German cops add Black Basta boss to EU most-wanted list
Ransomware kingpin who escaped Armenian custody is believed to be lying low back home
Cyber-crime16 Jan 2026 |
Cyber-crime
RondoDox botnet linked to large-scale exploit of critical HPE OneView bug
Check Point observes 40K+ attack attempts in 4 hours, with government organizations under fire
Cyber-crime16 Jan 2026 | 2
Chinese spies used Maduro's capture as a lure to phish US govt agencies
What's next for Venezuela? Click on the file and see
Cyber-crime15 Jan 2026 | 9
Microsoft taps UK courts to dismantle cybercrime host RedVDS
Redmond says cheap virtual desktops powered a global wave of phishing and fraud
Cyber-crime15 Jan 2026 | 4
France fines telcos €42M for sub-par security prior to 24M customer breach
Three major GDPR violations, including a lack of basic security controls, lead to hefty dent in profits
Cyber-crime14 Jan 2026 | 10
'Imagination the limit': DeadLock ransomware gang using smart contracts to hide their work
New crooks on the block get crafty with blockchain to evade defenses
Research14 Jan 2026 | 1
Cyber-stricken Belgian hospitals refuse ambulances, transfer critical patients
Attack enters second day with major disruption to healthcare provision
Cyber-crime14 Jan 2026 | 5
Eurail passengers taken for a ride as data breach spills passports, bank details
Travel biz tells customers to change passwords beyond its own services
Cyber-crime14 Jan 2026 | 17
Spanish power giant sparks breach probe amid claims of massive data grab
Endesa says payment info stolen after alleged crook boasted of 1 TB-plus haul
Cyber-crime14 Jan 2026 | 10
Dutch cops cuff alleged AVCheck malware kingpin in Amsterdam
33-year-old was under surveillance for some time before returning home from the UAE
Legal13 Jan 2026 | 7
Court tosses appeal by hacker who opened port to coke smugglers with malware
Dutchman fails to convince judges his trial was unfair because cops read his encrypted chats
Cyber-crime13 Jan 2026 | 29
'Violence-as-a-service' suspect arrested in Iraq, extradition underway
Gang members 'systematically exploited children and young people,' cops say
Cyber-crime12 Jan 2026 | 9
Infamous BreachForums forum breached, spilling data on 325K users
Updated Website built around buying and selling stolen data has lost control of its own
Cyber-crime12 Jan 2026 | 9
Meta admits to Instagram password reset mess, denies data leak
infosec in brief PLUS: Veeam patches critical vuln; Crims bribing dark web insiders; UK school takedown; And more
Security11 Jan 2026 | 7
UK government exempting itself from flagship cyber law inspires little confidence
ANALYSIS Ministers promise equivalent standards just without the legal obligation
Cyber-crime10 Jan 2026 | 40
Putinswap: France trades alleged ransomware crook for conflict researcher
Basketball player accused of aiding cybercrime gang extradition blocked in exchange for Swiss NGO consultant
Cyber-crime09 Jan 2026 | 11
QR codes a powerful new phishing weapon in hands of Pyongyang cyberspies
State-backed attackers are using QR codes to slip past enterprise security and help themselves to cloud logins, the FBI says
Cyber-crime09 Jan 2026 | 24
China-linked cybercrims abused VMware ESXi zero-days a year before disclosure
Huntress analysis suggests VM escape bugs were already weaponized in the wild
Virtualization09 Jan 2026 |
Ransomware attacks kept climbing in 2025 as gangs refused to stay dead
Cop wins hit crime infrastructure, not the people behind it
Cyber-crime08 Jan 2026 | 15
CISA flags actively exploited Office relic alongside fresh HPE flaw
Max-severity OneView hole joins a PowerPoint bug that should've been retired years ago
Cyber-crime08 Jan 2026 | 6
Popular
AWS flips switch on Euro cloud as customers fret about digital sovereignty
EU-only ops, German subsidiaries, and a pinky promise your data won't end up in Uncle Sam's hands
Dell wants £10m+ from VMware if Tesco case goes against it
Exclusive Retail giant's disty, reseller, and vendor all say they can't and won't sell
Wine 11 runs Windows apps in Linux and macOS better than ever
Transparently runs 16, 32, and 64-bit Windows apps, but still doesn't use the Microsoft store.
