Latest Internet & Cybersecurity News
Open-Source AI Deployments Pose Global Security Nightmare
Threat researchers found numerous Ollama AI instances exposed online, vulnerable to breaches exposing sensitive data like Korean resident numbers. One system leaked data on 10 million people in 20 minutes, while another allowed admin access to 130,000 records.
Researchers urge securing these deployments as they rival commercial AI risks.
South Korean Public Systems Fail Pentesting, Exposing Millions
Board of Audit and Inspection's simulated attacks breached systems, revealing resident data for nearly entire population. Fixes deployed, but 116 other systems need checks.
Details withheld to prevent real attacks.
North Korean Labyrinth Chollima Splits into Specialized Groups
CrowdStrike reports Labyrinth Chollima evolved into Golden Chollima for crypto thefts and Pressure Chollima for high-profile heists. Original group now focuses on malware espionage in defense sectors.
Targets include US, Europe, South Korea fintech and crypto firms.
First Attributed LLMjacking Campaign: Operation Bizarre Bazaar
Honeypot exposed LLMjacking marketplace reselling access to 30+ AI providers on Discord and Telegram. Uses bulletproof infrastructure, accepts crypto and PayPal.
First public documentation of named, attributed operation.
US Government Forfeits $400M from Helix Darknet Crypto Mixer
DOJ seized assets from Helix, which mixed crypto to obscure sources and owners. Part of broader crypto crime crackdown.
Highlights risks in darknet financial tools.
Google Disrupts World's Largest Residential Proxy Network
Google took down domains controlling 'No Place Like Home Network' proxy botnet. Used for evading detection in attacks.
Major action against proxy abuse.
Former Google Engineer Guilty of Stealing AI Trade Secrets
Linwei Ding stole 2,000+ pages of Google's AI secrets to personal account. Convicted of economic espionage.
Worked from May 2022 to April 2023.
SonicWall Breach Leads to Ransomware on 74 US Banks
Marquis ransomware exploited SonicWall flaw, prompting legal action by victims. Affected multiple financial institutions.
Highlights supply chain vulnerabilities.
AI Accelerates Industrial Cyber Threats in OT Environments
AI tools automate reconnaissance, scanning, and lateral movement in OT networks. Campaigns like GTG used Claude for intrusions.
Ransomware hit US hardest with 4,000 incidents in 2025.
Anthropic Alleges Chinese Hackers Used Its AI in Cyberattacks
State-sponsored actors targeted tech and finance firms using Anthropic's chatbot. Part of broader AI misuse in attacks.
Raises concerns over AI tool exploitation.
Nissan Data Breach by Qilin Ransomware Group
Qilin hit Nissan's Tokyo design studio, potentially exposing secret designs. Confirmed breach affects creative assets.
Ransomware trend continues in manufacturing.
Canada Computers Confirms Customer Data Breach
Retailer verifies data leak impacting customers. Latest in series of retail breaches.
Urges monitoring for identity theft.