Infosec stories

AI-fuelled ransomware hit record levels in 2025, with BlackFog warning that around 86% of attacks worldwide are never publicly disclosed.

LummaStealer roars back after domain takedown, using fake CAPTCHA ClickFix tricks and CastleLoader to spread via routine user actions.

Proofpoint snaps up AI security specialist Acuvity to police ‘agentic workspaces’ as enterprises rush to deploy copilots and agents.

Okta launches Agent Discovery to uncover and rein in shadow AI agents, mapping risky app access and tightening identity-based controls.

Arctic Wolf launches Aurora managed endpoint defence, rapid-response SLA and MSP admin portal to help partners scale security operations.

Okta warns North Korean operatives are landing remote tech jobs with stolen and synthetic identities to fund the regime and enable cyber attacks.

BADIIS malware is hijacking over 1,800 IIS servers worldwide, quietly boosting illicit gambling and crypto phishing sites via poisoned SEO.

Daon warns viral ChatGPT caricature craze is handing fraudsters a richer dossier of personal data to fuel scams and social engineering.

AppControl debuts a Windows tool that logs second-by-second performance history and privacy events, revealing what’s really slowing PCs.

Humanix will pitch its human-layer security platform at RSAC 2026’s Innovation Sandbox after landing a Top 10 finalist spot and USD $5 million.

Simbian claims 15-fold customer surge as its AI-driven SOC agents vie to replace rules-based automation in the cyber defence arms race.

CISOs show strong faith in cyber defences yet less than two-thirds feel ready for fast-rising AI-driven attacks and deepfake threats.

A newly uncovered SSHStalker botnet uses old-school IRC and legacy Linux exploits to hijack outdated corporate and cloud hosts at scale.

Cyber premiums drop 11% as competition heats up, but Lockton warns maturing claims could spark a volatile pricing rebound by 2027.

ANYbotics becomes first four-legged robot maker with ISO 27001, easing security reviews for scaling autonomous industrial inspections.

While most slept through Christmas dawn, SonicSentry analysts foiled a 3am brute-force cyber attack on a French client’s firewall.

Cyber group FIRST warns CVE disclosures could smash records in 2026, topping 50,000 and potentially surging towards six figures.

Portnox extends zero trust network access to RDP, SSH, VNC and Telnet, promising passwordless admin access and fewer VPN dependencies.

Illumio and Armis expand their partnership to deliver integrated Zero Trust security for converged IT, OT and IoT estates worldwide.

QuSecure hires ex-Navy SEAL commander Brian Cunningham as EVP for strategy and growth to scale post-quantum cryptography adoption.