Latest Internet & Cybersecurity News

đź“…February 24, 2026 at 1:00 PM
AI-enabled cyberattacks surge 89%, critical infrastructure targeted by state actors, major data breaches and ransomware incidents disrupt healthcare and payment systems globally.
1

CrowdStrike Reports 89% Surge in AI-Enabled Cyberattacks

AI-powered cyberattacks increased dramatically in 2025, with threat actors using machine learning and large language models to optimize attack techniquesSource 6Source 9. Adversaries exploited legitimate GenAI tools at over 90 organizations by injecting malicious prompts to steal credentials and cryptocurrency, while also targeting AI development platforms to establish persistence and deploy ransomwareSource 6.

2

Chinese and Iranian Hackers Target US Critical Infrastructure

Dragos cybersecurity firm announced on February 17 that Chinese and Iranian state-linked advanced persistent threat groups are attempting to infiltrate US critical infrastructure, including threat actors Voltzite, Sylvanite, Azurite, and suspected Iranian group PyroxeneSource 1. These groups are associated with Volt Typhoon operations that continue despite previous US government warnings and FBI claims of shutting down the group's activitiesSource 1.

3

CISA Orders Emergency Patch for Exploited Dell Vulnerability

CISA ordered US federal agencies to patch an actively exploited Dell RecoverPoint vulnerability (CVE-2026-22769) within three days, with suspected Chinese-linked threat actors exploiting the hardcoded credential flaw since mid-2024Source 2. The attack deployed a backdoor called Grimbolt and other malware, allowing persistent unauthorized access to VMware VM backup and recovery environmentsSource 2.

4

Mississippi Medical Center Hit by Ransomware, Clinics Close

A ransomware attack knocked out critical IT systems at the University of Mississippi Medical Center (UMMC), forcing closure of all statewide clinics and cancellation of elective proceduresSource 2. The attack disrupted electronic medical records platforms, with hospitals reverting to manual workflows while the FBI and federal authorities investigateSource 2.

5

Russian Hacker Breaches 600+ Fortinet Firewalls Using AI

A Russian-speaking threat actor breached more than 600 Fortinet FortiGate firewalls across 55 countries over five weeks using generative AI rather than exploitsSource 2. The attacker targeted exposed management interfaces and weak credentials without multi-factor authentication, then leveraged AI tools to automate lateral movement and access propagationSource 2.

6

Former Google Engineer Convicted of Stealing AI Trade Secrets for China

A former Google software engineer was convicted on January 29 of seven counts of economic espionage and seven counts of theft of trade secrets for stealing information on artificial intelligenceSource 5. The engineer stole 2,000 pages of confidential information related to Google's AI and uploaded it to a personal Google Cloud accountSource 5.

7

Betterment Breach Exposes 1.4 Million Customer Accounts

Fintech company Betterment confirmed a breach of its internal systems resulting in unauthorized access and exposure of 1.4 million customer accounts, including email and personal dataSource 3. The incident underscores how credential theft and unauthorized access remain major operational vectors, increasing phishing, identity theft, and fraud risks against downstream servicesSource 3.

8

State-Backed 'Shadow Campaigns' Compromise Networks in 155 Countries

Researchers reported a state-linked threat group (tracked as TGR-STA-1030/UNC6619) conducted global operations spanning reconnaissance and compromise activity across networks in 155 countries with at least 70 confirmed compromisesSource 3. The campaigns targeted critical government, finance, energy, and diplomatic agencies, combining reconnaissance, credential theft, and lateral trust exploitationSource 3.

9

PayPal Users Affected by Data Breach Exposed for Months

PayPal identified faulty code that exposed personal information of users in mid-December, with the company subsequently sending breach notifications, resetting passwords, and offering credit monitoringSource 2. The exposure of high-value identity attributes introduces elevated risk for targeted fraud and identity theftSource 2.

10

Russian Hackers Exploit Recently Patched Microsoft Office Zero Day

Ukraine's CERT-UA reported that Russian-linked hackers are actively exploiting a recently patched Office zero day (CVE-2026-21509) via malicious documents in targeted campaignsSource 3. The vulnerability was patched in late January, but exploit activity persisted, showing how attackers rapidly weaponize fresh disclosures before widespread patching occursSource 3.

11

FBI Launches Operation Winter SHIELD for Cyber Resilience

The FBI launched Operation Winter SHIELD, a cyber resilience campaign considering private industry an active partner in defending the nation's digital infrastructureSource 5. The initiative outlines 10 actions organizations can take to reduce cyber risk based on real-world investigations and adversary tacticsSource 5.

12

Telecom Companies Face Rising Ransomware Threat, Warn DHS and FCC

The Public Safety and Homeland Security Bureau and Federal Communications Commission issued a joint alert warning telecom providers of increasing ransomware attacks, with particular concern for small and midsize companiesSource 5. The alert urges telecom companies to patch systems, enable multi-factor authentication, back up data, and monitor for supply chain vulnerabilitiesSource 5.

Back to News