2/10/2026 February 11, 2026February 11, 2026 ~ The Cyber Beat ~ Leave a comment DPRK Operatives Impersonate Professionals on LinkedIn to Infiltrate CompaniesNorth Korean Hackers Use New macOS Malware in Crypto-Theft Attacks“Digital Parasite” Warning as Attackers Favor Stealth for ExtortionWhite House to Meet With GOP Lawmakers on FISA Section 702 RenewalCyber Command, NSA Nominee Rudd Advances to Senate FloorBritish Army Splashes $86M on AI Gear to Speed up the Battlefield Kill ChainFugitive Behind $73M ‘Pig Butchering’ Scheme Gets 20 Years in PrisonGoogle Secures EU Antitrust Approval for $32 Billion Wiz AcquisitionMicrosoft Announces New Mobile-Style Windows Security ControlsNearly 17,000 Volvo Staff Dinged in Supplier BreachPhorpiex Phishing Delivers Low-Noise Global Group RansomwareNew Mobile Spyware ZeroDayRAT Targets Android and iOSMalicious 7-Zip Site Distributes Installer Laced With Proxy ToolReynolds Ransomware Embeds BYOVD Driver to Disable EDR Security ToolsNew Linux Botnet SSHStalker Uses Old-School IRC for C2 CommsFortinet Patches Critical SQLi Flaw Enabling Unauthenticated Code ExecutionKrebs: Patch Tuesday, February 2026 EditionMicrosoft Is Keeping Secure Boot Alive With Windows UpdatesWhat Organizations Need to Change When Managing Printers
2/9/2026 February 9, 2026February 9, 2026 ~ The Cyber Beat ~ Leave a comment China-Linked UNC3886 Targets Singapore Telecom Sector in Cyber Espionage CampaignBloody Wolf Targets Uzbekistan, Russia Using NetSupport RAT in Spear-Phishing CampaignSenegal Confirms Breach of National ID Card Department After Ransomware ClaimsEU, Dutch Government Announce Hacks Following Ivanti Zero-DaysEuropean Commission Discloses Breach That Exposed Staff DataLeaked Technical Documents Show China Rehearsing Cyberattacks on Neighbors’ Critical InfrastructureIran’s Digital Surveillance Machine Is Almost CompleteAI Is Here to Replace Nuclear Treaties. Scared Yet?Researchers Find 40,000+ Exposed OpenClaw InstancesSocial Media Platforms Earn Billions from Scam AdsHacked, Leaked, Exposed: Why You Should Never Use Stalkerware AppsTwo Connecticut Men Charged In Alleged $3m Gambling Fraud SchemeHackers Breach SmarterTools Network Using Flaw in Its Own SoftwareSolarWinds Web Help Desk Exploited for RCE in Multi-Stage Attacks on Exposed ServersDiscord Faces Backlash Over Age Checks After Data Breach Exposed 70,000 IDsPayment Tech Provider for Texas, Florida Governments BridgePay Working With FBI to Resolve Ransomware AttackSuspected Sabotage Disrupts Trains in Northern Italy as Winter Games BeginTeamPCP Worm Exploits Cloud Infrastructure to Build Criminal InfrastructureVoidLink Malware Exhibits Multi-Cloud Capabilities and AI CodeNew Zero-Click Flaw in Claude Desktop Extensions, Anthropic Declines FixBeyondTrust Warns of Critical RCE Flaw in Remote Support SoftwareMicrosoft: Exchange Online Flags Legitimate Emails as PhishingRussia Grants Asylum to Spanish Professor Wanted for Alleged Pro-Moscow Cyber Operations
2/6-8/2026 February 9, 2026February 9, 2026 ~ The Cyber Beat ~ Leave a comment German Agencies Warn of Signal Phishing Targeting Politicians, Military, JournalistsNorwegian Intelligence Discloses Country Hit by Salt Typhoon CampaignUnsettled Cyber Intel Law Erodes Private-Sector TrustU.S. Software Stocks Slammed on Mounting Fears Over AI Disruption, Lose $1 Trillion in WeekNYC Explores Using AI Cameras to Spot Subway Fare EvadersEU Says TikTok Faces Large Fine Over “Addictive Design”Illinois Man Pleads Guilty to Hacking Nearly 600 Women’s Snapchat AccountsDKnife: Chinese-Made Malware Kit Targets Chinese-Based Routers and Edge DevicesFlickr Emails Users About Data Breach, PINs It on 3rd PartyPayments Platform BridgePay Confirms Ransomware Attack Behind OutageCompromised dYdX npm and PyPI Packages Deliver Wallet Stealers and RAT MalwareCISA Warns of SmarterMail RCE Flaw Used in Ransomware AttacksOpenClaw Integrates VirusTotal Scanning to Detect Malicious ClawHub SkillsNew Tool Blocks Imposter Attacks Disguised as Safe Commands
2/5/2026 February 5, 2026February 5, 2026 ~ The Cyber Beat ~ Leave a comment Infy Hackers Resume Operations with New C2 Servers After Iran Internet Blackout EndsProtests Don’t Impede Iranian Spying on Expats, Syrians, IsraelisRussian Hackers Attacking European Maritime and Transport Orgs Using Microsoft Office ExploitAsia-Based Government Spies TGR-STA-1030 Quietly Broke Into Critical Networks Across 37 CountriesICE and CBP’s Face-Recognition App Can’t Actually Verify Who People AreSmartphones Now Involved in Nearly Every Police InvestigationAI-Enabled Voice and Virtual Meeting Fraud Surges 1000%+UNICEF Calls for Criminalization of AI Content Depicting Child Sex AbuseDark Patterns Undermine Security, One Click at a TimeCISA Gives Federal Agencies One Year to Rip Out End-Of-Life DevicesSpain’s Ministry of Science Shuts Down Systems After Breach ClaimsRomanian Oil Pipeline Operator Conpet Discloses CyberattackItalian University la Sapienza Goes Offline After CyberattackSubstack Data Breach Exposed Users’ Emails and Phone NumbersData Breach at Govtech Giant Conduent Balloons, Affecting Millions More AmericansBetterment Breach May Expose 1.4m Users After Social Engineering AttackZendesk Spam Wave Returns, Floods Users With ‘Activate Account’ EmailsAISURU/Kimwolf Botnet Launches Record-Setting 31.4 Tbps DDoS AttackRansomware Gang Uses ISPsystem VMs for Stealthy Payload DeliveryMalicious Commands in GitHub Codespaces Enable RCE
2/4/2026 February 5, 2026February 5, 2026 ~ The Cyber Beat ~ Leave a comment U.S. Used Cyber Weapons to Disrupt Iranian Air Defenses During 2025 StrikesUkraine Tightens Controls on Starlink Terminals to Counter Russian DronesItaly Foiled Russia-Linked Cyberattacks on Embassies, Olympic Sites, Minister Says…How 2026 Winter Olympics Security Is Preparing for the Opening CeremonyChina-Linked Amaranth-Dragon Exploits WinRAR Flaw in Espionage CampaignsOpenClaw’s AI ‘Skill’ Extensions Are a Security NightmareMicrosoft Develops Scanner to Detect Backdoors in Open-Weight Large Language ModelsGoogle Cloud’s Customer Chief Returns to Microsoft as Head of SecurityWith AI Accountability Stalling, Boards Must Push Tech Giants for Greater TransparencySuper Bowl Prepares for Potential AI Cybersecurity ThreatOwner of Incognito Dark Web Drugs Market Gets 30 Years in PrisonDragonForce Ransomware Gang Goes Full ‘Godfather’ With CartelHackers Compromise NGINX Servers to Redirect User TrafficCoinbase Confirms Insider Breach Linked to Leaked Support Tool ScreenshotsCybercrime Group Claims Responsibility for Penn Email Hack, Leaks Additional Internal Files…Hackers Publish Personal Information Stolen During Harvard, UPenn Data BreachesMicrosoft Warns Python Infostealers Target macOS via Fake Ads and InstallersGlobal SystemBC Botnet Found Active Across 10,000 Infected SystemsNew Technical Markers Reveal Expanding ShadowSyndicate Cybercriminal InfrastructureEDR Killer Tool Uses Signed Kernel Driver From Forensic SoftwareNitrogen Ransomware Is So Broken Even the Crooks Can’t Unlock Your FilesCISA Warns of Five-Year-Old GitLab Flaw Exploited in AttacksCISA: VMware ESXi Flaw Now Exploited in Ransomware AttacksCritical n8n Flaws Disclosed Along With Public Exploits
2/3/2026 February 3, 2026February 5, 2026 ~ The Cyber Beat ~ Leave a comment Notepad++ Hosting Breach Attributed to China-Linked Lotus Blossom Hacking GroupRussian Hackers Weaponize Microsoft Office Bug in Just 3 DaysPoland Detains Defense Ministry Employee on Suspicion of Spying for RussiaU.S. Senator Says AT&T, Verizon Blocking Release of Salt Typhoon Security Assessment ReportsCISA Official Says CIRCIA Cyber Reporting Update Is ‘Weeks’ AwayCISA Updated Ransomware Intel on 59 Bugs Last Year Without Telling DefendersTrump Administration Eyes 10-Year Extension of Cybersecurity LawHow Data Brokers Can Fuel Violence Against Public ServantsX Marks the Raid: French Cops Swoop on Musk’s Paris Ops…UK ICO Launches Investigation into X Over AI Generated Non-Consensual Sexual ImageryUK Investigating First Suspected Breach of Cyber SanctionsPolish Cops Bail 20-Year-Old Bedroom Botnet OperatorVaronis to Acquire AllTrue as AI Security Concerns MountOpenAI CEO Altman Dismisses Moltbook as Likely Fad, Backs the Tech Behind It…The Rise of Moltbook Suggests Viral AI Prompts May Be the Next Big Security ThreatIron Mountain: Data Breach Mostly Limited to Marketing MaterialsStep Finance Says Compromised Execs’ Devices Led to $40M Crypto TheftNew Password-Stealing Phishing Campaign Targets Corporate Dropbox CredentialsWave of Citrix NetScaler Scans Use Thousands of Residential ProxiesResearchers Warn of New “Vect” RaaS VariantDockerDash Exposes AI Supply Chain Weakness In Docker’s Ask GordonCritical React Native Metro Dev Server Bug Under Attack as Researchers Scream Into the Void…Hackers Exploit Metro4Shell RCE Flaw in React Native CLI npm PackageCISA Flags Critical SolarWinds RCE Flaw as Exploited in AttacksSQL Injection Flaw Affects 40,000 WordPress Sites8-Minute Access: AI Accelerates Breach of AWS EnvironmentMicrosoft Finally Sends TLS 1.0 and 1.1 to the Cloud Retirement HomeCalifornia City Turns off Flock Cameras After Company Shared Data Without AuthorizationMozilla Adds One-Click Option to Disable Generative AI Features in FirefoxSpain Will Ban Social Media for Kids Under 16
