Information Security Magazine

Sygnia observed Chinese cyber campaign dubbed Fire Ant deploying sophisticated techniques to gain full compromise of victim environments, discovering isolated assets

Cisco Talos warned that the Chaos group, thought to be formed of former BlackSuit members, has launched a wave of attacks targeted a variety of sectors

A large-scale malware campaign known as SarangTrap has been observed using fake dating apps to steal personal data, targeting South Korean users

The US FBI has issued public announcements warning families of The Com, an online criminal network involving minors in various illicit activities

Microsoft said Chinese actor Storm-2603 is deploying Warlock ransomware following the exploitation of vulnerabilities in on-prem SharePoint systems

Investigators assessed that the criminal group’s stolen funds amount to €580,000

Wiz believes the active campaign is part of a broader crypto-scam infrastructure, which uses a wide range of exploitation techniques

A series of new cybersecurity regulations related to the water industry have been set out by New York state agencies

The individual is accused of numerous illicit cybercrime and ransomware activities that have generated at least $7m in profit

The French employment agency’s partner web portal has been accessed by a malicious actor

Cognizant handed over a password to the cybercriminal without asking any authentication questions

A joint US government advisory highlighted novel initial access techniques deployed by Interlock, and urged businesses and critical infrastructure to stay vigilant

NCC Group observed a 43% drop in ransomware attacks in Q2 2025, driven by law enforcement actions and internal conflicts in groups

A new wave of phishing attacks exploiting Microsoft 365 OAuth tools has been observed impersonating diplomats to steal access codes

A widespread RFQ scam exploited net payment terms to fraudulently obtain high-value devices

Microsoft has observed three China-based threat actors, Linen Typhoon, Violet Typhoon and Storm-2603, exploiting the SharePoint vulnerabilities

The UK government said a public consultation showed widespread support on a payment ban for public sector and CNI organizations

Despite being a rebrand of several ransomware families, GLOBAL GROUP innovated with the use of an AI chatbot in the negotiation process

ASIC said the financial services firm’s failings led to a data breach impacting nearly 10,000 clients

Abnormal AI found that 96% of security leaders have no plans to reduce the headcount in SOC teams as a result of AI adoption, instead focusing on reallocating roles