Threat actors stories - Page 2

Akamai says attack volumes in Europe, the Middle East and Africa climbed 36% year on year as APIs and automated DDoS campaigns fuel a sharp surge.

Cybersecurity experts say many firms are still relying on fragmented backup tools and untested recovery plans as ransomware attacks and cloud complexity surge.

Gcore warns DDoS attacks hit 1.3 million in late 2025 as brief, high-volume floods and longer app assaults expose more sectors to risk.

Bitdefender reports a 130% jump in phishing and malware activity across Gulf markets, with fake invoices and banking lures driving attacks.

Qilin keeps top spot as ransomware incidents drop 8% in February, while CL0P and The Gentlemen post sharp gains and new AI risks emerge.

AI-fuelled cyber attacks are spreading faster worldwide, CrowdStrike warns, as breakout times plummet and criminals weaponise mainstream tools.

HPE Threat Labs warns cybercrime now runs like big business, as AI-fuelled, industrial-scale attacks hammer government and finance.

Cybercriminals exploit Keitaro ad tracker to cloak AI trading scams and malware, tying some 15,500 malicious domains into a hidden network.

Keitaro ad tracker abused in 15,500 scam and malware domains, as fraudsters cloak AI-themed investment lures from security watchdogs.

SpecterOps broadens BloodHound Enterprise to map identity attack paths across Okta, GitHub and Jamf-managed Macs in hybrid environments.

As AI-powered attacks shatter old perimeters, SOCs race to agentic operations where high-fidelity data becomes security's vital lifeblood.

Malicious fake Windsurf IDE extension hid JavaScript, abused Solana to fetch payloads, and stole developers' browser credentials and tokens.

Barracuda reports a global surge in identity-based cyber attacks, with stolen credentials, supply-chain abuse and weaponised PDFs on the rise.

Rapid7 warns exploited high and critical software flaws more than doubled in 2025, as attackers compress disclosure-to-attack windows.

Harness has launched AI Security and Secure AI Coding tools to spot and block vulnerabilities in AI-powered apps and AI-generated code.

Ransomware group LeakNet adopts ClickFix lures and a Deno-based fileless loader to scale attacks and evade traditional endpoint defences.

Okta and partners pull rogue ShieldGuard Chrome extension that stole crypto wallet data and bypassed browser defences via custom code.

SonicWall's SonicSentry SOC cut short a Saturday night cyberattack, spotting rogue ScreenConnect activity and isolating a compromised PC.

Australia faces AI-driven cyberwarfare “boiling point” as attacks surge, ransomware payouts soar and security remains dangerously reactive.

HPE warns cybercriminals now run attacks like global enterprises, using repeatable workflows, automation and AI to outpace defences.