Latest Internet & Cybersecurity News
Hacker Claims Theft of Data from 700,000 Substack Users
A hacker claimed to have stolen data from 700,000 Substack users, and the company confirmed the breach occurred. This incident highlights ongoing risks to newsletter platforms handling user data.
AISURU/Kimwolf Botnet Launches Record 31.4 Tbps DDoS Attack
The AISURU/Kimwolf botnet executed a record 31.4 Tbps DDoS attack lasting 35 seconds in November 2025, which Cloudflare detected and blocked automatically. The botnet is linked to significant disruptive capabilities.
Nearly 5 Million Servers Expose Git Metadata and Credentials
A 2026 Mysterium VPN study found nearly 5 million servers exposing Git metadata, with 250,000 leaking deployment credentials via .git/config files. This exposes widespread misconfigurations in development environments.
CISA Orders Federal Agencies to Stop Using Edge Devices
The Cybersecurity and Infrastructure Security Agency on February 4, 2026, directed federal agencies to discontinue 'edge devices' due to security risks. Nation-state actors are exploiting end-of-support edge devices.
Notepad++ Update Hijacked by Alleged Chinese State-Sponsored Hackers
Notepad++ was compromised at the hosting provider level, allowing attackers to redirect update traffic for targeted users to malicious manifests. The incident from June to November 2025 was likely by a sophisticated nation-state actor, affecting versions prior to 8.8.9.
Ivanti Vulnerabilities Added to CISA Known Exploited Catalog
CISA flagged 31 Ivanti defects since 2021, with at least 19 exploited recently, including CVE-2026-1281. GreyNoise detected over 1.4 million exploitation attempts on CVE-2025-55182 in a week, now from just two IPs.
BridgePay Network Solutions Hit by Ransomware Attack
A major U.S. payment gateway suffered a ransomware attack causing widespread outages, confirmed on February 6, 2026. The company engaged the FBI, Secret Service, and forensic teams for recovery.
SonicWall SSLVPN Credentials Exploited in Huntress Intrusion
In early February 2026, threat actors used compromised SonicWall SSLVPN credentials for initial access, then deployed an EDR killer via BYOVD technique. Attackers bypassed MFA and conducted aggressive scanning.
ShinyHunters Breach Affects 5.1 Million Panera Bread Customers
ShinyHunters leaked data of 5.1 million Panera customers including emails, names, phones, and addresses after a January breach via Microsoft Entra SSO. The group posted on the dark web following failed extortion.
Epworth HealthCare Faces Claimed 920GB Data Theft by 0APT
Ransomware group 0APT claimed to steal 920GB of patient data, surgical records, and billing from Epworth HealthCare. The hospital denied a direct breach, attributing it possibly to a third-party vendor.
Microsoft Edge Patches Exploited Memory Corruption Vulnerabilities
Microsoft released an emergency Edge update on February 5, 2026, for CVE-2025-13223 and CVE-2025-10585, both exploited in the wild for remote code execution via crafted HTML. Organizations urged to patch immediately.
China-Linked Hacking Groups Expand with Sophisticated Attacks
More hacking groups operate from China than any other country, focusing on long-term infiltration of critical networks like power and telecoms. Taiwan saw 2.63 million daily attacks in 2025, up 113% from 2023.