Cyber Attack

Norway accused the hacker group Salt Typhoon of breaching various organizations. The Norwegian Police Security Service reports that the hacker group is targeting weak network devices for espionage. The disclosure was made in the Norwegian Police Security Service’s (PST) annual threat assessment for 2026. The agency’s director general, Beate Gangås, …

According to Palo Alto Networks, a state-backed hacking group compromised government and critical infrastructure systems worldwide. The security firm identifies the threat actor as TGR-STA-1030, and their recent activity is dubbed as the Shadow Campaign. Palo Alto Networks expressed high confidence that it’s a nation-state group operating out of Asia …

Sysdig Threat Research Team (TRT) observed an offensive cloud operation targeting an AWS environment in which the threat actor went from initial access to administrative privileges in less than 10 minutes. This incident was notable for its rapid execution and indications that the attacker used large language models (LLMs) to …

Ransomware activity is still very high in 2026, with attackers targeting various organizations, according to recent victim statistics. This year for the month of January, there have been 796 confirmed ransomware victims from 315 different groups, showing a fragmented but aggressive threat landscape targeting businesses globally. Top Ransomware Groups by Number …

The Aisuru/Kimwolf botnet launched the largest known DDoS attack, reaching a peak of 31.4 terabits per second (Tbps). The massive attack known as “The Night Before Christmas” began on December 19, 2025, hitting Cloudflare’s infrastructure and customers with high-volume DDoS attacks. It featured record bandwidth Layer 4 attacks and HTTP …

Cloudflare’s Q4 2025 report shows that Bangladesh has become the largest source of DDoS attacks, moving up two spots from the previous quarter. The report indicates a trend of increased DDoS traffic originating from Asia and South America, primarily due to compromised infrastructure, not the location of the attackers. After …

Canadian citizens are increasingly targeted by phishing scams that prey on their use of digital services for taxes, travel, packages, and fines. CloudSek researchers found fraud networks imitating government websites like the CRA, Canada Post, Air Canada, and PayBC. These campaigns collect personal data and credentials on a large scale, …

A federal grand jury in Nebraska has indicted 31 individuals for their involvement in a Ploutus malware scheme that resulted in the theft of millions from ATMs throughout the United States. This sophisticated “ATM jackpotting” operation is connected to the Tren de Aragua (TdA) gang, classified as a foreign terrorist …

A serious security flaw in WinRAR, a popular file compression tool for Windows, is being exploited by attackers to gain unauthorized access to systems. CVE-2025-8088 is a vulnerability that lets attackers insert harmful files into sensitive system folders unnoticed, giving them control over Windows computers. The security flaw was first …

Cybersecurity researcher Jeremiah Fowler discovered a data leak containing 149 million logins and passwords. The database was publicly accessible without password protection or encryption, holding 149,404,754 unique credentials totaling 96 GB. The leaked records contained usernames and passwords from victims worldwide, covering various online services and accounts. These included social …