AI may be everywhere, but it's nowhere in recent productivity statistics
Interview Forrester principal analyst JP Gownder says jobs eaten by bots don't come back
A simple CodeBuild flaw put every AWS environment at risk – and pwned 'the central nervous system of the cloud'
And it's 'not unique to AWS,' researcher tells The Reg
New Linux malware targets the cloud, steals creds, and then vanishes
Cloud-native, 37 plugins … an attacker's dream
Maker fight! SparkFun cuts ties with Adafruit in harassment dispute
Adafruit claims SparkFun aims to shoot the messenger for criticizing corporate tolerance of intolerance
Windows App forgets how to log in with first security update of the year
January patch trips up Azure Virtual Desktop and Windows 365 authentication
Engineer used welding shop air hose to 'clean' PCs – hilarity did not ensue
On Call How not to maintain computers
Flipping one bit leaves AMD CPUs open to VM vuln
Fix landed in July, but OEM firmware updates are required
STORIES
ESA calls cops as crims lift off 500 GB of files, say security black hole still open
exclusive Two weeks, two major data leaks … not a good look for the European Space Agency
Cyber-crime07 Jan 2026 | 19
Stalkerware slinger pleads guilty for selling snooper software to suspicious spouses
pcTattletale boss Bryan Fleming faces up to 15 years in prison when sentenced later this year
Cyber-crime07 Jan 2026 | 7
Ministry of Justice splurged £50M on security – still missed Legal Aid Agency cyberattack
Updated High-risk system compromised long before intrusion was finally spotted
Cyber-crime07 Jan 2026 | 8
Jaguar Land Rover wholesale volumes plummet 43% in cyberattack aftermath
Production halts and supply-chain disruption left luxury automaker reeling in fiscal Q3
Cyber-crime07 Jan 2026 | 16
Brightspeed investigates breach as crims post stolen data for sale
Crimson Collective claims 'sophisticated attack'
Cyber-crime06 Jan 2026 |
Fake Windows BSODs check in at Europe's hotels to con staff into running malware
Phishers posing as Booking.com use panic-inducing blue screens to bypass security controls
Research06 Jan 2026 | 15
Crypto wallet shop Ledger confirms customer data lifted in Global-e snafu
Order and contact details accessed via ecommerce partner, and phishing has begun
Cyber-crime06 Jan 2026 | 3
Students bag extended Christmas break after cyber hit on school IT
Phones, email, and core systems knocked out at Higham Lane in Nuneaton
Cyber-crime06 Jan 2026 | 26
UK injects just £210M into cyber plan to stop Whitehall getting pwnd
Central government will supposedly be as secure as energy facilities and datacenters under new proposals
Public Sector06 Jan 2026 | 10
One criminal, 50 hacked organizations, and all because MFA wasn't turned on
Crim used infostealer to get cloud credentials
Cyber-crime06 Jan 2026 | 24
New Zealand orders review into ManageMyHealth cyberattack
Government 'incredibly' concerned about breach potentially affecting more than 100,000 patients
Cyber-crime05 Jan 2026 | 7
Bitfinex crypto thief who was serving five years thanks Trump for early release
Netflix documentary part 2 in the works?
Cyber-crime02 Jan 2026 | 21
Cybercrook claims to be selling infrastructure info about three major US utilities
For the bargain price of 6.5 bitcoin
Cyber-crime02 Jan 2026 | 6
LockBit takedown architect gets New Year award from King Charles
Gavin Webb orchestrated Operation Cronos as it pulled off the legendary disruption sting
Cyber-crime02 Jan 2026 | 14
European Space Agency hit again as cybercrims claim 200 GB data up for sale
As in past incidents, ESA says the impact was limited to external systems
Cyber-crime31 Dec 2025 | 17
Hong Kong’s newest anti-scam technology is over-the-counter banking
Funds in ‘Money Safe’ accounts are only available when customers appear for face-to-face verification
Cyber-crime31 Dec 2025 | 27
Cybersecurity pros admit to moonlighting as ransomware scum
Pair became ALPHV affiliates to prey on US-based clients
Cyber-crime31 Dec 2025 | 12
Korean telco failed at femtocell security, exposed customers to snooping and fraud
One cert, in plaintext, on thousands of devices, led to what looks like years of crime
Cyber-crime30 Dec 2025 | 3
Indian cops cuff ex-Coinbase rep over selling customer info to crims
There's more where that came from, CEO says
Cyber-crime29 Dec 2025 | 4
Crims disconnect Wired subscribers from their privacy, publish deets online
Extortion group Lovely claims to have stolen 40 million pieces of info from publisher Conde Nast
Cyber-crime29 Dec 2025 | 17
Accused data thief threw MacBook into a river to destroy evidence
Former staffer of Korean e-tailer Coupang accessed 33 million records but may have done less damage than feared
Cyber-crime29 Dec 2025 | 43
Death, torture, and amputation: How cybercrime shook the world in 2025
The human harms of cyberattacks piled up this year, and violence expected to increase
Cyber-crime28 Dec 2025 | 13
US shuts down phisherfolk’s $14.6M password-hoarding platform
Crooks used platform to scoop up and store banking credentials for big-money thefts
Cyber-crime24 Dec 2025 | 3
21K Nissan customers' data stolen in Red Hat raid
Automaker's third security snafu in three years
Cyber-crime23 Dec 2025 | 10
Poisoned WhatsApp API package steals messages and accounts
And it's especially dangerous because the code works
Cyber-crime22 Dec 2025 | 21
Conman and wannabe MI6 agent must repay £125k to romance scam victim
