Latest Internet & Cybersecurity News
Spanish Police Arrest Anonymous FĂ©nix Members Over DDoS Attacks
Spanish police arrested four members of the hacktivist group Anonymous FĂ©nix for conducting DDoS attacks against government ministries, political parties, and public institutions. Police identified the organization's leadership, including its administrator and moderator, who were apprehended in May 2025 in Madrid and Asturias
.
NATO Approves iPhone and iPad for Classified Information Handling
Apple confirmed that iPhone and iPad devices have received approval for use with classified information in NATO restricted environments. The devices will no longer require special software or settings to handle NATO restricted-level information
.
Escalating Cyber Threats from Iran-Linked Actors Following Military Tensions
Western cybersecurity experts are bracing for potential Iranian cyberattacks as military action in the region escalates. Multiple Iranian-sponsored groups including Charming Kitten, APT33, and MuddyWater are known for sophisticated attacks on critical infrastructure, government, and defense sectors
.
Internet-Facing Edge Systems Absorb Billions of Malicious Sessions
VPNs, routers, and remote access services recorded nearly 3 billion malicious sessions over 162 days in the second half of 2025. This concentration on edge infrastructure reflects attackers' focus on achieving initial access across the public internet
.
Healthcare Sector Ransomware Attacks Surge to 93 Victims in February
Healthcare experienced a dramatic increase in ransomware victimization, jumping from 40 to 93 victims in February 2026. The Qilin ransomware group held the top position among 54 active ransomware groups tracking 680 total victims
.
Local Governments Targeted by Ransomware Through Compromised VPN Access
European municipalities reported IT disruptions from ransomware attacks that exploited compromised VPN access points with weak or reused passwords. Citizen portals, appointment scheduling systems, and document management solutions were affected in multiple incidents
.
Telegram Becomes Primary Channel for Authorized Push Payment Fraud
Encrypted messaging platforms are increasingly used for Authorized Push Payment (APP) fraud, with Telegram representing a growing share of reported cases according to Revolut analysis. The shift demonstrates criminals' adaptation to encrypted communication channels for fraud operations
.
Cloud Misconfiguration Exposes Customer Data at SaaS Provider
A medium-sized SaaS provider in the DACH region suffered unintentional disclosure of a cloud database due to incorrect access configuration in a publicly accessible storage instance. Customer records including email addresses, contract numbers, and support request metadata were exposed
.
Reddit Fined $19.5 Million for Failing to Protect Children's Data
The UK's Information Commissioner's Office fined Reddit $19.5 million for unlawfully using children's personal information. The company exposed minors to inappropriate and harmful content through inadequate data protection practices
.
Microsoft Expands Cloud PC Strategy with ASUS and Dell Hardware Partners
Microsoft announced two new Windows 365 Cloud PC devices—the ASUS NUC 16 and Dell Pro Desktop—scheduled for third quarter 2026 release. The expansion broadens hardware options for Microsoft's cloud-based desktop service across different regions and models
.
Credential Stuffing Attacks Target Major E-Commerce Platforms Systematically
Several major online retailers experienced waves of automated login attempts using known email and password combinations. Attackers prioritized accounts with stored payment data or voucher balances, succeeding where multi-factor authentication was absent
.
Apple Introduces Expanded Age Assurance Tools for App Store Compliance
Apple introduced expanded age assurance tools to help developers comply with new regulations in Brazil, Australia, Singapore, Utah, and Louisiana. The updates, available in beta, expand the Declared Age Range API and related App Store systems
.