2/2/2026 February 2, 2026February 2, 2026 ~ The Cyber Beat ~ Leave a comment Fancy Bear Exploits Microsoft Office Flaw in Ukraine, EU Cyber-AttacksNotepad++ Updates Got Hijacked for Months and Could Have Spied for ChinaSpyware Maker Is Hijacking Diplomatic Efforts to Limit Commercial Hacking, Civil Society WarnsFrom Clawdbot to Moltbot to OpenClaw: Meet the AI Agent Generating Buzz and Fear Globally…OpenClaw Bug Enables One-Click Remote Code Execution via Malicious Link…Malicious MoltBot Skills Used to Push Password-Stealing Malware…Researchers Find 341 Malicious ClawHub Skills Stealing Data from OpenClaw UsersExposed Moltbook Database Let Anyone Take Control of Any AI Agent on the SiteHackers Recruit Unhappy Insiders to Bypass Data SecurityDrone Sightings Have Doubled Near UK Military Bases, Warns British GovernmentKrebs: Please Don’t Feed the Scattered Lapsus ShinyHuntersHackers Attempt to Extort Parents After School Refuses to Pay Ransom FeeStopICE Hacked to Send Alarming Text Messages, Admins Accuse Border Patrol Agent of SabotagePanera Bread Breach Impacts 5.1 Million Accounts, Not 14 Million CustomersMcDonald’s Is Not Lovin’ Your BigMac, Happy Meal, and McNuggets McPasswordsNationStates Confirms Data Breach, Shuts Down Game SiteOpen VSX Supply Chain Attack Used Compromised Dev Account to Spread GlassWormMicrosoft Begins NTLM Phase-Out With Three-Stage Plan to Move Windows to KerberosNSA Publishes New Zero Trust Implementation GuidelinesNetherlands Latest European Country to Mull Social Media Ban for Children
1/30-2/1/2026 February 2, 2026February 2, 2026 ~ The Cyber Beat ~ Leave a comment Labyrinth Chollima Evolves into Three North Korean Hacking GroupsChina-Linked UAT-8099 Targets IIS Servers in Asia with BadIIS SEO MalwareRedKitten: New AI-Developed Malware SloppyMIO Campaign Targets Iranian ProtestsI Mocked the Saudi Leader on YouTube – Then My Phone Was Hacked and I Was Beaten up in LondonInformant Told FBI That Jeffrey Epstein Had a ‘Personal Hacker’Ex-Google Engineer Convicted for Stealing AI Secrets for China StartupCoupang CEO Questioned by Police Investigating Obstruction of Probe Into Data BreachThoma Bravo Explores Sale of Identity Software Firm Imprivata, Sources SayOperation Switch Off Dismantles Major Pirate TV Streaming ServicesDepartment of Justice Seizes Domains for Bulgarian Piracy SitesCrypto Wallets Received a Record $158 Billion in Illicit Funds Last YearNew Britain (CT) ‘Network Disruption’ Was Due to Ransomware Attack, Mayor SaysMandiant Finds ShinyHunters-Style Vishing Attacks Stealing MFA to Breach SaaS PlatformsCloud Storage Payment Scam Floods Inboxes With Fake RenewalsNational Crime Agency and NatWest Issue Joint Warning Over Invoice Fraud ThreatExposed MongoDB Instances Still Targeted in Data Extortion AttacksResearcher Reveals Evidence of Private Instagram Profiles Leaking PhotosResearchers Uncover Chrome Extensions Abusing Affiliate Links and Stealing ChatGPT AccessSmarterMail Fixes Critical Unauthenticated RCE Flaw with CVSS 9.3 ScoreNew Apple Privacy Feature Limits Location Tracking on iPhones, iPadsAI Security Startup CEO Posts a Job. Deepfake Candidate Applies, Inner Turmoil Ensues.Open-Source AI Is a Global Security Nightmare Waiting to Happen, Say Researchers
1/29/2026 January 29, 2026January 29, 2026 ~ The Cyber Beat ~ Leave a comment Latvia Says Russia Remains Its Top Cyber Threat as Attacks Hit Record HighRussian ELECTRUM Tied to December 2025 Cyber Attack on Polish Power GridOperation Winter SHIELD: FBI Issues Call to Arms for Organizations to Improve CybersecurityGoogle Disrupts Extensive Residential Proxy Networks IPIDEARansomware Victim Numbers Rise, Despite Drop in Active Extortion GroupsHow Can CISOs Respond to Ransomware Getting More Violent?Patch or Perish: Vulnerability Exploits Now Dominate IntrusionsAn AI Toy Exposed 50,000 Logs of Its Chats With Kids to Anyone With a Gmail AccountOpen-Source AI Models Vulnerable to Criminal Misuse, Researchers WarnU.S. Software Stocks Slump as AI Disruption Fears Take OverICE Is Using Palantir’s AI Tools to Sort Through TipsItaly’s Winter Games Security Plan Keeps U.S. ICE in Advisory RoleCybersecurity Teams Embrace AI, Just Not at the Scale Marketing SuggestsAV Vendor eScan Goes to War With Security Shop Morphisec Over Update Server ScareFrance Fines National Employment Agency €5m Over 2024 Data BreachCyberattack on Large Russian Bread Factory The Vladimir Bread Factory Disrupts Supply DeliveriesShinyHunters Swipes Right on 10M Records in Alleged Dating App Match Group Data Grab…Match Group Breach Exposes Data from Hinge, Tinder, OkCupid, and MatchContractor Data Breach at TriZetto Provider Solutions May Have Exposed the Protected Health Info of Thousands of Central OregoniansFintech Marquis Blames Ransomware Breach on SonicWall Cloud Backup HackInitial Access Hackers TA584 Switch to Tsundere Bot for Ransomware AttacksResearchers Find 175,000 Publicly Exposed Ollama AI Servers Across 130 CountriesHugging Face Abused to Spread Thousands of Android Malware VariantsAisuru Botnet Sets New Record with 31.4 Tbps DDoS AttackIvanti Warns of Two EPMM flaws Exploited in Zero-Day AttacksGoogle Rolls Out Android Theft Protection Feature UpdatesNew Apple Feature Will Block Cell Networks From Capturing Precise Location DataNew Microsoft Teams Feature Will Let You Report Suspicious CallsNSA Pick Champions Foreign Spying Law as Nomination Advances
1/28/2026 January 28, 2026January 28, 2026 ~ The Cyber Beat ~ Leave a comment Cyberattack on Polish Energy Grid Impacted Around 30 FacilitiesRansomware Crims Forced to Take Off-RAMP as FBI Seizes ForumVirginia Man & Empire Cybercrime Market Owner, with Partner from Florida, Pleads Guilty to Drug ConspiracyTeen Swatting Suspects Arrested in Hungary and RomaniaSlovakian Man Pleads Guilty to Operating Darknet MarketplaceOpenAI’s ChatGPT’s Ad Costs Are on Par With Live NFL BroadcastsEx-Palantir Engineer Raises $40 Million for Cyber Startup Outtake, With Backing From Microsoft CEO NadellaTrump’s Acting Cybersecurity Chief Madhu Gottumukkala Uploaded Sensitive Government Docs to ChatGPTeScan Confirms Update Server Breached to Push Malicious UpdateEmojis in PureRAT’s Code Point to AI-Generated Malware CampaignHackers Hijack Exposed LLM Endpoints in Bizarre Bazaar OperationFake Moltbot AI Coding Assistant on VS Code Marketplace Drops MalwareAutonomous System Uncovers Long-Standing OpenSSL FlawsSolarWinds Warns of Critical Web Help Desk RCE, Auth Bypass FlawsCritical and High Severity n8n Sandbox Flaws Allow RCEUK Leaders Warned Country Risks ‘Absorbing’ Cyber and Hybrid Attacks Without Offensive DeterrenceFTC Commissioner Says Online Age Verification ‘Offers a Better Way’ to Protect Kids
1/27/2026 January 27, 2026January 27, 2026 ~ The Cyber Beat ~ Leave a comment Chinese Mustang Panda Hackers Deploy Infostealers via CoolClient BackdoorPeckBirdy Framework Tied to China-Aligned Cyber CampaignsExperts Detect Pakistan-Linked Cyber Campaigns Aimed at Indian Government EntitiesOver 80% of Ethical Hackers Now Use AIRevealed: Leaked Chats Expose the Daily Life of a Scam Compound’s Enslaved WorkforceHe Leaked the Secrets of a Southeast Asian Scam Compound. Then He Had to Get Out AliveWhatsApp’s New ‘Lockdown’ Settings Add Another Layer of Protection Against CyberattacksFrance to Replace U.S. Videoconferencing Wares With Unfortunately Named Sovereign AlternativePrivate Equity Firm Audax Group Seeks Over $1.5 Billion for BlueCat NetworksU.S. Charges 31 More Suspects Linked to Tren de Aragua ATM Malware AttacksChinese Money Launderers Moved More Than $16 Billion of Illicit Crypto in 2025, Report FindsLet Them Eat Sourdough: ShinyHunters Claims Panera Bread as Stolen Credentials VictimNike Investigates Data Breach After Extortion Gang Leaks FilesRussian Security Systems Firm Delta Hit by Cyberattack, Services DisruptedRansomware Attacks Hits Winona County (MN)Have I Been Pwned: SoundCloud Data Breach Impacts 29.8 Million AccountsNew Malware Service ‘Stanley’ Guarantees Phishing Extensions on Chrome Web StoreWinRAR Path Traversal Flaw Still Exploited by Numerous HackersFortinet Blocks Exploited FortiCloud SSO Zero Day Until Patch is readyPyodide Sandbox Escape Enables Remote Code Execution in Grist-CoreCritical Sandbox Escape Flaw Found in Popular vm2 NodeJS LibraryCritical Grist-Core Vulnerability Allows RCE Attacks via Spreadsheet FormulasUK Plans Sweeping Overhaul of Policing Amid Surge in Online Crimes
1/26/2026 January 26, 2026January 26, 2026 ~ The Cyber Beat ~ Leave a comment Krebs: Who Operates the Badbox 2.0 Botnet?Deepfake ‘Nudify’ Technology Is Getting Darker—And More DangerousEU Launches Investigation Into X Over Grok-Generated Sexual Images2025 Was a Wake-up Call to Protect Human Decisions, Not Just SystemsCISA Releases List of Post-Quantum Cryptography Product CategoriesUpwind Raises $250 Million to Expand Cloud SecurityLaw Firm Investigates Coupang Security Failures Ahead of Class Action DeadlineGoogle Agrees to Pay $68 Million to Settle Voice Recording LawsuitJudge Awards British Critic of Saudis $4.1 Million, Finds the Regime Hacked His DevicesIndian Users Targeted in Tax Phishing Campaign Delivering Blackmoon MalwareNew ClickFix Attacks Abuse Windows App-V Scripts to Push MalwareeScan Antivirus Supply Chain Breach Delivers Signed MalwareResearchers Uncover “Haxor” SEO Poisoning MarketplaceCloudflare Misconfiguration Behind Recent BGP Route LeakHackers Can Bypass npm’s Shai-Hulud Defenses via Git DependenciesMicrosoft Patches Actively Exploited Office Zero-Day VulnerabilitySupreme Court to Hear Facebook Pixel Tracking CaseRomania Probes Two Suspects Over Alleged Hitman-For-Hire Website
