New research from Truesec reports that a newly formed Russian hacker alliance, calling itself the Russian Legion, has issued a warning of an imminent large-scale cyberattack against Denmark, code named ‘OpDenmark.’ The alliance, led by the hacker group Cardinal and comprising The White Pulse, Russian Partizan, and Inteid, was publicly announced last week. Meanwhile, Inteid is linked to a recent DDoS attack targeting Denmark’s health portal, sundhed.dk.[1] “The first threat was published on th
All Articles (2856)
Sort by
Hacking Moltbook: The AI Social Network Any Human Can Control - Moltbook, the weirdly futuristic social network, has quickly gone viral as a forum where AI agents post and chat. But what researchers discovered tells a different story and provides a fascinating look into what happens when applications are vibe-coded into existence without proper security controls.
Analysts at Wiz Research identified a misconfigured Supabase database belonging to Moltbook, allowing full read and write access to a
As the Milano Cortina 2026 Winter Olympics approach, cybersecurity researchers and industry experts warn that the Games will once again serve as a high-value convergence point for cybercrime, espionage, and politically motivated disruption. According to Palo Alto Networks' Unit 42, nation-state actors, cybercriminal groups, and hacktivists are expected to target Olympic-related infrastructure not only for short-term impact but also for long-term access, intelligence collection, and global visib
Social media has overtaken email as the primary channel for online scams in the UK, accounting for 34% of reported incidents according to recent research. This shift highlights growing concerns over fraudulent content on platforms such as Facebook and Instagram, particularly in finance-related advertising. A new analysis by BrokerChooser examined over 1,200 active finance-related ads in the Meta Ads Library to assess exposure to high-risk promotions across multiple countries. The study classi
AI coding assistants have long since moved beyond autocomplete. Agentic IDEs now read your project, plan multi-step changes, call tools, install libraries, and quietly edit your codebase. To support that workflow, tools like Claude Code include support for third-party plugin marketplaces. Connect a marketplace. Enable a plugin. Your agent gains new “skills” for tests, infra, migrations, and dependency management. OpenAI has adopted a similar pattern for tools, so to be clear, this is not a
Cybersecurity and data privacy have moved well beyond the IT function; they are now central legal, regulatory, and enterprise-risk concerns. According to Norton Rose Fulbright's 2026 Annual Litigation Trends Survey, cybersecurity exposure continues to escalate for US organizations, even as overall litigation volumes decline modestly. The findings reflect the reality that cybersecurity leaders already recognize breaches are no longer just technical failures. They trigger regulatory scrutiny, c
Russia's unconventional warfare against Europe has intensified significantly, with hostile cyber operations and sabotage activities almost quadrupling in 2025. A new analysis from the International Institute for Strategic Studies (IISS) reveals a concerted campaign targeting critical infrastructure, aiming to destabilize governments and weaken support for Ukraine. This "shadow war" operates below the threshold of declared conflict yet inflicts substantial cumulative damage across the continent
The "coordinated" cyber-attack targeting multiple sites across the Polish power grid has been attributed with medium confidence to a Russian state-sponsored hacking crew known as ELECTRUM.
Operational technology (OT) cybersecurity company Dragos, in a new intelligence brief published Tuesday, described the late December 2025 activity as the first major cyber-attack targeting distributed energy resources (DERs). "The attack affected communication and control systems at combined heat and power (C
Cyberattacks are often described as technical failures, yet anyone who has lived through a major outage or breach knows that the real shockwaves travel through people, not machines. A recent study published in Engineering, Construction and Architectural Management on the Florida water plant hack makes this point vividly clear. Paired with reporting from TechXplore’s article, “Cyberattacks can trigger societal crises, scientists warn”, the research shows that when hackers target critical infras
A new analysis by researchers at CyberArk has detailed a significant research effort revealing operational details of a StealC malware operator by exploiting a vulnerability in the malware's leaked web panel. The recent findings demonstrate how poor security practices within criminal infrastructure can be turned against threat actors. StealC is information-stealing malware operating under a Malware-as-a-Service (MaaS) model since early 2023. It enables customers to steal passwords, session co
If you use a Microsoft computer, the last few weeks might have been a bit rough. The tech giant released a major security update to Windows 11, its current operating system, this month. But in the weeks since, people have reported an array of problems, from their laptops not turning off to Microsoft Paint not opening. Now Microsoft has released yet another urgent update to fix a bug that caused Outlook to crash.[1]
Users described their messages disappearing or seeing endless loading screens.
