Information Security Magazine

Russian military intelligence-linked hackers are using a new malware called “Authentic Antics” to secretly access Microsoft cloud email accounts, the UK's NCSC reports

Ukraine’s CERT-UA has identified a new AI-powered malware, dubbed “LameHug,” which executes commands on compromised Windows systems in cyber-attacks, targeting the nation’s security and defense sector

A cryptomining botnet active since 2019 has incorporated likely AI-generated Lcryx ransomware into its operations

Comparitech found that healthcare ransomware attacks rose 4% in H1 2025, a significantly lower rate than the cross-sector average of 50%

A new malware campaign uses GitHub to deliver payloads via Amadey botnet, bypassing email distribution

Cybercriminals are using AI cloaking tools to evade detection, disguising phishing and malware sites

Harmonic Security raises the alarm as one in 12 British and American employees uses Chinese GenAI tools

Microsoft has reported Scattered Spider continues to evolve tactics to compromise both on-premises infrastructure and cloud environments

There were 1732 publicly reported US data breaches in the first half of 2025, according to the latest ITRC report

A Veeam survey found that 96% of financial services organizations believe their current levels of data resilience falls short of DORA compliance, citing major challenges

A new malware campaign targeting Hong Kong finance has been identified, featuring SquidLoader to deploy Cobalt Strike Beacon

A Europol coordinated operation has taken down key infrastructure used by pro-Russian hacktivist group NoName057(16), as well as a number of arrests

A data breach at Episource has exposed the personal information of 5.4 million individuals after attackers accessed systems for 10 days

BlackFog found that publicly disclosed ransomware attacks on retail grew significantly in Q2 compared to Q1, with UK firms heavily targeted

Cloudflare highlighted a huge rise in hyper-volumetric DDoS attacks in Q2 2025, with attackers seeking to overwhelm defenses

CyCognito research finds that a third of education sector APIs, web apps and cloud assets are exposed to attack

The Co-op is teaming up with The Hacking Games to inspire pathways into ethical cybersecurity careers

MITRE has introduced AADAPT framework, a new cybersecurity framework aimed at mitigating risks in digital financial systems like cryptocurrency

A new phishing campaign uses SVG files for JavaScript redirects, bypassing traditional detection methods

The latest report from AppOmni has revealed 91% confidence in SaaS security while 75% of organizations have faced incidents