1/23-25/2026 January 25, 2026January 25, 2026 ~ The Cyber Beat ~ Leave a comment New DynoWiper Malware Used in Attempted Sandworm Attack on Polish Power SectorKonni Hackers Target Blockchain Engineers With AI-Built MalwareMillions of People Imperiled Through Sign-in Links Sent by SMSGmail’s Spam Filter and Automatic Sorting Are BrokenRing Can Verify Videos Now, but That Might Not Help You With Most AI FakesTikTok Forms U.S. Joint Venture to Continue Operations Under 2025 Executive OrderU.S. to Deport Venezuelans Who Emptied Bank ATMs Using MalwareUK Border Tech Budget Swells by £100M as Home Office Targets Small Boat CrossingsGermany Expels Russian Diplomat Accused of Spying on Ukraine War EffortChina Investigates Top General Zhang Youxia in Rare Purge of Senior Military LeadersU.S. Storm Leaves 850,000 Without Power, Forces 10,000 Flight CancellationsMulti-Stage Phishing Campaign Targets Russia with Amnesia RAT and RansomwareCyberattack Disrupts Digital Systems at Renowned Dresden Museum Network149 Million Usernames and Passwords Exposed by Unsecured DatabaseShinyHunters Claims Okta Customer Breaches, Leaks Data Belonging to 3 OrgsNike Probing Potential Security Incident as Hackers Threaten to Leak DataPhishing Attack Uses Stolen Credentials to Install LogMeIn RMM for Persistent AccessMalicious AI Extensions on VSCode Marketplace Steal Developer DataFortinet Confirms Critical FortiCloud Auth Bypass Not Fully PatchedCISA Updates KEV Catalog with Four Actively Exploited Software VulnerabilitiesCISA Adds Actively Exploited VMware vCenter Flaw CVE-2024-37079 to KEV CatalogHackers Get $1,047,000 for 76 Zero-Days at Pwn2Own Automotive 2026
1/22/2026 January 22, 2026January 22, 2026 ~ The Cyber Beat ~ Leave a comment From a Whisper to a Scream: Europe Frets About Overreliance on U.S. TechRisky Chinese Electric Buses Spark Aussie Gov’t ReviewSpanish Judge Closes NSO Group Spyware Probe Due to Lack of Cooperation From IsraelClaude’s New AI File-Creation Feature Ships With Security Risks Built InCrims Compromised Energy Firms’ Microsoft Accounts, Sent 600 Phishing EmailsMicrosoft Teams to Add Brand Impersonation Warnings to Calls1Password Is Introducing a New Phishing Prevention FeatureHouse of Lords Backs Legislation to Ban Social Media for Children Under 16Bank of England: Financial Sector Failing to Implement Basic Cybersecurity ControlsOver 160,000 Companies Notify Regulators of GDPR BreachesEurope’s GDPR Cops Dished Out €1.2B in Fines Last Year as Data Breaches Piled UpINC Ransomware Opsec Fail Allowed Data Recovery for 12 U.S. OrgsHackers Breach Fortinet FortiGate Devices, Steal Firewall Configs…Fortinet Firewalls Hit With Malicious Configuration ChangesJordan Used Cellebrite Phone-Hacking Tools Against Activists Critical of Gaza War, Report FindsOkta SSO Accounts Targeted in Vishing-Based Data Theft AttacksNew Osiris Ransomware Emerges as New Strain Using POORTRY Driver in BYOVD AttackCritical GNU InetUtils telnetd Flaw Lets Attackers Bypass Login and Gain Root AccessMalicious PyPI Package Impersonates SymPy, Deploys XMRig Miner on Linux HostsSmarterMail Auth Bypass Exploited in the Wild Two Days After Patch ReleaseRealHomes CRM Plugin Flaw Affected 30,000 WordPress SitesCritical Appsmith Flaw Enables Account TakeoversHackers Exploit 29 Zero-Days on Second Day of Pwn2Own AutomotiveCurl Ending Bug Bounty Program After Flood of AI Slop Reports
1/21/2026 January 21, 2026January 21, 2026 ~ The Cyber Beat ~ Leave a comment North Korean PurpleBravo Campaign Targeted 3,136 IP Addresses via Fake Job InterviewsPhishing and Spoofed Sites Remain Primary Entry Points For OlympicsHackers Exploit Security Testing Apps to Breach Fortune 500 FirmsFortinet Admins Report Patched FortiGate Firewalls Getting HackedNew Android Malware Uses AI to Click on Hidden Browser AdsGreek Police Arrest Scammers Using Fake Cell Tower Hidden in Car TrunkIreland Wants to Give Its Cops Spyware, Ability to Crack Encrypted MessagesEU Unveils Cybersecurity Overhaul with Proposed Update to Cybersecurity ActUK’s NCC Group to Sell Escode for $369.4 MillionEverest Ransomware Gang Said to Be Sitting on Mountain of Under Armour DataOnline Retailer PcComponentes Says Data Breach Claims are FakePeruvian Loan Scam Harvests Cards and PINs via Fake ApplicationsLastPass Warns of Fake Maintenance Messages Targeting Users’ Master PasswordsCERT/CC Warns binary-parser Bug Allows Node.js Privilege-Level Code ExecutionZoom and GitLab Release Security Updates Fixing RCE, DoS, and 2FA Bypass FlawsCisco Fixes Unified Communications RCE Zero Day Exploited in AttacksTesla Hacked, 37 Zero-Days Demoed at Pwn2Own Automotive 2026Experts Welcome Global Cybersecurity Vulnerability Enumeration Launch
1/20/2026 January 20, 2026January 20, 2026 ~ The Cyber Beat ~ Leave a comment North Korea-Linked Hackers Target Developers via Malicious VS Code ProjectsEU Plan to Phase-Out High-Risk Tech Draws Fire From China’s HuaweiGreece, Israel to Cooperate on Anti-Drone Systems, Cybersecurity, Greek Minister SaysKrebs: Kimwolf Botnet Lurking in Corporate, Gov’t NetworksUK Launches Landmark ‘Report Fraud’ Service to Tackle Cybercrime and FraudTudou Guarantee Marketplace Halts Telegram Transactions After Processing Over $12 BillionCyber Risks Among CEOs’ Top Worries Amid Weak Short Term Growth OutlookAI Supercharges Attacks in Cybercrime’s New ‘Fifth Wave’VoidLink Cloud Malware Shows Clear Signs of Being AI-GeneratedTrue Agentic AI Is Years Away – Here’s Why and How We Get ThereSupreme Court to Consider Whether Geofence Warrants Are ConstitutionalUK Says It Will Consider Banning Social Media for ChildrenHackers Target Afghan Government Workers With Fake Correspondence From Senior OfficialsLinkedin Phishing Campaign Exploits Open-Source Pen Testing Tool to Compromise Business ExecsNumerous Mass Spam Attacks Leverage Zendesk InstancesUStrive Security Lapse Exposed Personal Data of Its Users, Including ChildrenMinnesota Department of Human Services Data Breach Affects Over 300K IndividualsEverest Ransomware Claims McDonalds India Breach Involving Customer DataEvelyn Stealer Malware Abuses VS Code Extensions to Steal Developer Credentials and CryptoACF Plugin Bug Gives Hackers Admin on 50,000 WordPress SitesCloudflare Fixes ACME Validation Bug Allowing WAF Bypass to Origin ServersChainlit Security Flaws Highlight Infrastructure Risks in AI AppsPrompt Injection Bugs Found in Official Anthropic Git MCP ServerLawmakers Move to Extend Two Cyber Programs (Again) in Funding Proposal
1/19/2026 January 19, 2026January 19, 2026 ~ The Cyber Beat ~ Leave a comment Iran to Consider Lifting Internet Ban; State TV Hacked to Air Anti-Regime MessagesRussian Hacktivists Intensify Disruptive Cyber Pressure on UK OrgsRead the Texts Between Trump and Norway’s Prime MinisterHow Crypto Criminals Stole $700 Million From People – Often Using Age-Old TricksIngram Micro Admits Summer Ransomware Raid Exposed Thousands of Staff RecordsCrashFix Chrome Extension Delivers ModeloRAT Using ClickFix-Style Browser Crash LuresResearchers Uncover PDFSIDER Malware Built for Long-Term, Covert System AccessGoogle Gemini Prompt Injection Flaw Exposed Private Calendar Data via Malicious Invites
1/16-18/2026 January 18, 2026January 18, 2026 ~ The Cyber Beat ~ Leave a comment China-Linked Hackers Exploited Sitecore Zero-Day for Initial AccessTrump Says Iran Has Told Him ‘Killing Has Stopped’ as He Pulls Back From Strike Threats…Donald Trump Calls off Iran Strikes After Steve Witkoff, Araghchi Texts…By Asking Trump to Delay Iran Attacks, Netanyahu Exposes Israel’s Air Defense Holes…Anti-Regime Activists Hack Iran’s National Broadcaster, Transmit Pahlavi’s Calls to ProtestCanada Will Regret Allowing Chinese EVs Into Their Market, U.S. SaysEU Moves to Force the Phase-Out of Chinese Suppliers From Key InfrastructureA Faceless Hacker Stole My Therapy Notes – Now My Deepest Secrets Are Online ForeverJordanian Initial Access Broker Pleads Guilty to Helping Target 50 CompaniesPolice Raid Homes of Alleged Black Basta Hackers, Hunt Suspected Russian Ringleader…Black Basta Ransomware Leader Added to EU Most Wanted and INTERPOL Red NoticeCanadian Investment Regulatory Organization (CIRO) Confirms Data Breach Exposed Info on 750,000 Canadian InvestorsTens of Millions of French Citizen Records ExposedTamperedChef Malvertising Campaign Drops Malware via Fake PDF ManualsRondoDox Botnet Targets HPE OneView Vulnerability in Exploitation WaveFive Malicious Chrome Extensions Impersonate Workday and NetSuite to Hijack AccountsGootLoader Malware Uses 500–1,000 Concatenated ZIP Archives to Evade DetectionMalicious GhostPoster Browser Extensions Found with 840,000 InstallsHackers Now Exploiting Critical Fortinet FortiSIEM Flaw in AttacksStealC Hackers Hacked as Researchers Hijack Malware Control PanelsCisco Finally Fixes AsyncOS Zero-Day Exploited Since NovemberI’m Sorry Dave, I’m Afraid I Can’t Do That! PCs Refuse to Shut Down After Microsoft Patch