A new test of ChatGPT Health tools revealed an integration flaw that produces inconsistent health grades. The report highlights risks associated with using AI to analyze wearable data without medical context or oversight and clear limits.
OpenAI recently announced its new tool, ChatGPT Health, and now a newly discovered integration flaw has raised serious concerns about it. Recent testing shows the limitations of AI in the medical field. It also sparks debate on how artificial intelligence sho
Sentinel Labs has provided a keen look into LLMs and SOC operations. For security teams, AI promised to write secure code, identify and patch vulnerabilities, and replace monotonous security operations tasks. Its key value proposition was raising costs for adversaries while lowering them for defenders.
To evaluate whether Large Language Models (LLMs) were both sufficiently performant and reliable to be deployed in the enterprise, a wave of new benchmarks was created. In 2023, these early benc
The US Federal Bureau of Investigation (FBI) has issued a recent advisory, dated 8 January 2026, warning about an emerging and sophisticated cyber threat: North Korean state-sponsored actors, notably the group Kimsuky, are employing malicious QR codes in spear-phishing campaigns. The FBI's flash alert highlights that, as of 2025, Kimsuky actors, also known by aliases such as APT43, have consistently targeted organizations by embedding malicious QR codes.
These attacks, termed "quishing," are de
The world of automotive retail, including commercial vehicles, is changing fast, and digital adoption, once optional, is now central to every dealership. From online purchases to always-on laptops and cloud systems, dealerships today operate in a far more connected world than they did just a few years ago. But with this rapid digital shift comes a new kind of challenge: cybersecurity.[1]
Mr. Gokul Rajan, Chief Digital Officer, Hinduja Leyland Finance said, cybersecurity is no longer a technica
Major sporting events are popular targets for cyber attackers. There are therefore plenty of risks for the Winter Olympics, which will take place next month in the Italian cities of Milan and Cortina d’Ampezzo. What can we expect from the digital battle taking place behind the scenes of the sport? Unit 42 from Palo Alto Networks has provided an excellent overview.[1]
Critical infrastructure is under constant pressure both domestically and internationally. Global events, from climate summits
The Trump administration is considering a range of measures against Iran in response to the regime's crackdown on anti-government protests, which has reportedly resulted in hundreds/thousands of deaths. Protests in Iran began in late December 2025, initially sparked by economic grievances including soaring prices and currency collapse. They have since evolved into widespread anti-government demonstrations challenging the Islamic Republic's theocratic system.[1]
Human rights groups, such as the
According to a recent report by Check Point Software, the number of publicly disclosed ransomware incidents increased approximately 60% year over year as of December. In fact, there were nearly 1,000 reported incidents in December alone. This marks a clear increase in the consistency and scale of ransomware growth.
A potential contributor to this increase is the fact that ransomware is becoming more and more of an industrialized business model. Ransomware as a service (RaaS) ecosystems allows
In a significant cyber intrusion, Chinese hackers linked to the Salt Typhoon group have accessed email systems used by staff in key US House of Representatives committees. The breach, reported by the Financial Times and covered by Reuters, affects aides on the House Select Committee on China, as well as those handling foreign affairs, intelligence, and armed services. Detected in December 2025, the incident raises concerns over the security of sensitive government communications.[1]
The hackers
It looks like Google is opening its wallet again. The tech giant has agreed to pay $8.25 million to settle a class-action lawsuit that claimed it was secretly collecting data from children. This case focused on how the tech giant handled the personal details of kids under the age of 13 who used apps from the Google Play Store.
Why the Lawsuit Was Filed - The legal trouble centered on a program called “Designed for Families” (DFF). This was supposed to be a safe space where parents could find
