X-Industry

Telecom Italia warned ransomware attacks surged in 2025 as cybercriminals used AI and automation to scale campaigns, cautioning that rapidly evolving technology and geopolitical tensions are reshaping digital risk.  In the second edition of its Cyber Security Report produced alongside Italy-based non-profit Cyber Security Foundation, TIM said ransomware claims topped 7,400 globally in 2025, up 42% compared to 2024.[1]

The report pointed to malware campaigns affecting entities in around 200 count

A China-linked cybercrime syndicate tracked as TA4922 is actively expanding its phishing campaigns to target organizations across multiple regions. New research finds that the financially-motivated group, historically focused on East Asian networks, has now hit entities in Germany, Italy, South Africa, and the UK.

TA4922 is known to share overlapping tradecraft with the Silver Fox espionage group but primarily pursues financial objectives, including massive data theft, corporate fraud, and persi

For years, cybersecurity professionals have treated vulnerability management as an insular IT operational metric, measured by patch cycles, ticket queues, and scan counts.  But a new, data-driven report from Moody's Ratings elevates software vulnerabilities to where they ultimately belong: a material factor in enterprise creditworthiness and organizational resilience.[1]

The report, titled "Risks posed by unpatched software flaws vary by industry and region," analyzes two years of telemetry acro

Using FreeWave Zentry Solution and REDXRAY together can help organizations significantly strengthen cyber resilience by improving visibility, reducing operational risk, and accelerating response to emerging threats.

FreeWave Zentry is an engineered, prevention-first Zero Trust network overlay purpose-built for critical infrastructure and OT/IIoT environments that makes assets functionally invisible to unauthorized users and automated threats through a resilient cryptographic fabric, while REDXRA

The researchers developed the AllFaith Benchmark, one of the first multi-faith test sets that examines how AI systems engage with a range of religions. They tested 14 different AI models, including flagship models from Anthropic, Google, xAI, and OpenAI.

The results are telling.  A survey of 1,125 Americans found that most people expect religious perspectives when asking ethics questions, but nearly every model failed to include any. More surprisingly, the models showed clear conversion bias, su

In the corporate world, substantial budgets, resources, and technical ingenuity are routinely dedicated to securing networks, hardening firewalls, fine-tuning endpoint detection, and monitoring cloud configurations.  A new report from ScamZero forces a look at an equally devastating and rapidly evolving theater of conflict: the consumer and workforce fraud ecosystem.

The 2025-2026 Scam Report from ScamZero highlights a massive, sophisticated market that has evolved into a fully professionalized

Researchers at Barracuda have identified CypherLoc, a clever web-based scam that locks internet browsers and then tricks people into calling fraudulent technical support lines.  Since the beginning of 2026 the kit has been used in around 2.8 million attacks worldwide.  The deception represents a new evolution in so-called scareware, moving away from installing obvious harmful software and instead operating entirely inside the victim's web browser.  It relies on fear and confusion rather than tra

For years, the United States federal government's Known Exploited Vulnerabilities (KEV) Catalog has served as an essential operational anchor for vulnerability management.  Despite its authority, the cybersecurity community has wrestled with a frustrating structural bottleneck: the catalog has traditionally operated as a trailing indicator.  US, DHS CISA had to privately validate in-the-wild exploitation before publishing, occasionally warning network defenders’ days or weeks after threat actors

Hackers are increasingly exploiting trusted artificial intelligence (AI) platforms like ChatGPT and Claude to turn them against their own users.  Recently, Hackread.com reported a flaw called ClaudeBleed, discovered by LayerX, which allowed unauthorized browser extensions to hijack Anthropic Claude’s interface.  Now, hackers are reportedly abusing official features of these AI tools to spread malware while easily evading web filters and security checks.[1]

The Fake Outage Trick - These observati

Analysts at SophosLabs, the threat research unit of the leading cybersecurity firm, Sophos,  have investigated a series of ransomware attacks attributed to the threat group behind malware they have named WantToCry, not to be confused with the notorious and persistent Wannacry malware, which first emerged in 2017.  This new operation relies on abusing the Server Message Block protocol for initial network access rather than deploying traditional malware on victim systems.