1/15/2026 January 15, 2026January 15, 2026 ~ The Cyber Beat ~ Leave a comment Chinese-Linked Hackers Target U.S. Entities With Venezuelan-Themed MalwareICE Agent Doxxing Site DDoS-ed Via Russian ServersHackers Increasingly Shun Encryption in Favour of Pure Data Theft and ExtortionFormer CISA Director Jen Easterly Will Lead RSAC ConferenceFTC Bans GM From Selling Drivers’ Location Data for Five YearsGoogle to Pay $8.25 Million to Settle Lawsuit Alleging Children’s Privacy ViolationsElon Musk’s X Says It Will Block Grok From Making Sexual ImagesData Privacy Teams Face Staffing Shortages and Budget Constraints, ISACA WarnsCloudflare Acquires AI Data Marketplace Human NativeFormer U.S. Special Forces Officer Is Now a Startup CEO—His Cybersecurity Company Has Raised $22 MillionVerizon’s Hourslong Wireless Outage Tied to Software UpdateGrubhub Confirms Hackers Stole Data in Recent Security BreachAnchorage Police Department Takes Servers Offline After Cyberattack on Service ProviderContagious Claude Code Bug Anthropic Ignored Promptly Spreads to CoworkWhisperPair: Hundreds of Millions of Audio Devices Need a Patch to Prevent Wireless Hacking and TrackingCritical WordPress Modular DS Plugin Flaw Actively Exploited to Gain Admin AccessPalo Alto Fixes GlobalProtect DoS Flaw That Can Crash Firewalls Without LoginTrio of Critical Bugs Spotted in Delta Industrial PLCsCodeBuild Flaw Put AWS Console Supply Chain At RiskGermany Turns to Israel for a ‘Cyber Dome’ Amid Rising Threats
1/14/2026 January 15, 2026January 15, 2026 ~ The Cyber Beat ~ Leave a comment PLUGGYAPE Malware Uses Signal and WhatsApp to Target Ukrainian Defense ForcesUkraine Appoints Digital Chief as Defense Minister to Drive Military ReformWestern Cyber Agencies Warn About Threats to Industrial Operational TechnologyBeijing Tells Chinese Firms to Stop Using U.S. and Israeli Cybersecurity Software, Sources SayLawmakers to Restart Efforts to Revive Lapsed Cyber Intel BillResearchers Null-Route Over 550 Kimwolf and Aisuru Botnet Command ServersCriminal Subscription Service Behind AI-Powered Cyber-Attacks Taken Out By MicrosoftVerizon Outage Knocks Out U.S. Mobile Service, Including Some 911 CallsFrance Fines Telcos €42M for Sub-Par Security Prior to 24M Customer BreachPalantir Is Trying to ‘Destroy’ Percepta Through Legal Action, Startup’s Execs Say in FilingGoogle’s Personal Intelligence links Gmail, Photos and Search to GeminiCalifornia AG to Probe Musk’s Grok for Nonconsensual DeepfakesUgandan Officials Turn Off Internet on Eve of National ElectionsVictorian Department of Education Says Hackers Stole Students’ DataMonroe University Says 2024 Data Breach Affects 320,000 PeopleSouth Korean Giant Kyowon Confirms Data Theft in Ransomware AttackCloud Marketplace Pax8 Accidentally Exposes Data on 1,800 MSP PartnersReprompt Attack Hijacked Microsoft Copilot Sessions for Data TheftHackers Use Fake PayPal Notices to Steal Credentials, Deploy RMMsDeadLock Ransomware Uses Polygon Smart Contracts For Proxy RotationLong-Running Web Skimming Campaign Steals Credit Cards From Online Checkout PagesCritical Node.js Vulnerability Can Cause Server Crashes via async_hooks Stack OverflowFortinet Fixes Critical FortiSIEM Flaw Allowing Unauthenticated Remote Code ExecutionKrebs: Patch Tuesday, January 2026 EditionFederal Agencies Ordered to Patch Microsoft Desktop Windows Manager BugMicrosoft Updates Windows DLL That Triggered Security Alerts
1/13/2026 January 13, 2026January 13, 2026 ~ The Cyber Beat ~ Leave a comment Massive Cyberattack on Polish Power System in December Failed, Minister SaysHill Warning: Don’t Put Cyber Offense Before DefenseTrump Renominates Sean Plankey for CISA DirectorUkraine Parliament Approves Resignation of Security Service Chief in Major ReshuffleKremlin-Linked Hackers Pose as Charities to Spy on Ukraine’s MilitarySenior Military Cyber Operator Removed From Russia Task ForceMore Than 40 Countries Impacted by North Korea IT Worker Scams, Crypto TheftsOracle Hack Still Generating Ransom DemandsIndia’s Smartphone Security Proposal Faces Backlash Over Privacy ConcernsQuantum Software Company Haiqu Raises $11 MillionAI and Automation Could Erase 10.4 Million U.S. Roles by 2030What’s the Deal With Physical AI? Why the Next Frontier of Tech Is Already All Around YouTeen Hackers Recruited Through Fake Job AdsTennessee Man to Plead Guilty to Hacking Supreme Court’s Electronic Case Filing SystemDutch Cops Cuff Alleged AVCheck Malware Kingpin in AmsterdamTarget Employees Confirm Leaked Source Code Is AuthenticSuspected Ransomware Attack Threatens One of South Korea’s Largest Companies, Kyowon GroupEverest Ransomware Group Claims Nissan Breach, Demands ResponseCentral Maine Healthcare Breach Exposed Data of Over 145,000 PeopleBelgian Hospital AZ Monica Shuts Down Servers After CyberattackVoidLink: New Chinese-Made Malware Framework Targets Linux-Based Cloud EnvironmentsGlobal Magecart Campaign Targets Six Card NetworksSHADOW#REACTOR Campaign Uses Text-Only Staging to Deploy Remcos RATConvincing LinkedIn Comment-Reply Tactic Used in New PhishingMalicious Chrome Extension Steals MEXC API Keys by Masquerading as Trading ToolPopular Python Libraries Used in Hugging Face Models Subject to Poisoned Metadata AttackAdobe Patches Critical Apache Tika Bug in ColdFusionMicrosoft January 2026 Patch Tuesday Fixes 3 Zero-Days, 114 Flaws…Microsoft Releases Windows 10 KB5073724 Extended Security Update…New Windows Updates Replace Expiring Secure Boot Certificates
1/12/2026 January 13, 2026January 13, 2026 ~ The Cyber Beat ~ Leave a comment Internet Monitoring Experts Say Iran Blackout Likely to ContinueSweden Detains Ex-Military IT Consultant Suspected of Spying for RussiaHungary Grants Asylum to Former Polish Minister Implicated in Spyware ProbeWorld Economic Forum: Cyber-Fraud Overtakes Ransomware as Business Leaders’ Top Cyber-Security ConcernIllicit Crypto Activity Hits Record $158bn in 2025Researchers Uncover Service Providers Fueling Industrial-Scale Pig Butchering FraudOfcom Officially Investigating X as Grok’s Nudify Button Stays Switched OnPalo Alto Networks Introduces New Vibe Coding Security Governance FrameworkHacker Gets Seven Years for Breaching Rotterdam and Antwerp Ports‘Violence-As-A-Service’ Suspect Arrested in Iraq, Extradition UnderwayKentucky Sues Character.AI, Alleging It Harms Children and Violates Data LawAnthropic Brings Claude to Healthcare with HIPAA-Ready Enterprise ToolsUniversity of Hawaii Cancer Center Hit by Ransomware AttackSpanish Energy Giant Endesa Discloses Data Breach Affecting Customers‘Bad Actor’ Hijacks Apex Legends Characters in Live MatchesTarget’s Dev Server Offline After Hackers Claim to Steal Source CodeArmenia Probes Alleged Sale of 8 Million Government Records on Hacker ForumFintech Firm Betterment Confirms Data Breach After Hackers Send Fake Crypto Scam Notification to UsersInstagram Denies Breach After Many Receive Emails Asking to Reset PasswordFacebook Login Thieves Now Using Browser-In-Browser TrickHidden Telegram Proxy Links Can Reveal Your IP Address in One Clickn8n Supply Chain Attack Abuses Community Nodes to Steal OAuth TokensCISA Orders Feds to Patch Gogs RCE Flaw Exploited in Zero-Day AttacksApple Confirms Google Gemini Will Power Siri, Says Privacy Remains a PriorityTorq Raises $140 Million for Agentic AI-Powered Cybersecurity Platform
1/9-11/2026 January 11, 2026January 11, 2026 ~ The Cyber Beat ~ Leave a comment China-Linked Hackers Exploit VMware ESXi Zero-Days to Escape Virtual MachinesRussian APT28 Runs Credential-Stealing Campaign Targeting Energy and Policy OrganizationsMuddyWater Launches RustyWater RAT via Spear-Phishing Across Middle East SectorsWorld Economic Forum: Deepfake Face-Swapping Tools Are Creating Critical Security RisksKrebs: Who Benefited from the Aisuru and Kimwolf Botnets?Europol Leads Global Crackdown on Black Axe Cybercrime Gang, 34 ArrestedX Didn’t Fix Grok’s ‘Undressing’ Problem. It Just Makes People Pay for It…Lawmakers Call On App Stores to Remove Grok, X Over Sexualized DeepfakesIllinois Man Charged With Hacking Snapchat Accounts to Steal Nude PhotosIreland Recalls Almost 13,000 Passports Over Missing ‘IRL’ CodeCalifornia Bans Data Broker Reselling Health Data of MillionsStellar Gains, Heavy Losses: Cybersecurity Stocks Had a Mixed YearHere’s What Cloud Security’s Future Holds for the Year AheadBreachForums Hacking Forum Database Leaked, Exposing 324,000 AccountsRansomware Attack on Texas Gas Station Firm Gulshan Management Services Leaks 377,000 User RecordsAt Least $26 Million in Crypto Stolen From Truebit Platform as Crypto Crime Landscape EvolvesAI-Powered Truman Show Operation Industrializes Investment FraudBetterment’s Financial App Sends Customers a $10,000 Crypto Scam MessageWarning Over Scams Targeting Manx Email AccountsInstagram Says It Fixed the Issue That Let Someone Send All Those Password Reset EmailsFBI Warns of North Korean QR Phishing CampaignsHackers Target Misconfigured Proxies to Access Paid LLM ServicesTrend Micro Apex Central RCE Flaw Scores 9.8 CVSS in On-Prem Windows VersionsCISA Retires 10 Emergency Cybersecurity Directives Issued Between 2019 and 2024UK Government Exempting Itself From Flagship Cyber Law Inspires Little ConfidenceFormer NSA Insider Kosiba Brought Back as Spy Agency’s No. 2
