Information Security Magazine

ToolShell exploit activity surged last quarter, appearing in over 60% of Cisco Talos IR cases and driving a sharp rise in public-facing application attacks

A cyber-espionage campaign by Pakistan’s TransparentTribe has been identified, targeting Indian government systems using DeskRAT

Cyber-attacks by North Korea’s Lazarus Group target European defense firms in drone development

Forescout researchers discovered critical and high-severity vulnerabilities in several TP-Link VPN routers

Trend Micro believe security teams should anticipate increased Vidar 2.0 prevalence in campaigns through Q4 2025

SentinelLABS Researchers have uncovered a new phishing campaign, PhantomCaptcha, targeting aid organizations supporting Ukraine

Group-IB has uncovered a phishing campaign by Iran-linked MuddyWater, exploiting compromised emails for foreign intelligence

The Cyber Monitoring Centre has classified the cyber-attack against Jaguar Land Rover as a “systemic cyber event”

Scattered Lapsus$ Hunters may be preparing to launch an extortion-as-a-service model, according to Palo Alto Networks

Group-IB has uncovered a scam operation impersonating Singapore officials using Google Ads and deepfakes

According to ExtraHop’s latest threat landscape report, average ransomware payments surged 44% to $3.6m in 2025 despite fewer incidents

A critical out-of-bounds write flaw (CVE-2025-9242) in WatchGuard Fireware OS could allow remote code execution

The Coldriver hacking group reportedly shifted its operation quickly after the May 2025 public disclosure of its LostKeys malware

Lumma Stealer operators allegedly exposed in underground doxxing campaign, with sensitive details leaked by rival cybercriminals, according to Trend Micro

The Dutch Data Protection Authority issued Experian a €2.7m for GDPR violations including excessive collection of personal data

Only one in ten IT and cybersecurity professionals feels “very prepared” to manage generative AI risks

A cyber intrusion by China-linked group Salt Typhoon has been observed targeting global infrastructure via DLL sideloading

Several suspects have been arrested over links with a network running a “sophisticated” cybercrime-enabling service

Microsoft has revoked over 200 fraudulent code-signing certificates used in a ransomware campaign involving fake Teams installers by threat group Vanilla Tempest

Dutch prosecutors suspect three teens of aiding a foreign power, with one allegedly linked to a Russian-affiliated hacker group