Threat actors stories - Page 5

Panera data breach exposes details of 14 million customers, spotlighting a surge in SaaS-focused extortion and identity-driven cyber attacks.

NCC flags fourth straight monthly rise in ransomware attacks and growing efforts by major gangs to recruit insiders and cyber staff.

AI-driven hacking has pushed weekly cyber attacks up 70% since 2023, with Check Point warning campaigns are faster, broader and harder to stop.

Ransomware gangs shrank in number but hit more victims in late 2025, with leak-site postings soaring despite fewer active groups.

Okta warns new real-time vishing kits can hijack browser sessions during calls, tricking users into defeating non‑phishing‑resistant MFA.

New UK cyber bill pushes critical sectors towards continuous offensive security testing as state-backed and criminal threats intensify.

Cyderes appoints Lana Knop as Chief Product Officer to steer post‑Lucidum product strategy and drive a new wave of AI‑powered security services.

Over 70% of major retailers and nearly 60% of wholesalers have exposed credentials, leaving shared supply chains ripe for attack.

Misconfigured cloud training labs on AWS, Google Cloud and Azure expose major firms to live attacks via overly permissive access roles.

Major firms are leaving known, actively exploited cyber flaws unpatched for six months or more, sharply heightening breach risks.

Cloudflare warns outdated apps across APAC are choking AI gains, as modernised firms see triple the returns on their AI investments.

Microsoft again tops global phishing brand list as attackers increasingly mimic big tech services to steal cloud and consumer credentials.

Phishing-as-a-service kits doubled in 2025, now powering 90% of attacks as cyber gangs race to outsmart multifactor checks and filters.

Kyowon outage and an Instagram bug expose entrenched identity security gaps across APAC, from credential hygiene to privileged access.

Microsoft's first 2026 Patch Tuesday fixes an exploited DWM zero-day, strips decades-old modem drivers and tackles Secure Boot risks.

HP reports a surge in convincing fake software updates and staged prompts that trick users into installing stealthy, rapidly evolving malware.

Proofpoint flags a sharp rise in Microsoft 365 account takeovers via device code phishing, hitting firms from finance to government.

Identity security will become core infrastructure by 2026 as AI‑driven attacks, deepfakes and state hackers overwhelm old perimeter defences.

Ransomware attacks dipped in November, but ClickFix techniques and alliances between groups like Qilin and CL0P drove fresh risks.

Cyber attacks on SaaS platforms are soaring, pushing boards to make AI‑driven security a core strategy as misconfigurations fuel mass breaches.