1/8/2026 January 8, 2026January 8, 2026 ~ The Cyber Beat ~ Leave a comment China Hacked Email Systems of U.S. Congressional Committee StaffU.S. To Leave Global Forum on Cyber ExpertiseNSA Cyber Directorate Gets New Acting LeadershipVenezuela Raid Highlights Cyber Vulnerability of Critical InfrastructureChatGPT Health Feature Draws Concern From Privacy Critics Over Sensitive Medical DataGrok Is Generating Sexual Content Far More Graphic Than What’s on XCrowdStrike Buys Identity Security Startup SGNL for $740 Million in Latest Deal PushCyera Valued at $9 Billion as Data Security Firm Raises $400 MillionEU Antitrust Regulators to Decide on Google’s Wiz Deal by February 10Texas Court Blocks Samsung From Tracking TV Viewing, Then Vacates OrderRansomware Attacks Kept Climbing in 2025 as Gangs Refused to Stay Dead…Two-Fifths of 50% of Breaches Take Two Weeks to Recover FromRussia Frees French Researcher in Prisoner Swap for Alleged Ransomware HackerChina-Linked UAT-7290 Targets Telecom Networks in South AsiaIran-Linked Hacker Group Claims to Have Hacked, Surveilled Senior Mossad AgentMore Than 100,000 Households Warned After Cyber Attack on Kensington and Chelsea CouncilSedgwick Breach Linked to TridentLocker Ransomware AttackWhatsApp Worm Spreads Astaroth Banking Trojan Across Brazil via Contact Auto-MessagingGoBruteforcer Botnet Targets Linux ServersResearchers Uncover NodeCordRAT Hidden in npm Bitcoin-Themed PackagesNew Zero-Click Attack Lets ChatGPT User Steal DataCISA Flags Microsoft Office and HPE OneView Bugs as Actively ExploitedCoolify Discloses 11 Critical Flaws Enabling Full Server Compromise on Self-Hosted InstancesCisco Patches ISE Security Vulnerability After Public PoC Exploit ReleaseCisco Switches Hit by Reboot Loops Due to DNS Client BugMicrosoft to Enforce MFA for Microsoft 365 Admin Center Sign-Ins
1/7/2026 January 7, 2026January 7, 2026 ~ The Cyber Beat ~ Leave a comment Cyberattacks Likely Part of Military Operation in VenezuelaEuropean Space Agency Calls Cops as Crims Lift Off 500 GB of Files, Say Security Black Hole Still OpenTaiwan Says China’s War Games Sought to Undermine Global Support for the IslandChina Intensifies Cyber-Attacks on Taiwan as Energy Sector Sees Tenfold SpikeGrok AI Still Being Used to Digitally Undress Women and Children Despite Suspension PledgeIBM’s AI Agent Bob Easily Duped to Run Malware, Researchers ShowGoogle Search AI Hallucinations Push Google to Hire “AI Answers Quality” EngineersPersonal LLM Accounts Drive Shadow AI Data Leak RisksCloudy Outlook for Cyber Jobs as AI Fills Security GapsStalkerware Operator Pleads Guilty in Rare ProsecutionAlleged Cyber Scam Kingpin Arrested, Extradited to ChinaMFA Failure Enables Infostealer Breach At 50 EnterprisesIllinois Department of Human Services Reports Yearslong Data BreachCyberattack Under Investigation by Coles County School District (IL)Spanish Airline Iberia Attributes Recent Data Breach Claims to November IncidentBlack Cat Behind SEO Poisoning Malware Campaign Targeting Popular Software SearchesGhost Tap Malware Fuels Surge in Remote NFC Payment FraudVersatile Malware Loader pkr_mtsi Delivers Diverse PayloadsMicrosoft Warns Misconfigured Email Routing Can Enable Internal Domain PhishingCritical jsPDF Flaw Lets Hackers Steal Secrets via Generated PDFsVeeam Patches Critical RCE Vulnerability with CVSS 9.0 in Backup & ReplicationCritical n8n Vulnerability (CVSS 10.0) Allows Unauthenticated Attackers to Take Full Control
1/6/2026 January 6, 2026January 6, 2026 ~ The Cyber Beat ~ Leave a comment Russia-Aligned Hackers Abuse Viber to Target Ukrainian Military and GovernmentUK Launches New Cyber Unit to Bolster Defences Against Cyber Threats…UK Government Admits Years of Cyber Policy Have Failed, Announces ResetRing’s Mobile Security Trailer Provides 360-Degree Coverage AnywhereTwo Chrome Extensions Caught Stealing ChatGPT and DeepSeek Chats from 900,000 UsersJaguar Land Rover Wholesale Volumes Down 43% After CyberattackStartup Trends Shaking Up Browsers, SOC Automation, AppSecCybersecurity Predictions 2026: An AI Arms Race and Malware AutonomyFake Booking Emails Redirect Hotel Staff to Fake BSoD Pages Delivering DCRatHospitality Sector Hit By PHALT#BLYX ClickFix Malware CampaignCloud File-Sharing Sites Targeted for Corporate Data Theft AttacksHigh-Severity Flaw in Open WebUI Affects AI ConnectionsNew D-Link Flaw in Legacy DSL Routers Actively Exploited in AttacksNew n8n Vulnerability (9.9 CVSS) Lets Authenticated Users Execute System CommandsCritical AdonisJS Bodyparser Flaw (CVSS 9.2) Enables Arbitrary File Write on ServersUnpatched Firmware Flaw Exposes TOTOLINK EX200 to Full Remote Device Takeover
1/5/2026 January 5, 2026January 5, 2026 ~ The Cyber Beat ~ Leave a comment Russian Hackers Target European Hospitality Industry With ‘Blue Screen of Death’ MalwareThe French University Where Spies Go for TrainingAs Supply-Chain Cyber Risks Mount, Can AI Help?EU Looking ‘Very Seriously’ at Taking Action Against X Over GrokFinland Arrests Two Crew Members of Ship Suspected of Cable BreakPlaying Koi: Palo Alto Isn’t Saying if It Will Buy Security Start-upVSCode IDE Forks Expose Users to “Recommended Extension” AttacksNew Zealand Orders Review Into ManageMyHealth CyberattackAurora College Working to Get Systems Back Up After Cyber AttackCyberattack Forces British High School to CloseLedger Customers Impacted by Third-Party Global-E Data BreachU.S. Broadband Provider Brightspeed Investigates Breach ClaimsNordVPN Denies Breach Claims, Says Attackers Have “Dummy Data”VVS Stealer Uses Advanced Obfuscation to Target Discord Users
1/2-4/2026 January 4, 2026January 4, 2026 ~ The Cyber Beat ~ Leave a comment Inside the Operation: How the U.S. Moved to Capture Nicolás MaduroTrump Suggests U.S. Used Cyberattacks to Turn Off Lights in Venezuela During StrikesKrebs: The Kimwolf Botnet is Stalking Your Local Network8 WhatsApp Features to Boost Your Security and PrivacyHow to Protect Your iPhone or Android Device From SpywareTrump Admin Sends Heart Emoji to Commercial Spyware Makers With Lifted Predator SanctionsBitfinex Crypto Thief Who Was Serving Five Years Thanks Trump for Early ReleasePalo Alto Networks Security-Intel Boss Calls AI Agents 2026’s Biggest Insider ThreatCybersecurity Predictions for 2026: Navigating the Future of Digital ThreatsCybercrook Claims to Be Selling Infrastructure Info About Three Major U.S. UtilitiesHackers Claim to Hack Resecurity, Firm Says It Was a HoneypotSedgwick Confirms Cyber Incident Affecting Its Major Federal Contractor SubsidiaryTrust Wallet Links $8.5 Million Crypto Theft to Shai-Hulud NPM AttackCovenant Health Says May Data Breach Impacted Nearly 478,000 PatientsTransparent Tribe Launches New RAT Attacks Against Indian Government and AcademiaCybercriminals Abuse Google Cloud Email Feature in Multi-Stage Phishing CampaignOver 10K Fortinet Firewalls Exposed to Actively Exploited 2FA Bypass
1/1/2026 January 2, 2026January 2, 2026 ~ The Cyber Beat ~ Leave a comment The Top 10 Cybersecurity Stories of 2025Banner Year: The Biggest Cybersecurity and Cyberattack Stories of 2025New GlassWorm Malware Wave Targets Macs With Trojanized Crypto WalletsBritish Cyber Expert Given Visa After ‘Hacking DFAT Website’
12/30-31/2025 January 1, 2026January 1, 2026 ~ The Cyber Beat ~ Leave a comment Mustang Panda Uses Signed Kernel-Mode Rootkit to Load TONESHELL BackdoorFinland Seizes Ship Suspected of Damaging Subsea Cable in Baltic SeaWashington Wants to Get Tough on Nation-State Hackers. Are Infrastructure Operators Ready?Fears Mount That U.S. Federal Cybersecurity Is Stagnating—Or WorseTwo Cybersecurity Employees Plead Guilty to Carrying Out Ransomware AttacksMeta Created ‘Playbook’ to Fend Off Pressure to Crack Down on Scammers, Documents ShowHong Kong’s Newest Anti-Scam Technology: Over-The-Counter BankingNew York’s Incoming Mayor Zohran Mamdani Bans Raspberry Pi at His Inauguration Party…And Flipper ZeroU.S. Treasury Lifts Sanctions on Three Individuals Linked to Intellexa and Predator SpywareDisney Will Pay $10 Million to Settle Children’s Data Privacy LawsuitCoupang to Split $1.17 Billion Among 33.7 Million Data Breach VictimsSilver Fox Targets Indian Users With Tax-Themed Emails Delivering ValleyRAT MalwareEuropean Space Agency Hit Again as Cybercrims Claim 200 GB Data up for SaleHackers Drain $3.9M From Unleash Protocol After Multisig HijackDarkSpectre Browser Extension Campaigns Exposed After Impacting 8.8 Million Users WorldwideZoom Stealer Browser Extensions Harvest Corporate Meeting IntelligenceNew ERRTraffic Service Enables ClickFix Attacks via Fake Browser GlitchesResearchers Spot Modified Shai-Hulud Worm Testing Payload on npm RegistryRondoDox Botnet Exploits React2Shell Flaw to Breach Next.js ServersUS, Australia Say ‘MongoBleed’ Bug Being ExploitedCSA Issues Alert on Critical SmarterMail Bug Allowing Remote Code ExecutionIBM Warns of Critical API Connect Bug Allowing Remote Authentication Bypass
12/29/2025 December 29, 2025December 29, 2025 ~ The Cyber Beat ~ Leave a comment The Worst Hacks of 2025Happy 16th Birthday, KrebsOnSecurity.com!Indian Cops Cuff Ex-Coinbase Rep Over Selling Customer Info to CrimsHacker Arrested for KMSAuto Malware Campaign with 2.8 Million DownloadsAccused Data Thief Threw MacBook Into a River to Destroy EvidenceKorean Air Data Breach Exposes Data of Thousands of EmployeesRomanian Energy Provider Oltenia Energy Complex Hit by Gentlemen Ransomware AttackTwo More Banks Notifying Thousands of Victims About Marquis Software Ransomware Attack27 Malicious npm Packages Used as Phishing Infrastructure to Steal Login Credentials
