Latest Internet & Cybersecurity News
GCHQ warns Russia is escalating cyber pressure on the UK and Europe
Britainâs signals-intelligence chief said Russia is ârelentlessly targeting critical infrastructure, democratic processes, supply chains and public trust,â urging action from government and industry. The warning highlights cyber risk as a broader geopolitical issue rather than a purely technical one.
Microsoft warns of a credential-theft campaign hitting 35,000 users across 13,000 organizations
Microsoft reported a credential theft campaign affecting users in 26 countries and spanning 13,000 organizations, showing how large-scale identity attacks remain a major threat vector. The incident underscores the continuing focus on account compromise rather than only malware deployment.
GitHub says attackers stole thousands of internal repositories after poisoned extension install
A developer-installed malicious Visual Studio Code extension led to the theft of roughly 3,800 internal repositories, according to the reported disclosure. The case illustrates how trusted developer tooling can become an entry point for supply-chain compromise.
âMegalodonâ supply-chain campaign hit more than 5,000 GitHub repositories
An automated malicious campaign dubbed âMegalodonâ used fake pull requests to steal sensitive information from open-source projects. Kaseya reported 5,718 malicious commits across 5,561 repositories in just six hours, highlighting the speed and scale of modern repository abuse.
Supply-chain attacks on open-source JavaScript and Python projects continue to surge
Kaseyaâs breach roundup says attacks against open-source JavaScript and Python repositories remain on the rise, reinforcing concerns about ecosystem-wide exposure. The trend is important because a single compromised package or workflow can affect downstream users at scale.
Grafana Labs disclosed a GitHub Actions âPwn Requestâ attack and extortion attempt
Grafana Labs said a misconfigured GitHub Actions workflow let a threat actor steal a privileged GitHub App token and exfiltrate private source code. The company also reported an extortion attempt tied to the incident, showing how CI/CD and source-control weaknesses can lead to both theft and coercion.
German university hospitals report a large patient-data breach through an external billing provider
Hackers targeted Unimed, a billing-service provider used by university hospitals in several German cities, exposing tens of thousands of patientsâ data. The case shows how third-party service providers can become high-impact entry points into healthcare systems.
Beacon Mutual begins notifying victims after ransomware attack exposed personal information
The Rhode Island workersâ compensation insurer said it detected the attack on January 14, 2026, and later found attackers had access to systems for about a week. Roughly 162,000 people may have been affected, including more than 131,000 Rhode Island residents.
American Lending Center reports ransomware-related exposure of 123,158 individuals
The California-based lender said attackers accessed files containing sensitive personal information, including names, dates of birth and Social Security numbers. The incident demonstrates that financial-services breaches continue to produce large-scale identity risk.
GCHQ warns cybersecurity must become â10 times more urgentâ across society
Anne Keast-Butler said cybersecurity needs to be treated with much greater urgency âfrom boardrooms to living rooms,â reflecting concern that defense gaps span institutions and individuals. The warning aligns with broader government messaging that cyber resilience is now a national-security issue.