65% of Leading AI Companies Found With Verified Secrets Leaks
A new study has revealed 65% of top AI firms have leaked sensitive data on GitHub, risking $400bn in assets
Information Security Magazine
China-Aligned UTA0388 Uses AI Tools in Global Phishing Campaigns
1 week ago
Volexity has linked spear phishing operations to China-aligned UTA0388 in new campaigns using advanced tactics and LLMs
New NCA Campaign Warns Men Off Crypto Investment Scams
1 week ago
The UK’s National Crime Agency is warning men under 45 that crypto dreams can soon become a scam nightmare
NCSC Set to Retire Web Check and Mail Check Tools
1 week ago
The UK’s National Cyber Security Centre has urged users of its Web Check and Mail Check services to find alternatives
Russian Hacking Group Sandworm Deploys New Wiper Malware in Ukraine
1 week 3 days ago
Sandworm deployed data wipers against Ukrainian governmental entities and companies in the energy, logistics and grain sectors
“I Paid Twice” Phishing Campaign Targets Booking.com
1 week 4 days ago
Experts have uncovered large-scale phishing exploiting Booking.com, Airbnb and Expedia accounts, targeting hotels and customers
Multi-Turn Attacks Expose Weaknesses in Open-Weight LLM Models
1 week 4 days ago
A new Cisco report exposed large language models to multi-turn adversarial attacks with 90% success rates
Hacktivist-Driven DDoS Dominates Attacks on Public Sector
1 week 4 days ago
ENISA report reveals DDoS accounted for 60% of public sector security incidents last year
AI-Enabled Malware Now Actively Deployed, Says Google
1 week 4 days ago
Google warns of “just-in-time AI” malware using LLMs to evade detection and generate malicious code on-demand
Google Forecasts Rise of Cyber-Physical Attacks Targeting Europe in 2026
1 week 4 days ago
Europe will likely face a combination of heightened cyber-physical attacks and information operations coming from nation-state groups in 2026
Operation Chargeback Uncovers €300m Fraud Scheme in 193 Countries
1 week 5 days ago
Operation “Chargeback” has dismantled global fraud networks misusing stolen card data from more than 4.3 million victims
UNK_SmudgedSerpent Targets Academics With Political Lures
1 week 5 days ago
A previously unknown cyber actor UNK_SmudgedSerpent has been observed targeting academics with phishing and malware, merging techniques from Iranian groups
Claude Desktop Extensions Vulnerable to Web-Based Prompt Injection
1 week 5 days ago
Three of Anthropic’s Claude Desktop extensions were vulnerable to command injection – flaws that have now been fixed
SMS Fraud Losses Set to Decline 11% in 2026
1 week 5 days ago
Juniper Research predicts a $9bn drop in losses to SMS fraud next year
Hundreds of Malware-Laden Apps Downloaded 42 Million Times From Google Play
1 week 5 days ago
Zscaler estimates 239 malicious Android apps made it onto the official Play store over the past year
French Police Seize €1.6m Amid Crypto Scam Network Crackdown
1 week 6 days ago
Nine alleged crypto scammers arrested in Cyprus, Germany and Spain
OpenAI Assistants API Exploited in 'SesameOp' Backdoor
1 week 6 days ago
Instead of relying on more traditional methods, the backdoor exploits OpenAI’s Assistants API for command-and-control communications
Scattered Spider, ShinyHunters and LAPSUS$ Form Unified Collective
1 week 6 days ago
Scattered Spider, ShinyHunters and LAPSUS$ have formed an enhanced coordinated threat network for extortion efforts
DragonForce Cartel Emerges as Conti-Derived Ransomware Threat
1 week 6 days ago
DragonForce, a ransomware group using Conti’s code, has adopted a cartel model to expand and recruit
Identity Is Now the Top Source of Cloud Risk
1 week 6 days ago
ReliaQuest data reveals identity issues were responsible for 44% of cloud security alerts in Q3
Checked
7 hours 33 minutes ago