A cyber-espionage campaign linked to Chinese state interests has been uncovered, deploying Windows-based surveillance malware against members of the World Uyghur Congress, highlighting the ongoing digital repression faced by the Uyghur diaspora.
The rise of AI-enhanced cybercrime, exemplified by incidents like deepfake fraud, is exposing the limitations of conventional cyber insurance, prompting businesses to reassess their risk management strategies.
DragonForce has transformed into a ransomware cartel, allowing affiliates to operate under their own brands while utilizing shared infrastructure, which has led to a significant increase in targeted attacks and a growing influence in the cybercrime landscape.
US organizations collectively paid nearly $155 million in class-action settlements related to data breaches from August 2024 to February 2025, with the healthcare sector being the most affected.
SAP has revealed a severe zero-day vulnerability in the Visual Composer component of its NetWeaver application server, allowing unauthenticated attackers to execute remote code and potentially compromise systems.
The Mandiant M-Trends 2025 Report reveals a significant decrease in phishing attacks, with credential theft and vulnerability exploitation becoming the primary methods of initial access for cybercriminals.
