Two Ukrainian nationals were arrested in Poland while carrying advanced hacking equipment capable of probing sensitive wireless networks. Their actions raised concerns about espionage operations targeting critical infrastructure, prompting a wider investigation into cross-border surveillance activities.
A newly observed Mirai variant, “Broadside,” is exploiting weakly protected IoT systems across global maritime logistics environments. Its rapid spread and operational impact highlight growing risks as critical shipping infrastructure becomes increasingly automated and interconnected.
AWS’s agentic-AI initiative promises rapid enterprise modernization, but it also broadens cyber-attack surfaces dramatically. Autonomous agents bridging legacy systems and cloud infrastructure demand rigorous security, governance, and threat modeling before adoption.
LockBit 5.0’s infrastructure was exposed through leaked servers and misconfigured systems, giving investigators rare insight into its ransomware operations. This analysis breaks down what was uncovered and how defenders can respond.
Apple has issued a sweeping new round of cyber-threat notifications to users across 84 countries, signaling a global escalation in targeted spyware operations. This analysis explains what triggered the alerts, how attackers operate, and what high-risk users must do immediately.
Manufacturers face the most dangerous cyber landscape in their industry’s history. Attackers now target OT systems, supply chains and intellectual property with unprecedented sophistication, creating widespread operational and financial impact.
Security teams should treat the recent spike in login traffic against GlobalProtect portals as a serious alarm. Between November 14 and 19, 2025, threat-intelligence sensors logged roughly 2.3 million sessions hitting the /global-protect/login.esp endpoint on PAN-OS and GlobalProtect gateways. That represents a nearly 40× increase in daily scan volume, hitting the highest level seen in…
India’s telecom ministry rescinded its controversial order forcing all new and existing smartphones to pre-install the government-run “Sanchar Saathi” app. The reversal follows widespread criticism over privacy risks, consent violations, and potential mass surveillance, raising fresh questions about digital rights and security oversight in a market of over a billion mobile users.
Cl0p ransomware exploited a zero-day in Oracle E-Business Suite to steal years of invoice data from Barts Health NHS Trust. The leak exposed names, addresses, and payment info of patients, staff, and suppliers, now circulating on the dark web. Learn what was compromised, who’s at risk, and how to protect yourself.
The latest Cybersecurity and Infrastructure Security Agency (CISA) advisory reveals that PRC-linked hackers use a backdoor called BRICKSTORM to gain long-term access to VMware vSphere and Windows environments, affecting government and IT networks. This article unpacks the attack chain, impacted sectors and critical defensive steps organizations should take now.