Judge says former most-wanted fugitive Mark Acklom will likely never return to the UK
Cyber-crime22 Dec 2025 | 17
There’s so much stolen data in the world, South Korea will require face scans to buy a SIM
SK Telecom's epic infosec fail will cost it another $1.5 billion
Security22 Dec 2025 | 35
ATM jackpotting gang accused of unleashing Ploutus malware across US
Latest charges join the mountain of indictments facing alleged Tren de Aragua members
Cyber-crime19 Dec 2025 | 24
Sydney Uni data goes walkabout after criminals raid code repo
Attackers helped themselves to historical personal info on 27K people
Cyber-crime19 Dec 2025 | 17
Ministers confirm breach at UK Foreign Office but details remain murky
Officials admit 'there certainly has been a hack,' but refuse to confirm China link or data theft
Cyber-crime19 Dec 2025 | 26
Amazon blocked 1,800 suspected North Korean scammers seeking jobs
Plus: Lazarus Group has a brand new BeaverTail
Cyber-crime18 Dec 2025 | 13
Crypto crooks co-opt stolen AWS creds to mine coins
'Within 10 minutes of gaining initial access, crypto miners were operational'
Cyber-crime18 Dec 2025 | 3
Kim's crypto thieving reached a record $2B in 2025
ByBit attack doing some seriously heavy lifting
Cyber-crime18 Dec 2025 | 8
Another bad week for SonicWall as SMA 1000 zero-day under active exploit
Flaw in remote-access appliance lets attackers chain bugs for root-level takeover
Cyber-crime18 Dec 2025 | 6
FBI dismantles alleged $70M crypto laundering operation
Justice Department claims unlicensed exchange funneled ransomware profits
Cyber-crime18 Dec 2025 | 8
NHS tech supplier probes cyberattack on internal systems
Updated Around 2,000 GP practices use its products
Cyber-crime18 Dec 2025 | 3
React2Shell exploitation spreads as Microsoft counts hundreds of hacked machines
Security boffins warn flaw is now being used for ransomware attacks against live networks
Cyber-crime18 Dec 2025 | 11
Analytics provider: We didn't expose smut site data to crims
An employee of the adult site could be responsible.
Security16 Dec 2025 | 1
SantaStealer stuffs credentials, crypto wallets into a brand new bag
All I want for Christmas … is all of your data
Cyber-crime16 Dec 2025 | 2
From pr0n to playlists and paperclips, trio of breaches spills data of millions
Adult site, streaming platform, and Japanese retailer expose user info, but not credentials
Cyber-crime16 Dec 2025 | 31
No, SoundCloud hasn’t started tuning out VPNs. It’s mopping up after a cyberattack
Bum note for 20 percent of users whose data leaked
Security16 Dec 2025 | 2
Amazon security boss blames Russia's GRU for years-long energy-sector hacks
'Sustained focus on Western critical infrastructure'
Cyber-crime15 Dec 2025 | 11
China, Iran are having a field day with React2Shell, Google warns
Who hasn't exploited this max-severity flaw?
Cyber-crime15 Dec 2025 | 9
JLR: Payroll data stolen in cybercrime that shook UK economy
Automaker admits raid that crippled its factories in August led to the theft of sensitive info
Cyber-crime15 Dec 2025 | 28
Apple, Google forced to issue emergency 0-day patches
Both admit attackers were already exploiting the bugs, with scant detail and hints of spyware-grade abuse
Patches15 Dec 2025 | 31
Honeypots can help defenders, or damn them if implemented badly
Infosec In Brief PLUS: Crims could burn your AI budgets thanks to weak defaults; CISA's top 25 vulns for 2025; And more
Security14 Dec 2025 | 3
Half of exposed React servers remain unpatched amid active exploitation
Wiz says React2Shell attacks accelerating, ranging from cryptominers to state-linked crews
Cyber-crime12 Dec 2025 | 14
Crypto-crasher Do Kwon jailed for 15 years over $40bn UST bust
Judge said his fraud was on 'epic, generational scale'
Legal12 Dec 2025 | 24
Russian hackers debut simple ransomware service, but store keys in plain text
Operators accidentally left a way for you to get your data back
Cyber-crime11 Dec 2025 | 9
LastPass hammered with £1.2M fine for 2022 breach fiasco
UK data regulator says failures were unacceptable for a company managing the world's passwords
Cyber-crime11 Dec 2025 | 35
Researcher claims Salt Typhoon spies attended Cisco training scheme
Skills gained later fed Beijing's cyber operations, according to SentinelLabs expert
Security11 Dec 2025 | 12
Users report chaos as Legal Aid Agency stumbles back online after cyberattack
Exclusive Workers frustrated with security-first changes to workflows and teething issues
Cyber-crime11 Dec 2025 | 3
700+ self-hosted Gits battered in 0-day attacks with no fix imminent
More than half of internet-exposed instances already compromised
Cyber-crime10 Dec 2025 | 14
US extradites Ukrainian woman accused of hacking meat processing plant for Russia
The digital intrusion allegedly caused thousands of pounds of meat to spoil and triggered an ammonia leak in the facility
Cyber-crime10 Dec 2025 | 23
193 cybercrims arrested, accused of plotting 'violence-as-a-service'
Minors groomed to kill and intimidate victims
Cyber-crime08 Dec 2025 | 5
Barts Health seeks High Court block after Clop pillages NHS trust data
Body confirms patient and staff details siphoned via Oracle EBS flaw as gang threatens to leak haul
Cyber-crime08 Dec 2025 | 23
Apache warns of 10.0-rated flaw in Tika metadata ingestion tool
Infosec in Brief PLUS: New kind of DDOS from the Americas; Predator still hunting spyware targets; NIST issues IoT advice; And more!
