Latest Internet & Cybersecurity News
White House Releases National Cyber Strategy and Executive Order
The White House unveiled President Trump’s National Cyber Strategy emphasizing offensive cyber operations, AI-powered defenses, zero-trust architecture, and securing critical infrastructure. An accompanying Executive Order targets transnational cybercrime, prioritizing prosecutions and anti-scam training. It mandates American AI systems and 72-hour incident reporting for contractors.
Google Dismantles IPIDEA Proxy Network Used by 550+ Threats
Google's Threat Intelligence Group disrupted Ipidea, a Chinese-operated residential proxy network with millions of IPs used for credential stuffing, malware, and state-sponsored ops by China, North Korea, Iran, and Russia. Actions included taking down control infrastructure and sharing intel with platforms and law enforcement. This significantly reduces the proxy pool and impacts resellers.
Apple Rolls Out DarkSword Exploit Protection to More Devices
Apple extended protections against the DarkSword exploit kit, used in espionage and cybercrime, to additional OS versions following public criticism over exposed users. The tool, widely exploited, is now less effective post-patching. This responds to pressure to secure millions of unupgraded devices.
FBI Declares Suspected Chinese Hack of US Surveillance System Major Incident
The FBI classified a suspected Chinese breach of a sensitive internal surveillance system as a major cyber incident, with hackers accessing law enforcement data via a third-party ISP vendor. This poses significant national security risks including PII exposure. Officials highlight the breach's severity.
Critical F5 BIG-IP Flaw CVE-2025-53521 Under Active Exploitation
F5 revised CVE-2025-53521 from DoS to remote code execution risk when APM is configured on virtual servers, with over 17,000 vulnerable IPs detected worldwide. CISA added it to Known Exploited Vulnerabilities catalog, mandating federal remediation by March 30. Exploitation is occurring in the wild.
Cisco Breached via Trivy Supply Chain Attack
Cisco suffered a breach where attackers used stolen credentials from Trivy supply chain compromise to access internal dev environment, exfiltrating source code from 300+ GitHub repos including AI projects. Linked to PCP group targeting developers, Cisco contained it and rotated credentials.
FTC Acts Against OkCupid for Sharing User Data with Third Party
The FTC enforced against OkCupid and Match Group for deceiving users by sharing photos, location, and personal data with unauthorized third parties, violating privacy policies. This highlights ongoing scrutiny of dating app data practices. Contractors face new AI security clauses amid pushback.
72% of Workers Say AI Fuels Rise in Phishing Attacks
A Sagiss survey of 1,000+ US employees found 72% believe AI enhances phishing by personalizing and automating attacks, bypassing filters and risking breaches. Concerns include financial losses and reputational damage. AI-powered campaigns have hit 344 organizations via Microsoft OAuth tokens.
Cybersecurity M&A Surges with 38 Deals and $3.8B Financing in Q1 2026
Cybersecurity saw 33% YoY financing growth to $3.8B in Q1, with 108 M&A deals including Airbus, Cellebrite, Databricks, Rapid7, and OpenAI. Four new unicorns emerged amid rising threats. Momentum signals strong investor confidence.
Iran Conflict Escalates Cyber Threats to US Energy Infrastructure
Intensifying Iran conflict raises cyber risks to US energy sector from Iranian hackers and proxies, beyond limited strikes like Stryker attack. Trump admin urges enhanced defenses despite downplaying imminent threats. Historical investments heighten concerns.
Critical Vulnerability Found in Claude Code After Source Leak
Anthropic's Claude Code source leaked, followed days later by a critical vulnerability discovered by Adversa AI. This underscores rapid risks in AI model releases. Cisco also patched critical bugs for auth bypass and RCE.
Crypto Platform Drift Suspends After Multi-Million Theft
DeFi platform Drift halted services post-cyberattack stealing hundreds of millions in crypto. US charged Uranium hacker for $55M exploit shutting down the exchange. strongSwan VPN flaw enables crashes via integer underflow.