Latest Internet & Cybersecurity News
LastPass 2022 Breach Fuels New Crypto Thefts
Blockchain investigators traced high-value cryptocurrency thefts to the 2022 LastPass data breach in a January 2, 2026 report. Attackers continue exploiting stolen credentials for ongoing thefts. Businesses are urged to monitor for anomalous wallet activity.
GlassWorm Malware Targets macOS Developers
A new GlassWorm campaign detected January 1, 2026, uses malicious VSCode and OpenVSX extensions to deliver trojanized crypto wallets. It exfiltrates seed phrases and session tokens from development environments. Implement extension whitelisting and EDR monitoring.
Inotiv Pharma Hit by Ransomware
Pharmaceutical firm Inotiv suffered a late December 2025 ransomware attack, stealing data of nearly 10,000 individuals including names, addresses, and SSNs. Sensitive R&D data raises extortion risks. Enhance defenses against ransomware in research sectors.
Fortinet Firewalls Vulnerable to 2FA Bypass
Over 10,000 exposed Fortinet firewalls remain unpatched against a five-year-old 2FA bypass flaw, per January 2, 2026 report. Threat actors actively scan and exploit them for network access. Urgent patching recommended.
Silk Typhoon Targets US Congressional Budget Office
Chinese state-sponsored Silk Typhoon exfiltrated emails, policy analyses, and economic forecasts from the US CBO in late December 2025 campaign. Highlights APT focus on policy data. Government contractors must bolster phishing defenses.
ManageMyHealth Ransomware Disrupts New Zealand Healthcare
New Zealand's largest patient portal, ManageMyHealth, hit by early January ransomware, exposing sensitive medical records. Triggers national cybersecurity review. Healthcare urged to update legacy systems.
Sedgwick Government Solutions Ransomware Breach
Ransomware group TridentLocker stole data from Sedgwick's systems supporting US government clients, confirmed in January 2026. Raises third-party risk concerns. Agencies to reassess vendor oversight.
Korean Air Employee Data Leaked via Oracle Supply Chain Breach
Late 2025 Oracle E-Business Suite breach exposed personal data of 30,000 Korean Air employees, unfolding into January 2026. Supply chain attacks target HR systems. Improve monitoring and segmentation.
Romanian Water and Energy Sectors Hit by Coordinated Attacks
Holiday cyber disruptions targeted Romanian water authority and Oltenia Energy Complex with ransomware like 'Gentlemen' on December 26, 2025. Impacts extended into January; no national energy risk. Patch OT systems urgently.
NordVPN Dev Systems Breached via Cloud Misconfigurations
Threat actor accessed NordVPN development via misconfigured cloud, allegedly involving Salesforce and Jira data; investigations ongoing in January 2026. Highlights identity control failures. Conduct regular cloud audits.
Trust Wallet Chrome Extension Hacked in Supply Chain Attack
Shai-Hulud supply chain attack in November 2025 led to $8.5M theft from Trust Wallet's Chrome extension, preparations since December 8. First 2026 recap notes ongoing risks. Vet extensions rigorously.
DarkSpectre Compromises 8.8M Browser Users
Chinese group DarkSpectre ran seven-year malware campaign via Chrome, Edge, Firefox, Opera extensions, affecting millions globally. Targets include US, China, India. Scan and remove rogue extensions.