Latest Internet & Cybersecurity News
NCSC Warns UK Organisations of DoS Threats from Russian Hacktivists
The UK's NCSC issued an alert about Russian state-aligned hacktivist groups targeting organisations with denial-of-service attacks focused on disruption. Jonathon Ellison urged reviewing defences and preparing response plans.
Activity aims at overwhelming networks rather than financial gain.
Critical Vulnerabilities Exposed in Chainlit AI Framework
Security researchers found two critical flaws in Chainlit, an open-source AI app framework, risking organisations adopting AI. This coincides with Project DarkSide initiative uncovering AI development weaknesses.
Organisations accelerating AI use face serious exposure.
Zendesk Systems Abused for Global Spam Wave
Attackers exploited unsecured Zendesk support systems for mass spam since January 18, affecting Discord, Dropbox, NordVPN, and others. Fake tickets trigger automated replies turning platforms into spam engines with alarming subjects.
No malicious links but causes confusion via Unicode text.
Fortinet Patch Bypass Actively Exploited on Firewalls
Attackers bypass patches for FortiGate CVE-2025-59718, hacking updated firewalls as reported by admins. Fortinet customers see ongoing exploitation of this critical authentication flaw.
Immediate remediation urged.
Fortune 500 Firms Exposed by Misconfigured Test Apps
Pentera found 1,926 vulnerable test apps on AWS, Azure, GCP with permissive IAM roles, linked to Cloudflare, F5, Palo Alto. Issues remediated post-exposure.
Highlights cloud config risks for large enterprises.
Everest Ransomware Breaches Under Armour, Exposes 72.7M Accounts
Ransomware group Everest leaked data from Under Armour after unpaid ransom, affecting 72.7 million customers from November 2025 attack. Breach posted on cybercrime forum January 18.
Company has not publicly responded.
Cisco Patches Actively Exploited Zero-Day in Unified Communications
Cisco fixed CVE-2026-20045 (CVSS 8.2), a zero-day RCE in Unified CM, IM & Presence, Unity Connection, Webex Calling. Unauthenticated remote attacks enable arbitrary OS commands.
Actively exploited as of January 21.
Qilin Ransomware Hits Singapore's Neo Group
Qilin compromised Neo Group, a top caterer with global trading, leaking confidential data observed on underground forums. Operates in catering, manufacturing, retail across 30+ countries.
Sensitive organisational info exposed.
China-Linked Groups Ramp Up Hacking with ShadowPad, Mustang Panda
PRC hackers continue aggressive campaigns using ShadowPad, FINALDRAFT, Windows Group Policy for espionage. Groups like Ink Dragon target governments; Mustang Panda deploys TONESHELL rootkit.
Evasive Panda uses DNS poisoning for MgBot.
Microsoft Disrupts RedVDS Cybercrime Marketplace
Microsoft took down RedVDS, linked to $40M US fraud since March 2025, hosting phishing tools, BEC services, VPNs. Platform offered SuperMailer, credential theft, account takeover.
Major blow to cybercrime-as-a-service.
BreachForums Cybercrime Forum Data Leaked
Hacker 'James' leaked 323,988 BreachForums member records including emails, IPs, real names of admins and Shiny Hunters. Database exposed usernames, passwords, registration dates.
Highlights risks in dark web forums.
Dire Wolf Ransomware Attacks Perdana Petroleum Berhad
Dire Wolf published data from Malaysian oil firm Perdana Petroleum after compromise. Part of ongoing ransomware incidents reported January 23.
Underscores energy sector targeting.