Latest Internet & Cybersecurity News
Quorum Cyber 2026 Outlook: Cybercrime Enters Industrial Phase with AI and Ransomware
Quorum Cyber's 2026 Global Cyber Risk Outlook reports a 30% rise in new ransomware groups and over 35,000 vulnerability disclosures in 2025. Cybercriminals shift to rapid data exfiltration, with ransom demands up 179% in finance. Nation-states automate 90% of intrusions using AI.
CISA Orders Federal Agencies to Ditch Unsupported Edge Devices
CISA's BOD 26-02 mandates federal agencies inventory and remove unsupported edge devices like routers within 12 months. Nation-state actors from China and Russia target unpatched firewalls and VPNs. Agencies must establish lifecycle management processes.
Notepad++ Supply Chain Attack by Nation-State Hackers
NIST details critical vulnerability in Notepad++ update mechanism exploited from June to November 2025 by sophisticated nation-state actors. Attackers disrupted updates in healthcare and other sectors. Users urged to update to version 8.8.9 or later.
BridgePay Network Solutions Hit by Ransomware Outage
U.S. payment provider BridgePay confirms ransomware attack disrupting services nationwide. Company engaged FBI, Secret Service, and forensic teams for recovery. Initial access vector remains undisclosed.
Ukraine Tightens Starlink Controls Amid Russian Drone Exploitation
Ukraine mandates whitelist for over 50,000 Starlink terminals to block Russian forces using them for UAV control. Restrictions limit use to stationary or low-speed operations with SpaceX cooperation. Aims to counter harder-to-jam drones.
Russian Fancy Bear Exploits Microsoft Office Vulnerability
APT28 (Fancy Bear) exploits CVE-2026-21509 in Microsoft Office for attacks, patched last week. Russian state-sponsored group targets various entities. Organizations advised to apply emergency fixes immediately.
SmarterMail CVE-2026-24423 Actively Exploited in Ransomware Campaigns
CISA adds critical unauthenticated RCE flaw in SmarterMail to KEV catalog due to active ransomware use. Federal agencies must patch within timelines. Impacts multiple sectors with widespread exploitation.
Polish Energy Sector Breached by Russian-Linked Static Tundra Group
CERT Polska attributes attack on energy firm to Russia's FSB-linked Berserk Bear via default creds on FortiGate VPNs. DynoWiper malware destroyed data but no grid disruption. Highlights risks in critical infrastructure access.
CISOs Shift 2026 Budgets to AI Cybersecurity Solutions
Glilot Capital survey shows 78% of CISOs prioritizing AI-powered tools, 41% for AI automation. Cloud protection and identity detection also key. 59% expect AI defense ops standard by year-end.
Betterment Data Breach Exposes 1.4 Million via Social Engineering
Fintech Betterment confirms breach after employee tricked into sharing third-party platform credentials. Attackers sent scam crypto messages; investments and logins safe. Forensic analysis verifies 1.4M records exposed.
NATO Links Russia to Cyberattacks on UK Businesses
NATO cyber chief states Russia behind devastating attacks on British firms as hybrid assault on Europe. Part of broader geopolitical cyber tensions. Aligns with global power struggles reshaping defenses.
CISA Confirms VMware ESXi Flaw in Ransomware Attacks
CVE-2025-22225 arbitrary write vulnerability in VMware ESXi added to KEV after ransomware exploitation. Affects virtualization environments. Immediate patching recommended for servers.