12/26-28/2025 December 28, 2025December 28, 2025 ~ The Cyber Beat ~ Leave a comment China-Linked Evasive Panda Ran DNS Poisoning Campaign to Deliver MgBot MalwareThe U.S. Must Stop Underestimating Drone WarfareLastPass 2022 Breach Led to Years-Long Cryptocurrency Thefts, TRM Labs FindsDeath, Torture, and Amputation: How Cybercrime Shook the World in 2025From Video Games to Cyber Defense: If You Don’t Think Like a Hacker, You Won’t WinCoupang Founder Kim Bom Apologises for Data Leak, Pledges CompensationShaping the Next Generation of Cyber ExpertsTrust Wallet Users Lose $7 Million to Hacked Chrome ExtensionFake GrubHub Emails Promise Tenfold Return on Sent CryptocurrencyUbisoft Shuts Down ‘Rainbow Six Siege’ Servers Following HackHacker Claims to Leak WIRED Database with 2.3 million RecordsEverest Ransomware Group Claims Theft of Over 1TB of Chrysler DataExploited MongoBleed Flaw Leaks MongoDB Secrets, 87K Servers ExposedCritical LangChain Core Vulnerability Exposes Secrets via Serialization Injection
12/25/2025 December 25, 2025 ~ The Cyber Beat ~ Leave a comment Why Hackers Love the Holidays, Especially Christmas and the LikeOpenAI is Reportedly Testing Multiple Claude-Like Skills For ChatGPTStudy Reveals Businesses Continue to Underinvest in Cybersecurity and are Neglect in Vulnerability AssessmentsThe Biggest Cybersecurity Mergers and Acquisitions of 2025Somerset County (PA) Utilizing New 911 Alert System After Cyber AttackNomani Investment Scam Surges 62% Using AI Deepfake Ads on Social MediaFortinet Warns of Active Exploitation of FortiOS SSL VPN 2FA Bypass VulnerabilityCISA Flags Actively Exploited Digiever NVR Vulnerability Allowing Remote Code Execution
12/24/2025 December 24, 2025December 24, 2025 ~ The Cyber Beat ~ Leave a comment Pro-Russian Hackers Noname057 Claim Cyberattack on French Postal ServiceNIST, MITRE Partner on $20m AI Centers For Manufacturing and CybersecurityThe Age of the All-Access AI Agent Is HerePen Testers Accused of ‘Blackmail’ After Reporting Eurostar Chatbot FlawsAll I Want for Christmas Is Not a Scam – Tips to Avoid Digital Threats During the Festive SeasonAI Powered Cyber Attack Hits Chinese TikTok Short Video Rival KuaishouCoordinated Scams Target MENA Region Extensively With Fake Online Job AdsFake MAS Windows Activation Domain Used to Spread PowerShell MalwareMongoDB Warns Admins to Patch Severe RCE Flaw ImmediatelyCyber Volunteer Effort for Small Water Utilities Announces New MSSP Effort
12/23/2025 December 24, 2025December 24, 2025 ~ The Cyber Beat ~ Leave a comment 86% Surge in Fake Delivery Websites Hits Shoppers During Holiday RushDozens of Flock AI Camera Feeds Were Just Out ThereFCC Bans Foreign-Made Drones and Key Parts Over U.S. National Security RisksChinese Crypto Scammers on Telegram Are Fueling the Biggest Darknet Markets EverSEC Sues Crypto Firms for Defrauding Investors Out of $14 MillionU.S. DoJ Seizes Fraud Domain Behind $14.6 Million Bank Account Takeover SchemeNYPD Sued Over Possible Records Collected Through Muslim Spying ProgramItaly Fines Apple $116 Million Over App Store Privacy Policy IssuesMore Than 22 Million Aflac Customers Impacted by June Data BreachBaker University (KS) Says 2024 Data Breach Impacts 53,000 PeopleTwo Chrome Extensions Caught Secretly Stealing Credentials from Over 170 SitesWebRAT Malware Spread via Fake Vulnerability Exploits on GithubCritical n8n Flaw (CVSS 9.9) Enables Arbitrary Code Execution Across Thousands of InstancesMicrosoft Rolls Out Hardware-Accelerated BitLocker in Windows 11A Cybersecurity Playbook for AI AdoptionServiceNow Opens $7.7b Ticket Titled ‘Buy Security Company, Make It Armis’
12/22/2025 December 22, 2025December 22, 2025 ~ The Cyber Beat ~ Leave a comment Cyber Spies Use Fake New Year Concert Invites to Target Russian MilitaryRomanian Water Authority Hit by BitLocker Ransomware Attack Over WeekendHacktivists Scrape 86M Spotify Tracks, Claim Their Aim Is to Preserve CultureMicrosoft Windows ‘Hack Your Own Password’ Attack Warning IssuedSouth Korea to Require Facial Recognition for New Mobile NumbersJudge Rules That NSO Cannot Continue to Install Spyware via WhatsApp Pending AppealInterpol-Led Action Decrypts 6 Ransomware Strains, Arrests HundredsNefilim Ransomware Affiliate Pleads GuiltyFrance’s National Post Office Hit by Suspected Cyber-Attack, Delaying DeliveriesUniversity of Phoenix Data Breach Impacts Nearly 3.5 Million IndividualsNissan Says Thousands of Customers Exposed in Red Hat BreachScripted Sparrow Sends Millions of BEC Emails Each MonthAndroid Malware Operations Merge Droppers, SMS Theft, and RAT Capabilities at ScaleNew MacSync Malware Dropper Evades macOS Gatekeeper ChecksFake WhatsApp API Package on npm Steals Messages, Contacts, and Login TokensMonitoring Tool Nezha Abused For Stealthy Post-Exploitation Access
12/19-21/2025 December 21, 2025December 21, 2025 ~ The Cyber Beat ~ Leave a comment Inquiry Ongoing After UK Government Hacked, Says MinisterFirms Warned to Be On ‘High Alert’ for Scam EmailsIranian Infy APT Resurfaces with New Malware Activity After Years of SilenceRussian Defense Firms Targeted by Hackers Using AI, Other TacticsTrump Signs Defense Bill Allocating Millions for Cyber Command, Mandating Pentagon Phone SecuritySenate Confirms New Pentagon CIOKrebs on Dismantling Defenses: Trump 2.0 Cyber Year in ReviewHere’s What’s in the DOJ’s Epstein Files Release—And What’s MissingU.S. Charges 54 in Massive ATM Jackpotting ConspiracyNigeria Arrests RaccoonO365 Phishing Developer Linked to Microsoft 365 AttacksEx-Michigan Assistant Matt Weiss Seen on Video Hacking Into Student Accounts, Security Footage RevealsHacks, Thefts, and Disruption: The Worst Data Breaches of 2025Richmond Behavioral Health Authority (VA) Breach Hits Over 113KCracked Software and YouTube Videos Spread CountLoader and GachiLoader MalwareRansomHouse Upgrades Encryption With Multi-Layered Data ProcessingHow RomCom Became a Multipurpose CyberweaponWatchGuard Warns of Active Exploitation of Critical Fireware OS VPN VulnerabilityOver 25,000 FortiCloud SSO Devices Exposed to Remote AttacksNew UEFI Flaw Enables Pre-Boot Attacks on Motherboards from Gigabyte, MSI, ASUS, ASRockDocker Hardened Images Now Open Source and Available for FreePalo Alto Networks Announces Multibillion-Dollar Deal With Google CloudFTC: Instacart to Refund $60M Over Deceptive Subscription Tactics
12/18/2025 December 19, 2025December 19, 2025 ~ The Cyber Beat ~ Leave a comment Denmark Says Russia Was Behind Two ‘Destructive and Disruptive’ Cyber-AttacksLongNosedGoblin: China-Aligned Threat Group Uses Windows Group Policy to Deploy Espionage MalwareNew BeaverTail Malware Variant Linked to Lazarus GroupKimsuky Spreads DocSwap Android Malware via QR Phishing Posing as Delivery AppNorth Korea Steals Over $2bn in Crypto in 2025Amazon Blocked 1,800 Suspected North Korean Scammers Seeking JobsHaotian: The Ultra-Realistic AI Face Swapping Platform Driving Romance ScamsFrance Arrests Latvian for Installing Malware on Italian FerryAustria’s High Court Orders Meta to Change Its Personalized Ad PracticesPa. High Court Rules That Police Can Access Google Searches Without a WarrantTech Provider for NHS England DXS International Confirms Data BreachUniversity of Sydney Suffers Data Breach Exposing Student and Staff InfoHMRC Warns of Over 135,000 Scam ReportsOAuth Device Code Phishing Campaigns Surge Targets Microsoft 365Clop Ransomware Targets Gladinet Centrestack in Data Theft AttacksYour Car’s Web Browser May Be On the Road to Cyber RuinNew Password Spraying Attacks Target Cisco, PAN VPN GatewaysCISA Flags Critical ASUS Live Update Flaw After Evidence of Active ExploitationHPE OneView Flaw Rated CVSS 10.0 Allows Unauthenticated Remote Code ExecutionBlackBerry Lifts Lower End of Annual Revenue Forecast on Cybersecurity Demand
12/17/2025 December 18, 2025December 18, 2025 ~ The Cyber Beat ~ Leave a comment Chinese Ink Dragon Group Hides in European Government NetworksAPT28 Targets Ukrainian UKR-net Users in Long-Running Credential Phishing CampaignNew Spyware Discovered on Belarusian Journalist’s Phone After InterrogationFormer Israeli Prime Minister Bennett’s Telegram Hacked, Not Phone, Despite Iranian Group’s ClaimsMicrosoft Will Finally Kill an Encryption Cipher That Enabled a Decade of Windows HacksBorder Patrol Bets on Small Drones to Expand U.S. Surveillance ReachTrump Targets Defense Giants’ Shareholder Payouts as Cost Overruns Mount, Sources SayBlockchain Company Nomad to Repay Users Under FTC Deal After $186M CyberattackFBI Takes Down Alleged Money Laundering Service for Ransomware GroupsFrance Arrests Suspect Tied to Cyberattack on Interior MinistryTikTok Tracked User’s Grindr Activity in Violation of European Law, Rights Group AllegesPrivacy Advocates See Risk in New Meta Policy That Uses AI Chats to Serve Targeted AdsU.S. Autoparts Maker LKQ Confirms Oracle EBS BreachNew ForumTroll Phishing Attacks Target Russian Scholars Using Fake eLibrary EmailsCritical React2Shell Flaw Exploited in Ransomware AttacksKimwolf Botnet Hijacks 1.8 Million Android TVs, Launches Large-Scale DDoS AttacksCellik Android Malware Builds Malicious Versions From Google Play AppsWhatsApp Device Linking Abused in Account Hijacking AttacksNew “Lies-in-the-Loop” Attack Undermines AI Safety DialogsMotors WordPress Vulnerability Exposes Sites to TakeoverCisco Warns of Unpatched AsyncOS Zero-Day Exploited in AttacksSonicWall Fixes Actively Exploited CVE-2025-40602 in SMA 100 AppliancesZeroday Cloud Hacking Event Awards $320,0000 for 11 Zero DaysThink Like an Attacker: Cybersecurity Tips From a CISORoblox in Talks With Russia to Restore Access After Platform Ban Sparks Backlash
