Latest Internet & Cybersecurity News
Google Disrupts UNC2814 GRIDTIDE Cyber Espionage Campaign
Google, with industry partners, terminated UNC2814 infrastructure after 53 breaches in 42 countries using Google Sheets API for C2 by this China-nexus group targeting governments and telecoms. The actor, tracked since 2017, affected over 70 countries; Google issued victim notifications and expects re-establishment efforts.
This highlights network edge exploitation in ongoing Chinese intrusions.
Conduent Breach Expands to 25 Million US Victims
The Conduent third-party breach now impacts 25 million Americans, up from 10 million, including SSNs, medical data from state benefits and healthcare programs across 30+ states. Claimed by SafePay ransomware, attackers exfiltrated 8TB over three months, affecting Volvo employees and insurers like Blue Cross.
Victims face long-term identity theft and fraud risks from sensitive data exposure.
IBM Reports 44% Surge in App Exploits Driven by AI
IBM's 2026 X-Force report notes a 44% rise in attacks on public apps due to missing authentication and AI vulnerability scanning, with exploits causing 40% of 2025 incidents. Ransomware groups grew 49%, infostealer malware hit 300K ChatGPT credentials; manufacturing topped targeted sectors.
AI lowers barriers, automating reconnaissance and attacks by nation-states and criminals.
Critical RCE Vulnerabilities Patched in Serv-U, FileZen, Zyxel
Vendors patched critical remote code execution flaws in Serv-U, FileZen, and Zyxel products. AI is aiding hacks on FortiGate devices, major breaches alleged, UK fines issued over age checks, and a zero-day seller jailed.
These updates address widespread risks in networking and file transfer software.
New OTI Impact Score Debuts for Industrial Cyber Incidents
At S4x26, the Operations Technology Incident (OTI) Impact Score launched as a 0-10 'Richter Scale' for OT cyber damage, crowdsourced for objectivity. It scores historical and future incidents to counter sensationalism and aid resource allocation.
NVIDIA partners with Akamai, others on AI for critical infrastructure protection.
27 Attack Scenarios Exposed Vulnerabilities in Top Password Managers
Researchers demonstrated 27 attacks on Bitwarden (12), LastPass (7), Dashlane (6), and 1Password (2), compromising vaults via key escrow, flawed encryption, sharing, and legacy paths. Attacks challenge zero-knowledge claims; vendors are remediating post-disclosure.
Examples include malicious auto-enrollment hijacking user vaults.
Supply Chain Attacks Named Top Global Cyber Threat in 2026
Group-IB's High-Tech Crime Trends Report 2026 declares supply chain attacks dominant, infiltrating vendors, SaaS, and open-source for mass access. In MEA, 80% phishing targets internet/finance; IABs sold 200+ corporate accesses in 2025.
Ransomware hit GCC real estate, finance hardest.
Thales Report: 66% of Companies Lose Track of Data Amid AI Rise
Thales 2026 Data Threat Report reveals only 34% of organizations know all data locations, risking crises as AI accesses unsecured systems. This gap enables unchecked AI wandering in enterprises with hidden sensitive information.
AI transformation heightens visibility and control needs.
CrowdStrike 2026 Report: AI Accelerates Adversaries and Attack Surface
CrowdStrike's 2026 Global Threat Report states AI speeds adversary operations and expands enterprise risks. It details how AI enhances threat actor capabilities across the attack lifecycle.
Enterprises face broader exposure from AI-driven tactics.
Australian Government Releases Cyber Security and Online Safety Draft
In February 2026, Australia drafted unfair trading practices prohibition for TMT, focusing on cyber security and online safety after years of discussion. It aims to regulate practices in telecom, media, and tech sectors.
This advances protections against emerging digital threats.
Infostealer Malware Exposes 300K ChatGPT Credentials
IBM X-Force observed over 300,000 ChatGPT credentials stolen by infostealer malware in 2025. This contributes to rising identity compromises fueling broader attacks.
North America saw increased incidents, leading global cases.