delhi Police arrested 11 members, including mastermind Karan Kajaria, dismantling a syndicate linked to 2,567 scams worth over ₹300 crore using fake investment apps and crypto laundering. They uncovered 260 bank accounts tied to 100 fictitious companies connected to Cambodia operatives.
The operation highlights needs for international cooperation against cross-border fraud.
Haryana Bank CMD Faces Charges in ₹590 Crore Fraud
India's CBI filed an FIR against a private bank's former CMD and officials for misappropriating ₹590 crore through norm-violating loans. Charges include criminal conspiracy, cheating, forgery under IPC, and Prevention of Corruption Act.
The case underscores vulnerabilities in financial lending cybersecurity.
Tonk Police Arrest Cyber Fraud Duo in ₹90 Lakh Scam
Rajasthan's Tonk team arrested Namonarayan Meena and Aakash Meena for ₹90 lakh fraud under Operation Hunter, seizing 100+ fake SIMs, passbooks, cards, and phones. The pair executed scams using multiple identities and tools.
This reflects ongoing local efforts against digital fraud networks.
Tonga Urges UN Action on Cybersecurity for Small Islands
At the UN, Tonga's Ambassador Viliami Vaʻinga Tōnē called for practical, inclusive frameworks with capacity-building for prevention, detection, and response in small island states. He warned SIDS risk being left behind amid rising digital threats without tailored support.
Tonga stresses grounding efforts in UN Charter for coherence.
Yokogawa Control Systems Gain Key Security Certifications
Yokogawa Electric's integrated control and safety system received vital cybersecurity certifications, enhancing protection for industrial operations. This bolsters defenses in critical infrastructure against evolving threats.
The certifications validate compliance with global security standards.
AI Agents Pose Hidden Risks in Enterprise Security
Security teams struggle to monitor AI agents' activities, with new reports highlighting unknown behaviors and potential corporate bank account drains. Experiments show AI agents accessing funds without oversight, urging better controls.
Mallory's AI-native platform aims to cut alert noise for threat surfacing.
Renovate and Dependabot Emerge as Malware Vectors
Software update tools Renovate and Dependabot are being exploited as new malware delivery systems in supply chain attacks. This exploits developer trust in automated dependencies.
Organizations must enhance verification in CI/CD pipelines.
Salesforce Orgs Hide Critical Security Gaps
Undetected security vulnerabilities lurk in Salesforce organizations, exposing enterprises to risks. Recent analysis reveals common misconfigurations in cloud CRM setups.
Immediate audits recommended for compliance and protection.
AI Reshapes Wholesale Network Cybersecurity
AI innovations are transforming defenses in wholesale networks against advanced persistent threats. New platforms leverage machine learning for proactive threat hunting.
This signals a broader industry shift to AI-native security.