12/16/2025 December 16, 2025December 16, 2025 ~ The Cyber Beat ~ Leave a comment Amazon Warns Russian GRU Hackers Target Western Firms via Edge DevicesCyberattack Disrupts Venezuelan Oil Giant PDVSA’s Operations…Venezuela State Oil Company Blames Cyberattack on U.S. After Tanker SeizureHouse Homeland Security Chairman Keeps Attention on Cyber IssuesSenior Official at Indo-Pacific Command Is Set to Be Trump’s Pick to Lead Cyber Command, NSAReact2Shell Vulnerability Actively Exploited to Deploy Linux BackdoorsPhishing Messages and Social Scams Flood Users Ahead of ChristmasKrebs: Most Parked Domains Now Serving Malicious ContentEuropean Authorities Dismantle Call Center Fraud Ring in UkraineStill Using Windows 10? You’re a Prime Target for Ransomware Now – Unless You Do ThisHacking Group ‘ShinyHunters’ Threatens to Expose Premium Users of Sex Site PornHub…Analytics Provider Mixpanel: We Didn’t Expose You to CrimsCity of Westminster (SC) Missing Public Funds After Cyber Attack, Officials SayMadison Healthcare (MN) Confirms Data Breach After Ransomware AttackUrban VPN Proxy Accused of Harvesting AI Chat ConversationsGhostPoster Attacks Hide Malicious JavaScript in Firefox Addon LogosCompromised IAM Credentials Power a Large AWS Crypto Mining CampaignRogue NuGet Package Poses as Tracer.Fody, Steals Cryptocurrency Wallet DataJumpCloud Windows Agent Flaw Enables Local Privilege EscalationFortinet FortiGate Under Active Attack Through SAML SSO Authentication Bypass
12/15/2025 December 16, 2025December 16, 2025 ~ The Cyber Beat ~ Leave a comment Suspected Russian Hackers Step Up Attacks on U.S. Energy Firms, Research ShowsGerman Parliament Suffers Suspected Cyber Attack During Zelenskyy’s VisitFrench Interior Ministry Confirms Cyberattack on Email ServersGoogle Links More Chinese Hacking Groups to React2Shell AttacksMI6 Chief Warns ‘Front Line Is Everywhere’ and Signals Intent to Pressure PutinU.S. Government Launches Campaign to Hire Engineers for AI, Tech RolesStarlink Claims Chinese Launch Came Within 200 Meters of Broadband SatelliteGoogle’s Turning off Its Dark Web Monitoring Service That Scoured Data Breaches for Your InfoTexas Sues 5 Smart TV Manufacturers Over Data Collection PracticesThird Defendant Pleads Guilty in Fantasy Sports Betting Hack CaseVibe Coding: Innovation Demands Vigilance700Credit Data Breach Impacts 5.8 Million Vehicle Dealership Customers…Nearly 20 Million Affected by Prosper, 700Credit Data BreachesAskul Confirms Theft of 740K Customer Records in Ransomware AttackPornHub Extorted After Hackers Steal Premium Member Activity DataMore Than 238K Hit by Akira-Claimed Fieldtex Product HackOngoing SoundCloud Issue Blocks VPN Users With 403 Server Error…SoundCloud Confirms Breach After Member Data Stolen, VPN Access DisruptedRussian Phishing Campaign Delivers Phantom Stealer Via ISO FilesNew SantaStealer Malware Steals Data From Browsers, Crypto WalletsFeatured Chrome Browser Extension Caught Intercepting Millions of Users’ AI ChatsFreePBX Patches Critical SQLi, File-Upload, and AUTHTYPE Bypass Flaws Enabling RCE
12/12-14/2025 December 14, 2025December 14, 2025 ~ The Cyber Beat ~ Leave a comment React2Shell Exploitation Escalates into Large-Scale Global Attacks, Forcing Emergency MitigationGermany Summons Russian Ambassador Over Cyberattack, Election DisinformationAnnounced Pick for No. 2 at NSA Won’t Get the Job as Another Candidate SurfacesTrump Order on AI May Not Deter State LawsAI Toys for Kids Talk About Sex and Issue Chinese Communist Party Talking Points, Tests ShowU.S. Bill Seeks Phase-Out of Chinese Sensors in Self-Driving Cars, After Space Hack FearsServiceNow in Talks to Acquire Cybersecurity Startup Armis in Potential $7 Billion DealUncle Sam Sues Ex-Accenture Manager Over Army Cloud Security ClaimsCoupang Data Breach Traced to Ex-Employee Who Retained System AccessMKVCinemas Streaming Piracy Service With 142M Visits Shuts DownCanada’s Privacy Regulator to Probe Billboards Equipped With Facial Scanning TechStreisand Effect: Businesses That Pay Ransomware Gangs Are More Likely to Hit the HeadlinesCyberVolk’s Ransomware Debut Stumbles on Cryptography WeaknessMore Than 340,000 Impacted by Cyberattack on Library System of Pierce County (WA)Hamas-Affiliated APT Targeting Government Agencies in the Middle East, MoroccoBeware: PayPal Subscriptions Abused to Send Fake Purchase EmailsFake ‘One Battle After Another’ Torrent Hides Malware in SubtitlesNew Advanced Phishing Kits Use AI and MFA Bypass Tactics to Steal Credentials at ScaleFake OSINT and GPT Utility GitHub Repos Spread PyStoreRAT Malware PayloadsNew React RSC Vulnerabilities Enable DoS and Source Code ExposureCISA Flags Actively Exploited GeoServer XXE Flaw in Updated KEV CatalogCISA Adds Actively Exploited Sierra Wireless Router Flaw Enabling RCE AttacksNew Windows RasMan Zero-Day Flaw Gets Free, Unofficial PatchesApple Issues Security Updates After Two WebKit Flaws Found Exploited in the WildMITRE Shares 2025’s Top 25 Most Dangerous Software WeaknessesKali Linux 2025.4 Released With 3 New Tools, Desktop Updates
12/11/2025 December 11, 2025December 11, 2025 ~ The Cyber Beat ~ Leave a comment Hackers Reportedly Breach Developer Involved With Russia’s Military Draft DatabaseOpenAI Enhances Defensive Models to Mitigate Cyber-ThreatsGoogle Ads for Shared ChatGPT, Grok Guides Push macOS Infostealer MalwareRussian Hackers Debut Simple Ransomware Service, but Store Keys in Plain TextLawmaker Calls Facial Recognition on Doorbell Cameras a ‘Privacy Nightmare’Doxers Posing as Cops Are Tricking Big Tech Firms Into Sharing People’s Private DataLastPass Hammered With £1.2M Fine for 2022 Breach FiascoFederal Agencies Now Only Have One More Day to Patch React2Shell BugData Breach at 700Credit Impacts 160,000 MichigandersWIRTE Leverages AshenLoader Sideloading to Install the AshTag Espionage BackdoorNew ConsentFix Attack Hijacks Microsoft Accounts via Azure CLINANOREMOTE Malware Uses Google Drive API for Hidden Control on Windows SystemsMalware Discovered in 19 Visual Studio Code ExtensionsChrome Targeted by Active In-the-Wild Exploit Tied to Undisclosed High-Severity FlawUnpatched Gogs Zero-Day Exploited Across 700+ Instances Amid Active AttacksActive Attacks Exploit Gladinet’s Hard-Coded Keys for Unauthorized Access and Code ExecutionNotepad++ Fixes Flaw That Let Attackers Push Malicious Update Files
12/10/2025 December 10, 2025December 10, 2025 ~ The Cyber Beat ~ Leave a comment React2Shell Exploitation Delivers Crypto Miners and New Malware Across Multiple SectorsU.S. Says Russia-Backed Hacks Targeted Critical Infrastructure…U.S. Extradites Ukrainian Woman Accused of Hacking Meat Processing Plant for Russia2 Men Linked to China’s Salt Typhoon Hacker Group Likely Trained in a Cisco ‘Academy’U.S. Halts Plans to Sanction Chinese Spy AgencyBritish Government Sanctions Russian and Chinese Groups Over Information WarfareOpenAI Warns New Models Pose ‘High’ Cybersecurity RiskLog4Shell Downloaded 40 Million Times in 2025Nvidia Builds Location Verification Tech That Could Help Fight Chip SmugglingCoupang CEO Resigns Over Data Breach in South KoreaSenators Return to Effort to Boost Cybersecurity for Commercial Satellite IndustryCoalition Adds Deepfake Response to Cyber Insurance Policies GloballyPetco Takes Down Vetco Website After Exposing Customers’ Personal InformationRussia’s Flagship Airline Aeroflot Hacked Through Little-Known Tech Vendor Bakka Soft, According to New ReportClickFix Social Engineering Sparks Rise of CastleLoader AttacksNew Spiderman Phishing Service Targets Dozens of European BanksNew DroidLock Malware Locks Android Devices and Demands a RansomOver 10,000 Docker Hub Images Found Leaking Credentials, Auth KeysWarning: WinRAR Vulnerability CVE-2025-6218 Under Active Attack by Multiple Threat Groups.NET SOAPwn Flaw Opens Door for File Writes and Remote Code Execution via Rogue WSDLThree PCIe Encryption Weaknesses Expose PCIe 5.0+ Systems to Faulty Data HandlingGoogle Fixes Zero Click Gemini Enterprise Flaw That Exposed Corporate DataMicrosoft Teams to Warn of Suspicious Traffic With External Domains
12/9/2025 December 10, 2025December 10, 2025 ~ The Cyber Beat ~ Leave a comment React2Shell Exploit Campaigns Tied to North Korean Cyber Intrusion Tactics…Deploy New EtherRAT MalwareGartner Calls For Pause on AI Browser UseAnalysts Warn of Cybersecurity Risks in Humanoid RobotsHow to Answer the Door When the AI Agents Come KnockingTrump Plans Executive Order Curbing State AI LawCyber Startup Saviynt Raises $700 Million to Secure Identity and AccessCalifornia Man Pleads Guilty to Rico Charges as DOJ Indicts Crypto Theft GangSpain Arrests Teen Who Stole 64 Million Personal Data RecordsSeoul Cyber Investigators Seize Data, Devices From ‘South Korea’s Amazon’ Following Data BreachKhashoggi Widow Files Complaint in France Alleging Saudi Government Infected Devices With SpywaresSpace Bears Ransomware Claims Comcast Data Breach via Contractor Quasar Inc.Storm-0249 Escalates Ransomware Attacks with ClickFix, Fileless PowerShell, and DLL SideloadingSTAC6565 Targets Canada in 80% of Attacks as Gold Blade Deploys QWCrypt RansomwareDeadLock Ransomware Uses BYOVD to Evade Security MeasuresResearchers Find Malicious VS Code, Go, npm, and Rust Packages Stealing Developer DataFortinet Warns of Critical FortiCloud SSO Login Auth Bypass FlawsIvanti Warns of Critical Endpoint Manager Code Execution FlawSAP Fixes Three Critical Vulnerabilities Across Multiple ProductsKrebs: Microsoft Patch Tuesday, December 2025 EditionWindows PowerShell Now Warns When Running Invoke-WebRequest Scripts
