Latest Internet & Cybersecurity News
Cyberattack on French Identity Agency Exposes Sensitive Data
A cyberattack on France’s National Agency for Secure Documents (ANTS), detected on April 15, may have exposed login credentials, names, emails, dates of birth, and more for individual and professional accounts. Additional details like postal addresses, phone numbers, and places of birth could also be affected.
The incident raises significant data exposure concerns.
Over 1,300 SharePoint Servers Still Vulnerable to Zero-Day Exploit
More than 1,300 unpatched Microsoft SharePoint servers remain exposed to CVE-2026-32201, a spoofing vulnerability affecting SharePoint 2016, 2019, and Subscription Edition. Despite April Patch Tuesday fixes, fewer than 200 systems are secured, enabling unauthenticated network spoofing attacks.
It's now in CISA's Known Exploited Vulnerabilities catalog with federal patching mandates.
Canada Life Breach Impacts Up to 70,000 Individuals
Canadian insurer Canada Life confirmed a breach exposing names, dates of birth, addresses, gender, and income data of up to 70,000 people via an employee account. The ShinyHunters threat group claimed responsibility by posting details online.
This highlights risks from identity-based attacks for fraud and theft.
South Africa Police Data Breach Sparks National Security Fears
A police data breach in South Africa has raised concerns over national security implications. Details on the scope and compromised data remain limited in reports.
It underscores vulnerabilities in law enforcement systems.
Unauthorized Access Claims Target Mythos AI Controls
Claims of unauthorized access have raised concerns over the security controls of Mythos AI. Specific details on the incident's impact are emerging.
This incident highlights risks in AI system protections.
China Uses Covert Botnets to Mask Cyberattacks
U.S. and allies issued a joint advisory on China-linked actors using covert networks of hacked routers for scaled attacks, including KV Botnet in Volt Typhoon and Raptor Train in Flax Typhoon. Chinese cybersecurity firms reportedly build these for Beijing.
Traditional IP blocklists are less effective against dynamic networks.
Chinese APT Targets Mongolia Government with Cloud Tools
A newly discovered Chinese advanced persistent threat (APT) is abusing multiple cloud tools to spy on Mongolia's government. The campaign focuses on governmental entities.
It demonstrates evolving tactics in state-sponsored espionage.
U.S. Allies Join Advisory on China Botnet Threats
CISA, FBI, NSA, and agencies from Australia, Canada, Germany, Japan, Netherlands, New Zealand, Spain, and Sweden warned of China-nexus cyber actors' strategic botnet use. Past disruptions include Volt Typhoon and Flax Typhoon botnets.
SOHO botnets like LapDog targeted Japan and Taiwan.
ShinyHunters Linked to Canada Life Insurance Hack
Threat group ShinyHunters claimed the Canada Life breach, posting stolen data online after unauthorized employee account access. Up to 70,000 individuals' personal info was compromised.
This continues their pattern of high-profile data thefts.
CISA Adds SharePoint Vulnerability to KEV Catalog
Microsoft's CVE-2026-32201 was added to CISA's Known Exploited Vulnerabilities list, ordering federal agencies to patch urgently. The flaw allows data exposure and unauthorized changes without impacting availability.
Slow patching leaves over 1,300 servers at risk.
China's LapDog SOHO Botnet Hits Japan and Taiwan
The LapDog botnet, a China-linked SOHO network, supported prolonged intrusions against Japan and Taiwan per a June 2025 SecurityScorecard report. It exemplifies vast covert operations.
U.S. Justice Department disrupted similar botnets previously.
Global Concerns Rise Over Router Supply-Chain Risks
FCC banned foreign-made router imports due to supply-chain vulnerabilities exploited in botnets by China and Russia. Russia's military used SOHO routers for hacks, erased by FBI in April.
This intensifies scrutiny on networking equipment security.