Latest Internet & Cybersecurity News
NATO Allies View Cyberattacks on Hospitals as Acts of War
New polling reveals broad public support in NATO countries for treating major cyberattacks on infrastructure like hospitals as acts of war, though views differ on smaller incidents. U.S. pushes for offensive cyber responses post-2024 Salt Typhoon hack, with new strategy incoming.
Germany plans cybersecurity overhaul for active defense.
DDoS Attacks Surge 168% in 2025 per Radware Report
Radware’s 2026 Global Threat Analysis shows network-layer DDoS attacks rose 168.2% YoY, peaking at 30 Tbps, with web DDoS up 101% and bad bots up 91.8%. Tech, telecom, and finance sectors hit hardest by large-scale campaigns.
Average 25,351 attacks per customer in H2 2025.
90% of Ransomware Starts with Firewall Exploits: Barracuda
Barracuda report finds 90% of 2025 ransomware incidents exploited firewalls via unpatched flaws or stolen accounts, not email. One Akira case encrypted systems in three hours post-compromise.
Urges continuous patching and 24/7 edge monitoring.
France's FICOBA Bank Register Breached, 1.2M Accounts Exposed
Unauthorized access hit France’s national bank account register FICOBA, exposing data on 1.2 million accounts. Incident risks identity theft and fraud due to sensitive verification data.
Highly critical for targeted scams.
Dutch Telecom Odido Data Leak Affects 6.2M Customers
Cyberattack on Odido's customer system leaked names, addresses, phones, emails, DOB, IBANs for 6.2 million users. Enables identity theft, SIM swaps, and phishing.
Operational services unaffected but downstream risks high.
Ransomware Cripples Mississippi University Medical Center
University of Mississippi Medical Center shut clinics statewide after ransomware hit Epic records and IT systems. Elective surgeries canceled; manual ops in place.
FBI aiding recovery; patient data status unclear.
Choice Hotels Breach Exposes SSNs via Social Engineering
Threat actor bypassed MFA via social engineering on Jan 14, accessing franchisee/applicant data including Social Security numbers. Detected in under an hour; full review by Jan 26.
Prior 2023 MOVEit compromise history.
UAE Thwarts Terrorist Cyberattacks on Vital Sectors
UAE Cybersecurity Council foiled organized attacks using ransomware, phishing, and AI tools targeting infrastructure. Aimed to destabilize services; networks breached attempted.
Prioritizes data protection and continuity.
Critical Grandstream Phone Flaw Allows Call Interception
Vulnerability in GXP1600 series phones enables threat actors to intercept calls. Critical issue demands immediate patching.
Affects VoIP security broadly.
EC-Council Launches AI Certifications Amid $5.5T Risks
New Enterprise AI Credential Suite and Certified CISO v4 address 700K U.S. reskilling gap as AI risks hit $5.5T globally. Covers adopt, defend, govern for AI threats like prompt injection.
87% of orgs face AI-driven attacks.
AI Uncovers â‚ą70,000 Crore Scam in India via Big Data
AI analyzed 60TB billing data from 1.77L restaurants, detecting deleted bills in massive tax evasion scam. Used ML anomaly detection, Hadoop, Spark for pattern recognition.
Highlights AI role in fraud detection.
Ivanti EPMM Zero-Days Actively Exploited Worldwide
Critical flaws CVE-2026-1281 and CVE-2026-1340 in Ivanti Endpoint Manager Mobile face automated attacks. Ivanti advisory and German warnings issued.
Unit 42 notes widespread exploitation.