Attackers first conduct r

Red Sky Alliance monthly queries our backend databases, identifying all new data containing Motor Vessel (MV) and Motor Tanker (MT) in the subject line of malicious emails.  Malicious actors use emails with Motor Vessel (MV) or Motor Tanker (MT) in the subject line as a lure to entice users in the maritime industry to open emails containing malicious attachments.  Red Sky Alliance is providing this list of Motor Vessels in which we directly observed the vessel being impersonated, with associate

A team of Norwegian neuroscientists spent years mapping exactly what happens inside the brain when people pick up a pen versus tap a keyboard.  Their study, published in Frontiers in Psychology, provides a detailed picture.  Audrey van der Meer and her colleagues at the Developmental Neuroscience Laboratory in Trondheim recruited 36 right-handed university students, fitted each with a cap holding 256 sensors, and recorded their brain activity while they wrote or typed ordinary words.  When the s

Security researchers at Rapid7 have identified a state-sponsored operation in which the Iranian-linked group MuddyWater disguised espionage activity as a ransomware incident. The campaign, observed in early 2026, initially appeared to involve the Chaos Ransomware-as-a-Service group but was later assessed as a false flag operation.  Forensic analysis linked the intrusion to MuddyWater through specific code-signing certificates and command-and-control infrastructure.

Article HERE

The activity is a

On 31 May 2026, word spread on several Telegram instant message channels that Meta’s AI bot would happily add an email address to an existing account as part of the bot’s standard password reset flow.  A video released on Telegram by pro-Iran hackers claimed to document a remarkably simple exploit that appears to have involved using a VPN connection with an IP address that is in or near the target’s usual hometown, requesting a password reset for the account, and then choosing to chat with Meta’

Consider the history of any recent corporate scandal, and it is quite possible to guess what the story began with: a poorly secured file.  No complex hacker intrusion, no state-sponsored attacks, just a document that had been sent to the wrong address, left in an unprotected storage space or forwarded to a person who could hardly be trusted with confidential information.

As for modern businesses, they almost certainly store some sort of confidential data and exchange it in a manner that is far f

Artificial intelligence has become integral to contemporary cyber-attack planning and execution.  Recent research demonstrates how embedded AI systems now operate across organized cybercrime activities, fundamentally altering attack methodologies through increased speed and targeting precision.  Europol's 2026 threat assessment identifies the integration of automation and AI as a defining characteristic of modern cybercrime. Industry reporting indicates that AI vulnerabilities and AI-enabled fra

Researchers at ESET have published a detailed analysis of Webworm's 2025 operations, a China-aligned Advanced Persistent Threat (APT) group previously focused on organizations in Asia.  The group has now expanded its activities to Europe, targeting government bodies in Belgium, Italy, Poland, Serbia, and Spain, while also partnering with a university in South Africa.[1]

The Webworm threat group has links to other China-aligned actors, including SixLittleMonkeys and FishMonger. In earlier campaig

Twenty minutes into drafting an article, I stopped.  The voice was mine.  The rhythm was mine.  The vocabulary was mine. But the argument had moved somewhere I had not chosen to take it.  I had opened the session with a clear thesis.  The AI LLM assistant did not disagree with me.  It had simply kept offering better-sounding alternatives. And I had kept accepting them.  By the time I noticed, I could not easily identify where my thinking ended and the model’s thinking began.

Most people still im

Picture a locked box that anyone can see, but only you can open with a special key you keep hidden.  That simple idea powers the security of nearly every cryptocurrency wallet, bank transfer, and secure online login today.  A new 110-page analysis from Project Eleven warns that this everyday protection could crumble within four to seven years under the weight of an entirely different kind of machine: the quantum computer.  The report, titled The Quantum Threat to Blockchains - 2026 Report, maps

For years, science fiction has warned humanity about artificial intelligence going off the rails.  Killer computers, manipulative chatbots, and superintelligent systems deciding people are the problem... all these themes have become so familiar that “evil AI” is practically its own entertainment genre.  Now, Anthropic is floating an idea that sounds almost like the plot of a science fiction novel itself: what if all those stories helped teach modern AI systems how to behave badly in the first pl