Latest Internet & Cybersecurity News
Finnish Authorities Seize Ship After Undersea Internet Cable Severed Between Finland and Estonia
Authorities detained the cargo ship Fitburg and two crew members following a sudden break in the internet cable linking Finland and Estonia, raising sabotage concerns. Investigations are ongoing to determine if the damage was intentional.
Palo Alto Networks Warns AI Agents Are 2026's Biggest Insider Threat
Palo Alto Networks' security chief predicts AI agents will become major insider risks due to prompt injection and tool misuse vulnerabilities. By end-2026, 40% of enterprise apps may integrate AI agents, enabling attacks like unauthorized transfers.
Security teams face pressure to secure rapid deployments.
Korean Air Confirms Data Breach Leaking 30,000 Employee Records by Cl0p Ransomware
Cl0p ransomware group leaked data of 30,000 Korean Air employees after hacking a catering partner, confirming the breach. The attack exploited a vulnerability in Oracle Enterprise Business Suite.
Korean Air disclosed the incident affecting staff records.
ShinyHunters Claim Resecurity Breach Debunked as Honeypot Trap
Threat actor ShinyHunters claimed to breach US firm Resecurity, but the company revealed it was a honeypot with fake data, no real systems compromised. Resecurity issued clarifications denying any customer data loss.
This highlights ongoing cat-and-mouse games in breach claims.
CrowdStrike, Palo Alto, Fortinet Top Cybersecurity Stocks to Watch in 2026
MarketBeat identifies CrowdStrike, Palo Alto Networks, and Fortinet as leading cybersecurity stocks due to high trading volume and sector growth. These firms offer cloud security, firewalls, and converged networking solutions amid rising threats.
Investors note defensive demand despite breach and regulatory risks.
RondoDox Botnet Exploits React2Shell to Hijack 90,000+ Unpatched Devices
RondoDox botnet targets Next.js React2Shell flaw to infect routers, smart cameras, and business sites with miners and malware. Over 90,000 devices are vulnerable to these attacks.
Organizations urged to patch immediately.
Everest Ransomware Leaks 1TB of Stolen ASUS Data
Everest ransomware group released 1TB of sensitive data stolen from ASUS, following claims reported in December 2025. The leak underscores ongoing supply chain risks for hardware firms.
ASUS has not detailed response measures.
Two US Cybersecurity Experts Plead Guilty in ALPHV/BlackCat Ransomware Extortion
Two US-based cybersecurity professionals admitted guilt for affiliating with ALPHV/BlackCat ransomware in a federal extortion scheme. The case raises trust issues in the cybersecurity industry.
They face significant penalties.
China-Linked Mustang Panda Deploys ToneShell Backdoor via Signed Rootkit
APT group Mustang Panda (HoneyMyte) uses signed kernel-mode rootkit to deliver ToneShell backdoor, evading Microsoft Defender. Targets include governments in Europe and US since 2012.
New attacks blind security tools.
Thousands of Adobe ColdFusion Servers Targeted in Holiday Exploit Campaign
GreyNoise detected coordinated attacks exploiting a dozen ColdFusion vulnerabilities during Christmas 2025, with thousands of attempts. Servers remain at high risk from unpatched flaws.
Rapid patching recommended.
Trust Wallet Chrome Extension Hacked in Second Shai-Hulud Supply-Chain Attack
Trust Wallet confirms a supply-chain attack compromised its Chrome extension, leading to $8.5M crypto theft. Attackers independently developed malware for the breach.
Users advised to update and monitor wallets.
Xspeeder Router Firmware Flaw CVE-2025-54322 Enables Perfect 10 RCE
Pwn.ai disclosed a CVSS 10.0 pre-auth RCE zero-day in Xspeeder SXZOS firmware, found via AI agent, ignored by vendor for 7 months. Attackers can gain full device control remotely.
First public AI-discovered hardware vuln disclosure.