Latest Internet & Cybersecurity News
North Korea-Linked Hackers Steal $2.02 Billion in Crypto Thefts in 2025
Threat actors tied to North Korea have stolen $2.02 billion in cryptocurrency throughout 2025, leading global crypto theft activities. This marks a significant escalation in state-sponsored cybercrime targeting digital assets. Thefts highlight North Korea's industrialization of cryptocurrency operations.
China-Linked Evasive Panda Conducts DNS Poisoning for MgBot Malware Delivery
A China-linked APT group ran a DNS poisoning campaign from November 2022 to 2024, targeting Türkiye, China, and India to deploy MgBot backdoor. The evasive operation was highly targeted for cyber espionage. Kaspersky attributed the activity to Evasive Panda.
INTERPOL Operation Sentinel Arrests 574 Cybercriminals in Africa, Recovers $3M
INTERPOL's Operation Sentinel from October 27 to November 27, 2025, led to 574 arrests across 19 African countries and $3 million recovery. The effort focused on business email compromise, digital extortion, and cybercrime networks.
Russia-Linked Hackers Exploit Microsoft 365 Device Code Phishing for Takeovers
Russia-aligned group UNK_AcademicFlare has used device code authentication phishing since September 2025 to steal Microsoft 365 credentials. Attacks leverage compromised government emails for account takeovers. Proofpoint tracks the ongoing campaign.
Nigeria Arrests RaccoonO365 Phishing Developer Targeting Microsoft 365
Nigerian authorities arrested three suspects, including the main developer of RaccoonO365 PhaaS, linked to corporate phishing attacks. The Nigeria Police Force collaborated on investigations. This disrupts a key Microsoft 365 threat actor.
Kimwolf Botnet Hijacks 1.8 Million Android TVs for Massive DDoS Attacks
The Kimwolf Android botnet has infected 1.8 million TVs, enabling large-scale DDoS attacks. It represents a massive IoT threat vector. The botnet strikes critical infrastructure globally.
Aflac Confirms Data Breach Affecting Over 22 Million Customers
Insurance giant Aflac disclosed a June 2025 breach impacting more than 22 million customers' data. Sensitive information was exposed in the incident. This adds to 2025's record breach volumes.
Red Hat GitLab Breach Exposes Data of 21,000 Nissan Customers
Red Hat confirmed a GitLab instance hack leading to data theft of 21,000 Nissan customers. The breach highlights supply-chain vulnerabilities. It occurred amid rising third-party risks.
La Poste Services Disrupted by Pro-Russian Noname057 Cyberattack
France's postal service La Poste suffered outages from a cyberattack claimed by pro-Russian group Noname057. Digital banking and online services were hit. The incident underscores geopolitical cyber tensions.
Critical n8n Vulnerability CVE-2025-68613 Enables Remote Code Execution
A high-severity flaw in n8n allows arbitrary code execution, with active exploitation warnings issued December 22, 2025. Server takeovers are possible. Organizations urged to patch immediately.
Rising Third-Party Risks and Ransomware Drive 2026 Cybersecurity Investments
Experts predict increased investments in 2026 due to escalating third-party risks and ransomware threats. ENISA reports shift to automation amid talent shortages. 2025 breaches amplify these trends.
2025 Marked by Unprecedented Cyber Attacks Across Sectors
2025 saw record breach volumes, credential leaks, and supply-chain failures hitting governments, healthcare, finance, and infrastructure. No sector escaped impact. The year proves global vulnerability.