Germany and Israel have expanded their cybersecurity partnership through a new agreement that enhances cooperation, knowledge exchange, and joint development of cyber defense technologies. This collaboration aims to strengthen national cyber resilience and address digital threats while reinforcing their long-standing security relationship. #Germany #Israel #CyberDome #CybersecurityPartnership…
Tag: CRITICAL INFRASTRUCTURE
The report summarizes December 2025 ransomware activity, providing DLS-based victim counts, ransomware sample statistics (based on AhnLab diagnostic names), and trend data for top groups and affected industries. It notes a changed aggregation method for victim counts starting December 2025 and highlights active operations by groups such as Qilin and LockBit…
The Kimwolf botnet, a successor to the Aisuru DDoS network, rapidly expanded to over 2 million Android TV devices using residential proxies. Its activities include frequent DDoS attacks, mainly targeting Minecraft servers, posing significant threats if used against critical infrastructure. #Kimwolf #Aisuru #DDoS #AndroidTV #CyberThreats…
The Department of Homeland Security is developing a new advisory body called ANCHOR to replace CIPAC, aiming to improve communication between industry and government on critical infrastructure threats. The initiative seeks to streamline engagement, open some meetings to the public, and maintain important liability protections. #CIPAC #ANCHOR…
Chinese hackers, affiliated with Chinese government-backed groups, have successfully infiltrated critical infrastructure in North America by exploiting vulnerabilities and compromised credentials. Their campaigns involve sophisticated tools like Earthworm and zero-day exploits such as CVE-2025-53690. #UAT8837 #Earthworm…
Many SOCs are struggling to adapt to the evolving cyber threat landscape due to outdated practices and disjointed tools. Modern solutions like automation, dynamic analysis, and integrated workflows can significantly improve incident response times and detection rates. #ANY.RUN #SOCautomation…
Victim Vereinigte-stadtwerke has fallen victim to a ransomware attack carried out by the threat actor payoutsking, compromising the company’s critical infrastructure and data security. The incident has impacted Germany#Germany.
The World Economic Forumâs annual cybersecurity outlook highlights AI as the primary driver of change and concern in cybersecurity, with organizations increasingly assessing AI security risks. Top concerns include AI vulnerabilities, cyber-enabled fraud, and geopolitical threats, prompting organizations to adopt AI-driven defense strategies and governance models. #AIsecurity #CyberEnabledFraud…
Research shows a significant increase in third-party applications accessing sensitive data without justification, with government and education sectors experiencing sharp rises in malicious activity. Despite prioritizing web security, most organizations lack implemented solutions to mitigate these risks, emphasizing governance gaps and over-permissioned tracking tools like Facebook Pixel and Google Tag Manager….
Novee, an offensive security startup, has emerged from stealth with $51.5 million in funding to develop an AI-driven penetration testing platform that simulates real-world hacking tactics. The platform aims to enhance vulnerability detection and automate security validation, empowering security teams to focus on complex threats. #Novee #AIcybersecurity…
ANY.RUN performed a full dynamic and static analysis of CastleLoader, revealing a multi-stage delivery (Inno Setup â AutoIt â process hollowing into jsc.exe) that injects a PE-only-in-memory payload used to deliver information stealers and RATs against government and critical infrastructure targets. The report includes an automated parser to extract configuration strings,…
Russian state-sponsored group APT28 is conducting credential-harvesting campaigns targeting energy, defense, and government organizations using sophisticated phishing tactics. They heavily rely on free hosting, tunneling, and link-shortening services to evade detection and maintain operational flexibility. #APT28 #CredentialHarvesting…
Dr. Amit Chaubey discusses the expanding â2026 Business Blast Radius,â emphasizing how external dependencies and geopolitical risks threaten global infrastructure and organizational resilience. The rising cyber threats, including AI-enabled identity attacks and cloud exploits, demand a collective, proactive security approach. #ChakraX #GlobalCyberThreats…
The Lynx ransomware group has claimed to have compromised Grupo Ruiz, a leader in sustainable mobility in Spain, exposing sensitive corporate, financial, and operational data. The breach underscores the threat posed by cybercriminal groups targeting critical infrastructure and innovative transportation companies. #LynxRansomware #GrupoRuiz…
Cisco Talos has exposed UAT-7290, a Chinese-nexus threat actor focusing on critical infrastructure, especially telecom networks in South Asia and Southeastern Europe. This group builds long-term attack infrastructure and acts both as spies and facilitators for other hacker groups. #UAT-7290 #ChinaNexus #CriticalInfrastructure #SoutheasternEurope…