The risk posed by insiders with authorized access to sensitive systems has prompted a renewed call to action from the US Cybersecurity and Infrastructure Security Agency (CISA). The government entity has released a new infographic designed to help organizations prevent, detect… Read More "New CISA Guidance Targets Insider Threat Risks"
The French employment agency, France Travail, has received a €5m ($6m) fine for security failures that led to the compromise of an estimated 43 million jobseekers. In a public statement on January 29, 2026, France’s data protection regulator, the Commission… Read More "France Fines National Employment Agency €5m Over 2024 Data Breach"
The FBI has launched Operation Winter SHIELD outlining ten actions which organizations should implement to help protect themselves, society and the state against cyber-attacks and malicious intrusions. The Securing Homeland Infrastructure by Enhancing Layered Defense (SHIELD) cyber resilience campaign details… Read More "Operation Winter SHIELD: FBI Issues Cyber Call to Arms"
Google and several industry partners have taken coordinated action to disrupt what is believed to be one of the largest residential proxy networks globally, known as IPIDEA. The network operates largely out of public view but has become a key… Read More "Google Disrupts Extensive Residential Proxy Networks"
Several European government institutions appear to have been targeted in a coordinated campaign designed to steal data on mobile users, it has emerged. First reported late last week, the incidents occurred at the European Commission, the Finnish government, and at least… Read More "European Governments Breached in Zero-Day Attacks Targeting Ivanti"
The National Cyber Security Centre (NCSC) has issued an alert to critical national infrastructure (CNI) providers, urging them to act now to protect against “severe” cyber threats. The alert comes following coordinated cyber-attacks which targeted Poland’s energy infrastructure with malware… Read More "NCSC Issues Warning Over “Severe” Cyber-Attacks Targeting CNI"
The Singapore government disrupted cyber-attacks attributed to Chinese-nexus cyber threat group UNC3886 which targeted the country’s four telecommunications operators. The law enforcement operation, dubbed Operation Cyber Guardian, spanned from the summer of 2025 to early 2026 but remained secret until… Read More "Singapore Takes Down Chinese Hackers Targeting Telco Networks"
Small and medium-sized enterprises (SMEs) which think they won’t be targeted by cyber-attacks are wrong and should take action to defend against rising cyber threats, the head of the National Cyber Security Centre (NCSC) has warned. NCSC CEO Richard Horne… Read More "SMEs Wrong to Assume They Won’t Be Hit by Cyber-Attacks: NCSC Boss War"
Drift has revealed that the April 1, 2026, attack that led to the theft of $285 million was the culmination of a months-long targeted and meticulously planned social engineering operation undertaken by the Democratic People’s Republic of Korea (DPRK) that began in the… Read More "$285 Million Drift Hack Traced to Six-Month DPRK Social Engineering Operation"
A group of academic security researchers have detailed a set of vulnerabilities in four popular cloud-based password managers that could allow an attacker to view and change the passwords stored in a victim’s vaults. The researchers, from ETH Zurich and… Read More "Vulnerabilities in Password Managers Allow Hackers to Change Passwords"
