Security
China-linked hackers shrink ransomware attacks to hours
Threat actors from China, which hosts more hacking groups than any other country, are accelerating ransomware attacks by chaining dozens of vulnerabilities and compressing the entire kill chain into hours. A new report from Microsoft Threat Intelligence sheds light on how one group, tracked as Storm-1175, is turning exposed systems into fast-moving ransomware targets.
Read more about China-linked hackers shrink ransomware attacks to hours
VeraCrypt, WireGuard maintainers locked out by Microsoft, unable to deliver Windows updates
Two maintainers of unrelated but critically important software packages are unable to release Windows updates because Microsoft terminated/suspended their accounts.
Read more about VeraCrypt, WireGuard maintainers locked out by Microsoft, unable to deliver Windows updates
Email provider leak containing over 40M records exposes L’Oreal, Renault, French Embassy traffic
The leak included email addresses and traffic of L’Oreal, Renault, and DHL, as well as numerous French government agencies.
Read more about Email provider leak containing over 40M records exposes L’Oreal, Renault, French Embassy traffic
Anthropic develops AI model that smashes Google, OpenAI and is too dangerous for public release
Anthropic says its new AI model is a “striking leap,” beating all competition. But the €200 per month subscription won’t buy you into an exclusive club – it’s too risky to be publicly released. The model is only available for big tech cyber defenders.
Read more about Anthropic develops AI model that smashes Google, OpenAI and is too dangerous for public release
Russian military hackers are breaking into your home WiFi via TP-Link routers
Fancy Bear, aka APT28, a group attributed to Russian military intelligence (GRU), is breaking into home and office routers across the United Kingdom to steal passwords and other secrets, the country’s National Cyber Security Centre (NCSC) has warned.
Read more about Russian military hackers are breaking into your home WiFi via TP-Link routers
Qilin confirms cyberattack on German political party Die Linke, threatens data leak
Ransomware extortion group Qilin has claimed responsibility for a cyberattack on Die Linke. It threatens to publish the stolen data if the German democratic socialist political party doesn’t pay a ransom.
Read more about Qilin confirms cyberattack on German political party Die Linke, threatens data leak
Iran hackers hit US water and energy systems
Iran-linked threat actors are actively hitting US government facilities, water systems, and energy infrastructure by exploiting exposed PLC devices – a critical component used to automate industrial control systems (ICS).
Read more about Iran hackers hit US water and energy systems
Wynn Resorts says hackers “deleted stolen data”, yet notice reveal 21,000 affected
A data breach at Wynn Resorts has affected over 21,000 staff members, despite the company reportedly paying a ransom.
Read more about Wynn Resorts says hackers “deleted stolen data”, yet notice reveal 21,000 affected
Windows zero-day appears on GitHub: hackers run FunnyApp.exe and gain SYSTEM privileges
An anonymous security researcher, who feels stabbed in the back, has put on a grey hat and dropped a dangerous zero-day Windows privilege escalation exploit on GitHub.
Read more about Windows zero-day appears on GitHub: hackers run FunnyApp.exe and gain SYSTEM privileges
Experts warn France "operationally paralyzed" as cyberattacks hit 58 incidents in 2026 alone
France is continuing to break records in terms of data breaches, and the consequences are already dramatic. Since the country doesn’t look ready to protect its digital realm, traditional crime may surge next. We talk to experts to find out what’s going on and why.
Read more about Experts warn France "operationally paralyzed" as cyberattacks hit 58 incidents in 2026 alone
Axios hack put millions at risk: full story of how North Korean hackers pulled it off
Axios is one of the most downloaded npm packages, powering millions of projects worldwide. This week, it was hijacked by North Korean threat actors to deliver malware – the damage could’ve been catastrophic if not for a quick community reaction. The maintainers have now shed light on how they got in.
Read more about Axios hack put millions at risk: full story of how North Korean hackers pulled it off
European Commission breach linked to Trivy attack, 29 EU entities at risk
Last month’s European Commission cloud breach – and the later leak of 350 GB of stolen data by ShinyHunters – are now tied to the TeamPCP hacker group and the recent Trivy supply-chain attack, according to CERT-EU.
Read more about European Commission breach linked to Trivy attack, 29 EU entities at risk
Forex data leak claims spark fears of fraud and market manipulation
Sensitive Forex trading data may be circulating on underground hacker forums, according to posts spotted by the Cybernews research team.
Read more about Forex data leak claims spark fears of fraud and market manipulation
Chinese spy group TA416 is back after years of silence, now targeting EU and NATO
The Chinese state-backed threat group TA416 has returned to Europe’s cyber threat landscape after a prolonged lull, bringing with it a more refined and evasive espionage playbook.
Read more about Chinese spy group TA416 is back after years of silence, now targeting EU and NATO
Speculation mounts over alleged Adobe breach as threat actor claims theft of 13M support tickets
Cybersecurity analysts on X have reported an alleged breach at Adobe that may have exposed sensitive data from the company’s helpdesk system, including 13 million support tickets and 15,000 employee records. The incident is not officially confirmed yet.
Read more about Speculation mounts over alleged Adobe breach as threat actor claims theft of 13M support tickets
Stryker fully operational after crippling data-wiping cyberattack
Three weeks after a crippling cyberattack, Stryker Corporation, a leading medical technology company, says it’s fully operational across its global manufacturing network.
Read more about Stryker fully operational after crippling data-wiping cyberattack
Malicious WhatsApp version used to distribute spyware, activate cameras, listen to calls
Meta, the parent company of WhatsApp, has notified users who downloaded a spyware-infected version of WhatsApp.
Read more about Malicious WhatsApp version used to distribute spyware, activate cameras, listen to calls
Check City sends breach notices a year after Cl0p attack hit 320,000 customers
Check City says a massive data breach exposed Social Security numbers, driver’s license details, and financial account data tied to more than 320,000 check-cashing customers.
Read more about Check City sends breach notices a year after Cl0p attack hit 320,000 customers
Texas hospital cyberattack exposes SSNs, medical data of 257,000 patients
A Texas hospital is notifying more than 257,000 patients after a January cyberattack exposed SSNs, medical record details, and other sensitive personal data.
Read more about Texas hospital cyberattack exposes SSNs, medical data of 257,000 patients
Russian hackers target firm behind robot that cleaned up Chornobyl
The maker of the world’s most powerful demolition robot, which cleaned up Chornobyl, was allegedly breached by a Russia-linked ransomware gang. The gang is threatening to leak all the data if it is not paid.
Read more about Russian hackers target firm behind robot that cleaned up Chornobyl
