Latest Internet & Cybersecurity News
Cybersecurity Pros Plead Guilty to ALPHV Ransomware Attacks
Ransomware negotiator Ryan Goldberg and incident responder Kevin Martin admitted running ALPHV BlackCat attacks on US firms from May-November 2023, securing $1.2M from a medical device company. They used infosec skills against five targets including pharma and drone makers, facing up to 20 years in prison.
DOJ highlights irony of experts turning to crime they should combat.
MongoDB Vulnerability CVE-2025-14847 Actively Exploited
High-severity MongoDB flaw dubbed 'Heartbleed for MongoDB' allows unauthenticated heap memory reads, exposing sensitive data like passwords and API keys. US CISA added it to known exploited vulnerabilities after Christmas PoCs.
Attackers exploit mismatched zlib header lengths; urgent patching advised.
Record 29.7 Tbps DDoS Attack by Aisuru Botnet
Aisuru botnet peaked at 29.7 Tbps in 69 seconds, breaking DDoS records amid seven such breaks in 2025. Kimwolf botnet, likely linked to Aisuru, scaled to 1M devices with resilient infrastructure.
Network security landscape evolved rapidly with hyper-scale threats.
La Poste Hit by Pre-Christmas DDoS Disrupting Services
French postal service La Poste confirmed DDoS attack disrupting mail and banking during peak season. Solana blockchain endured week-long DDoS up to 6 Tbps without downtime.
Highlights rising DDoS threats to critical infrastructure.
Europol Busts $55M Illegal IPTV and Streaming Networks
International operation shut down piracy sites and IPTV platforms, seizing servers and crypto payments. Microsoft found malvertising on illegal streams hit 1M devices with malware chains.
Modified TV boxes pose risks via preloaded malicious apps.
MongoDB CVE-2025-14847 Exploited in Weekly Threats
Wiz reported active exploitation of CVE-2025-14847 leaking server memory data without auth. DNS poisoning by Evasive Panda delivered MgBot backdoor to targets in Türkiye, China, India.
LastPass 2022 breach data still yields $35M crypto thefts via weak passwords.
Fortinet Warns of Renewed CVE-2020-12812 MFA Bypass
Fortinet confirmed ongoing exploitation allowing MFA bypass in specific setups; urges log reviews. Coinbase contractor arrested for selling data of 70K users to hackers.
Russian 'Fly' identified as Russian Market credential admin.
Ransomware Threatens National Economic Stability
NCC Group reports record global ransomware levels; UK attacks on JLR caused £1.9B loss, M&S £324M. Attacks on Harrods, Co-Op hit millions; Bank of England flags financial stability risk.
2025 marks turning point linking cyber to economic resilience.
Silver Fox APT Targets Indian Users, Mustang Panda Uses ToneShell
China-linked Silver Fox campaigns hit Indian targets; Mustang Panda deploys ToneShell malware. Prompt injection vulnerabilities persist in AI systems despite mitigations.
Rising state-sponsored threats in Asia-Pacific region.
Russian Lynx Breaches UK MoD Contractor Dodd Group
Lynx group stole 4TB sensitive data from Dodd Group in Oct 2025. Part of significant Q4 incidents amid surging ransomware and breaches.
Highlights supply chain risks to defense sectors.
AI Adoption Outpaces Security, Boosting Social Engineering
Accenture report: Firms overconfident as AI speeds threats like advanced phishing. Over 345M records exposed in H1 2025 breaches amid collaboration fears.
Calls for secure data sharing and AI defenses.
Ransomware Tactics Evolve into Chaos for 2025
Ransomware tops threats with expanding playbooks; 38% expect worse evolution. Double extortion, RaaS, supply chains drive incidents like HydraLock, VoltStrike.
Prevention demands proactive strategies beyond patching.