There has been a significant rise in ransomware campaigns which do not rely on encryption as cybercriminal extortion groups shift their operations. An increasing number of cybercriminals are relying on data theft alone to extort ransom payments out of victims,… Read More "Hackers Increasingly Shun Encryption in Favour of Pure Data Theft and Extortion"
Jan 15, 2026Ravie LakshmananWeb Security /Vulnerability A maximum-severity security flaw in a WordPress plugin called Modular DS has come under active exploitation in the wild, according to Patchstack. The vulnerability, tracked as CVE-2026-23550 (CVSS score: 10.0), has been described as… Read More "Critical WordPress Modular DS Plugin Flaw Actively Exploited to Gain Admin Access"
Tim Berghof, security evangelist at G DATA, confirmed to CSO that while this approach is technically just an extension of the “industry-standard” double extortion, it can have massive consequences. “Even if a complaint turns out to be unfounded, official investigations… Read More "Ransomware gangs extort victims by citing compliance violations"
I recently had, what I thought, was a unique brainwave. (Spoiler alert: it wasn’t, but please read on!) As a marketing leader at ESET UK, part of my role is to communicate how our powerful and comprehensive solutions can be… Read More "What Schrödinger can teach us about cybersecurity"
A new set of security principles aimed at protecting operational technology (OT) environments has been released by the US Cybersecurity and Infrastructure Security Agency (CISA), the United Kingdom’s National Cyber Security Centre (NCSC) and the Federal Bureau of Investigation (FBI),… Read More "Global Agencies Release New Guidance to Secure Industrial Networks"
Google offers a Validator App through the Play Store that vendors have to run as part of getting their products certified to use Fast Pair. According to its description, the app “validates that Fast Pair has been properly implemented on… Read More "Hundreds of Millions of Audio Devices Need a Patch to Prevent Wireless Hacking and Tracking"
Jan 15, 2026Ravie LakshmananCybersecurity / Hacking News The internet never stays quiet. Every week, new hacks, scams, and security problems show up somewhere. This week’s stories show how fast attackers change their tricks, how small mistakes turn into big risks,… Read More "AI Voice Cloning Exploit, Wi-Fi Kill Switch, PLC Vulns, and 14 More Stories"
“The phMonitor service marshals incoming requests to their appropriate function handlers based on the type of command sent in the API request,” they said. “Every command handler is mapped to an integer, which is passed in the command message. Security… Read More "Researchers warn of long‑running FortiSIEM root exploit vector as new CVE emerges"
Being seen as reliable is good for ‘business’ and ransomware groups care about ‘brand reputation’ just as much as their victims 11 Dec 2025 • , 4 min. read Black Hat Europe 2025 opened with a presentation by Max Smeets… Read More "Reputation is currency – even in the ransomware economy"
The role of chief information security officer (CISO) is now more likely to be regarded as an executive-level position than VP or director, signifying its growing importance to the business, according to IANS. The research and advisory firm put together… Read More "CISO Role Reaches “Inflexion Point” With Executive-Level Titles"
