Latest Internet & Cybersecurity News
Global Cybersecurity Outlook 2026 Highlights AI as Top Threat
The World Economic Forum's Global Cybersecurity Outlook 2026 reveals 87% of CEOs see AI vulnerabilities as the fastest-growing cyber threat, with 94% viewing AI as key to cybersecurity transformation. Generative AI boosts both defenses and attacks like phishing and deepfakes, while financial sectors face P5.82 billion losses in Philippines from cyberattacks.
Organizations are adopting AI for threat monitoring and fraud detection to counter these risks.
WEF Urges Intelligence Sharing to Combat Port Cyber Threats
Maritime cyber incidents rose 103% in 2025, with exploits on port systems, DoS attacks, and ransomware; WEF calls for collective defense via shared intelligence across ports, logistics, and governments. Siloed approaches fail against lateral threats in interconnected supply chains, especially geopolitically motivated ones.
Collaboration models like Dutch initiatives are essential for resilience in global trade.
FortiGate CVE-2025-59718 Exploited for Stealthy Network Compromises
Threat actors are exploiting FortiGate vulnerability CVE-2025-59718 to achieve stealthy network access, as detailed in Tata's April 21 advisory. Iranian-affiliated APTs target exposed OT like Rockwell Automation via insecure configs and engineering software.
Lateral movement uses GPO and PsExec for maximum disruption in critical infrastructure.
Cifrat Android Malware Spread via Fake Booking.com Updates
New Android malware Cifrat uses phishing with fake Booking.com APK links for multi-stage infection, deploying WebSocket-based RAT with accessibility privileges. This campaign highlights evolving mobile threats in interconnected ecosystems.
Organizations urged to bolster layered defenses against such sophisticated hostile activities.
KRYBIT Ransomware Targets ESXi and NAS for Double Extortion
RaaS group KRYBIT, emerging in 2026, hits Windows ESXi and NAS systems with encryption and exfiltration, using Tor leak sites for pressure on mid-sized victims. Reflects affiliate-driven cybercrime expansion amid inadequate traditional defenses.
Proactive intelligence integration needed to protect operations.
Zero-Day CVE-2026-34621 Enables PDF Attacks on Adobe Reader
Sophisticated PDF exploits via CVE-2026-34621 bypass Adobe Reader security for code execution and system fingerprinting, actively used in the wild. Attackers leverage this zero-day for arbitrary code execution upon file opening.
Escalating threat landscape demands anticipatory security measures.
SMB Cyber Attacks Become 'New Normal' Despite Rising Confidence
North American SMBs report 87% US and 83% Canada confidence in resilience per ESET's 2026 report, even after multiple incidents (91% US, 88% Canada). Leading causes: phishing (27% US), unpatched vulnerabilities (25% US), weak passwords (20% Canada).
Fundamentals like monitoring gaps must be addressed as attacks persist.
Deutsche Bank CEO Notes Rush for Anthropic's Mythos Amid Regulator Scrutiny
Deutsche Bank CEO highlights 'everyone' seeking access to Anthropic's Mythos AI, as ECB and regulators probe banks' preparedness for new cybersecurity risks. This reflects AI's dual role in innovation and threats.
European banks face assessments on AI-related cyber vulnerabilities.
British Hacker Tyler Buchanan Pleads Guilty to $8M US Hacking Scheme
UK hacker Tyler Buchanan admits guilt in multi-million cybercrime causing $8M losses to US organizations. Campaign targeted various US entities in sophisticated attacks.
Highlights ongoing individual threat actor accountability efforts.
Threat Landscape Escalates with AI-Enabled Attacks and Interdependencies
Tata's April 21 advisory warns of sophisticated threats outpacing defenses in interconnected ecosystems, urging layered defenses and anticipatory intelligence. WEF notes reframing cyber resilience for AI attacks and third-party risks.
Global leaders invest 71% in AI per Accenture, with employee AI agent use rising.