12/8/2025 December 9, 2025December 9, 2025 ~ The Cyber Beat ~ Leave a comment MuddyWater Deploys UDPGangster Backdoor in Targeted Turkey-Israel-Azerbaijan CampaignThree Hacking Groups, Two Vulnerabilities and All Eyes on ChinaU.S. to Allow Nvidia H200 Chip Shipments to China, Trump SaysMeta Proposal for Less Data Sharing Is Approved by European CommissionUK Moves to Strengthen Undersea Cable Defenses as Russian Snooping Ramps UpHome Office Kept Police Facial Recognition Flaws to Itself, UK Data Watchdog FumesPoland Arrests Ukrainians Utilizing ‘Advanced’ Hacking Equipment193 Cybercrims Arrested, Accused of Plotting ‘Violence-As-A-Service’Russian Police Bust Bank-Account Hacking Gang That Used NFCGate-Based MalwareRussian Kids Revolt as Kremlin Bans Roblox, Other Popular AppsResearchers Track Dozens of Organizations Affected by React2Shell Compromises Tied to China’s MSSExperts Confirm JS#SMUGGLER Uses Compromised Sites to Deploy NetSupport RATMalicious VSCode Extensions on Microsoft’s Registry Drop InfostealersRansomware Gangs Turn to Shanya EXE Packer to Hide EDR KillersClayRat Android Spyware Expands Capabilities…Malware Families FvncBot, and SeedSnatcher TooTotal Ransomware Payments Surpass $4.5 Billion Since 2013…Over $2.1B From 2022 To 2024Sneeit WordPress RCE Exploited in the Wild While ICTBroadcast Bug Fuels Frost Botnet AttacksUK Intelligence Warns AI ‘Prompt Injection’ Attacks Might Never Go Away
12/5-7/2025 December 8, 2025December 8, 2025 ~ The Cyber Beat ~ Leave a comment China-Linked Warp Panda Targets North American Firms in Espionage CampaignChinese Hackers Have Started Exploiting the Newly Disclosed React2Shell Vulnerability…React2Shell Flaw Exploited to Breach 30 Orgs, 77K IP Addresses VulnerableCloudflare Restores Services After Minor Dashboard Outage…Cloudflare Blames Today’s Outage on react2shell MitigationsKrebs: SMS Phishers Pivot to Points, Taxes, Fake RetailersKrebs: Drones to Diplomas: How Russia’s Largest Private University is Linked to a $25M Essay MillCrims Using Social Media Images, Videos in ‘Virtual Kidnapping’ ScamsLouvre to Bolster Its Security, Issues €57m Public TenderPortugal Updates Cybercrime Law to Exempt Security ResearchersMaryland Man Sentenced for N. Korea IT Worker Scheme Involving U.S. Government ContractsEU Fines X $140 Million Over Deceptive Blue CheckmarksSolarWinds’ Tim Brown Escaped the SEC. Future Cyber Chiefs Might Not.Pharma Firm Inotiv Discloses Data Breach After Ransomware AttackBarts Health NHS Discloses Data Breach After Oracle Zero-Day HackHuge Trove of Nude Images Leaked by AI Image Generator Startup’s Exposed DatabaseNew Wave of VPN Login Attempts Targets Palo Alto GlobalProtect PortalsZero-Click Agentic Browser Attack Can Delete Entire Google Drive Using Crafted EmailsNovel Clickjacking Attack Relies on CSS and SVGHackers are Exploiting ArrayOS AG VPN Flaw to Plant WebshellsResearchers Uncover 30+ Flaws in AI Coding Tools Enabling Data Theft and RCE AttacksCritical XXE Bug CVE-2025-66516 (CVSS 10.0) Hits Apache Tika, Requires Urgent PatchNCSC’s ‘Proactive Notifications’ Warns Orgs of Flaws in Exposed DevicesDeath to One-Time Text Codes: Passkeys Are the New Hotness in MFAA Tale of Two CISOs: Why An Engineering-Focused CISO Can Be a Liability
12/4/2025 December 4, 2025December 4, 2025 ~ The Cyber Beat ~ Leave a comment Amid Rising Threats, NATO Holds Its Largest-Ever Cyberdefense ExerciseTwins Who Hacked State Dept Hired to Work for Gov Again, Now Charged With Deleting DatabasesUK Sanctions Russia’s GRU Agency and Cyber Spies Over Deadly Nerve Agent AttackFBI Says DC Pipe Bomb Suspect Brian Cole Kept Buying Bomb Parts After January 6Pentagon’s Signalgate Report Finds Pete Hegseth Violated Military PoliciesTaiwan to Ban China’s Xiaohongshu App for One Year on Fraud ConcernsA New Anonymous Phone Carrier Lets You Sign Up With Nothing but a Zip CodeBritish Officials Seek to Expand Facial Recognition Technology UseCybersecurity Startup 7AI Raises $130 Million in Series A FundingI Saw Drone Deliveries Launch in Atlanta – How They Work and Which Cities Are NextCISA Warns of Chinese “BrickStorm” Malware Attacks on VMware ServersPredator Spyware Uses New Infection Vector for Zero-Click AttacksSilver Fox Uses Fake Microsoft Teams Installer to Spread ValleyRAT Malware in ChinaGoldFactory Hits Southeast Asia with Modified Banking Apps Driving 11,000+ InfectionsNew GhostFrame Phishing Framework Hits Over One Million AttacksCritical React, Next.js Flaw Lets Hackers Execute Code on ServersCISA and International Partners Issue Guidance for Secure AI in InfrastructureRussia Blocks FaceTime and Snapchat for Alleged Use by TerroristsRussian Scientist Sentenced to 21 Years on Treason, Cyber Sabotage Charges
12/3/2025 December 3, 2025December 3, 2025 ~ The Cyber Beat ~ Leave a comment French NGO Reporters Without Borders Targeted by Star BlizzardDisinformation and Cyber-Threats Among Top Global Business Exec Concerns‘Exploitation Is Imminent’ as 39 Percent of Cloud Environs Have Max-Severity React HoleUK Ransomware Payment Ban to Come with Exemptions, Security Minster SayIndia Revokes Order to Preload Cybersecurity App on Smartphones After OutcryFDA Scrutiny of WHOOP Signals Challenges for Niche Wearable Device MakersRussia Wants This Mega Missile to Intimidate the West, but It Keeps CrashingSecurity Startup Verkada Hits $5.8 Billion Valuation in Latest Funding Round Led by CapitalGHow Amazon Finds Its Cybersecurity Weak SpotsRussia Blocks Roblox Over Distribution of LGBT “Propaganda”Google Expands Android Scam Protection Feature to Chase, Cash App in U.S.DOJ Takes Down Myanmar Scam Center Website Spoofing TickMill Trading PlatformCanadian Police Department Becomes First to Trial Body Cameras Equipped With Facial Recognition TechnologyFrench DIY Retail Giant Leroy Merlin Discloses a Data BreachUniversity of Phoenix Discloses Data Breach After Oracle HackJapan’s Askul Resumes Limited Online Sales 6 Weeks After Ransomware AttackASUS Listed by Everest Ransomware Group, 1 TB Data StolenFreedom Mobile Discloses Data Breach Exposing Customer DataFintech Firm Marquis Alerts Dozens of U.S. Banks and Credit Unions of a Data Breach After Ransomware Attack…Impacts Over 74 U.S. Banks, Credit UnionsYearn Finance yETH Pool Hit by $9M ExploitBrazil Hit by Banking Trojan Spread via WhatsApp Worm and RelayNFC NFC Relay FraudAisuru Botnet Behind New Record-Breaking 29.7 Tbps DDoS AttackMalicious Rust Crate Delivers OS-Specific Malware to Web3 Developer SystemsCritical RSC Bugs in React and Next.js Allow Unauthenticated Remote Code ExecutionWordPress King Addons Flaw Under Active Attack Lets Hackers Make Admin AccountsMicrosoft Silently Patches Windows LNK Flaw After Years of Active Exploitation
12/1-2/2025 December 2, 2025December 2, 2025 ~ The Cyber Beat ~ Leave a comment India Orders Messaging Apps to Work Only With Active SIM Cards to Prevent Fraud and MisuseShadyPanda’s Seven-Year Campaign Infects 4.3M Chrome and Edge UsersIran-Linked Hackers Hits Israeli Sectors with New MuddyViper Backdoor in Targeted AttacksOfficials Accuse North Korea’s Lazarus of $30 Million Theft From Crypto ExchangeMost Companies Fear State-Sponsored Cyber-Attacks and Want More Government HelpResearchers Capture Lazarus APT’s Remote-Worker Scheme Live on CameraFlock Uses Overseas Gig Workers to Build its Surveillance AIFormer Cyber Spy Raises $60 Million to Fight AI ThreatsCrowdStrike Forecasts Upbeat Quarterly Revenue as AI Adoption Fuels GrowthOkta Projects Strong Quarterly Revenue on Rising Demand for Cybersecurity ToolsAxiado Raises $100 Million for Chip to Save Space, Power in AI Data CentersYour Data Might Determine How Much You Pay for EggsICO Set to Check If Mobile Games Comply with Children’s CodeFTC Settlement Requires Illuminate to Delete Unnecessary Student DataKorea Arrests Suspects Selling Intimate Videos From Hacked IP CamerasEuropol Nukes Cryptomixer Laundering Hub, Seizing €25M in BitcoinIndia Orders Phone Makers to Pre-Install Government App to Tackle Telecom Fraud…Faces BacklashChatGPT Is Down Worldwide, Conversations Dissapeared for UsersMicrosoft Defender Portal Outage Disrupts Threat Hunting AlertsGoogle Deletes X Post After Getting Caught Using a ‘Stolen’ AI Recipe InfographicUniversity of Pennsylvania Joins List of Victims From Clop’s Oracle EBS RaidShai-Hulud 2.0 NPM Malware Attack Exposed Up To 400,000 Dev SecretsSouthold (NY) Police Are Reporting With Pen and Paper After Cyber AttackFake Calendly Invites Spoof Top Brands to Hijack Ad Manager AccountsSmartTube YouTube App for Android TV Breached to Push Malicious UpdateTomiris Shifts to Public-Service Implants for Stealthier C2 in Attacks on Government TargetsGlassWorm Returns with 24 Malicious Extensions Impersonating Popular Developer ToolsNew Android Albiriox Malware Gains Traction in Dark Web MarketsMalicious npm Package Uses Hidden Prompt and Script to Evade AI Security ToolsCritical PickleScan Vulnerabilities Expose AI Model Supply ChainsGoogle Releases Patches for Android Zero-Day Flaws Exploited in the Wild