Latest Internet & Cybersecurity News
IBM 2026 X-Force Threat Index Reveals Escalating AI-Driven Attacks
IBM's 2026 X-Force Threat Intelligence Index shows a 44% increase in attacks exploiting public-facing applications due to missing authentication and AI-enabled vulnerability discovery. Ransomware groups surged 49% year-over-year, with victim counts up 12%, and supply chain compromises nearly quadrupled since 2020. Manufacturing tops targets at 27.7% of incidents, while North America leads attacked regions at 29%.
Russian Threat Actor Uses AI to Compromise 600+ FortiGate Devices
A Russian-speaking, financially motivated actor leveraged generative AI to breach over 600 FortiGate devices in 55+ countries from January 11 to February 18, 2026. Post-exploitation targeted Active Directory, credential databases, and Veeam Backup servers, indicating ransomware prep. The actor skipped hardened targets, relying on AI for efficiency.
German Rail Operator Deutsche Bahn Suffers Major DDoS Attack
Deutsche Bahn confirmed a significant DDoS attack disrupting digital ticketing and the Navigator app in waves starting Tuesday. Defensive measures stabilized systems by Wednesday, highlighting risks to transport infrastructure.
Cisco Catalyst SD-WAN Zero-Day CVE-2026-20127 Actively Exploited
CVE-2026-20127, an authentication bypass in Cisco SD-WAN Controller/Manager, is exploited in the wild by UAT-8616, allowing admin privileges via rogue peers. Government agencies like CISA, ACSC, and Cyber Centre issued alerts with threat hunting guidance; immediate patching urged.
Group-IB Report: Supply Chain Attacks Top Global Cyber Threat
Group-IB's 2026 High-Tech Crime Trends Report highlights supply chain attacks via vendors, open-source, SaaS, and extensions as dominant, enabling mass downstream access. In META region, phishing targets internet (52%) and financial services (28%), fueling IAB sales of corporate access.
Poland's Energy Infrastructure Hit by Cyber Incident
A December attack compromised Polish wind farms, solar assets, and a power plant using default credentials and exposed interfaces; no outages but access gained. CISA warned U.S. operators to enforce MFA, segment IT/OT, and monitor remote access.
Singapore Telecom Sector Breached in Coordinated Espionage
Chinese-linked actors compromised all four major Singapore telecom providers in an espionage campaign, enabling intelligence collection and sector targeting. Strict identity enforcement recommended to limit lateral movement.
State Actors Weaponize LLMs for Recon and Phishing
Google reports China, Russia, Iran, and North Korea using LLMs to speed reconnaissance, phishing, and infrastructure; Check Point shows AI platforms abused as C2 relays.
Thales Report: Two-Thirds of Companies Lose Track of Data Amid AI Risks
Thales 2026 Data Threat Report finds only 34% of organizations know all data locations, exacerbated by unsecured AI agents wandering freely and cyber risks.
Businesses Rank Cybersecurity as Top Threat Over Tariffs
Zero100 study shows over a third of businesses view cyber incidents as the biggest 2026 continuity threat, surpassing tariffs or geopolitics.
OTI Impact Score Debuts to Measure Industrial Cyber Damage
At S4x26, a new OTI Impact Score rates real-world industrial cyberattack consequences; NVIDIA partners with firms for AI-secured critical infrastructure.