Security08 Dec 2025 | 7
Crims using social media images, videos in 'virtual kidnapping' scams
Proof of life? Or an active social media presence?
Cyber-crime05 Dec 2025 | 8
Asus supplier hit by ransomware attack as gang flaunts alleged 1 TB haul
Laptop maker says a vendor breach exposed some phone camera code, but not its own systems
Cyber-crime05 Dec 2025 | 3
Beijing-linked hackers are hammering max-severity React bug, AWS warns
State-backed attackers started poking flaw as soon as it dropped – anyone still unpatched is on borrowed time
Cyber-crime05 Dec 2025 | 4
PRC spies Brickstormed their way into critical US networks and remained hidden for years
'Dozens' of US orgs infected
Cyber-crime04 Dec 2025 | 3
Twins who hacked State Dept hired to work for gov again, now charged with deleting databases
And then they asked an AI to help cover their tracks
Cyber-crime04 Dec 2025 | 18
Aisuru botnet turns Q3 into a terabit-scale stress test for the entire internet
Cloudflare data shows 29.7 Tbps record-breaker landed amid 87% surge in network-layer attacks
Cyber-crime04 Dec 2025 | 21
Here’s your worst nightmare: E-tailer can only resume partial sales 45 days after ransomware attack
Japan’s Askul still can’t run all its sites, but at least the fax line held up OK
Security03 Dec 2025 | 9
University of Pennsylvania joins list of victims from Clop's Oracle EBS raid
Ivy League school warns more than 1,400 people after attackers siphon data via zero-day
Cyber-crime02 Dec 2025 | 1
Europol nukes Cryptomixer laundering hub, seizing €25M in Bitcoin
Operation Olympia pulls Swiss servers offline and scoops up 12TB of data in latest crime infrastructure crackdown
Cyber-crime02 Dec 2025 | 8
Kensington and Chelsea confirms IT outage was a data breach after all
Borough says attackers copied 'historical' info as three-council cyber woes drag on
Cyber-crime02 Dec 2025 | 6
FTC schools edtech outfit after intruder walked off with 10M student records
Regulator says Illuminate ignored years of warnings, stored kids' data in plain text, and kept districts in the dark
Cyber-crime02 Dec 2025 | 13
Stealthy browser extensions waited years before infecting 4.3M Chrome, Edge users with backdoors and spyware
And some are still active in the Microsoft Edge store
Cyber-crime01 Dec 2025 | 41
Four arrested in South Korea over massive IP camera snooping spree
Plus: Aussie Wi-Fi phisher and Brit dark web dealer nailed
Cyber-crime01 Dec 2025 | 6
Dutch study finds teen cybercrime is mostly just a phase
Only a select few continue into later life, mainly for the love of the game
Cyber-crime01 Dec 2025 | 9
South Korea's answer to Amazon admits breach exposed 33.7M customers
Coupang confirms internationally routed intrusion compromised more than half of the country's population
Cyber-crime01 Dec 2025 |
French Football Federation faces own-goal after club software data breach
Zut alors! Cybercrooks scored names, numbers, and license IDs
Cyber-crime01 Dec 2025 | 2
Swiss government says give M365, and all SaaS, a miss as it lacks end-to-end encryption
Infosec In Brief PLUS: Exercise app tells spies to stop mapping; GitLab scan reveals 17,000 secrets; Leak exposes Iran’s Charming Kitten; And more!
Security01 Dec 2025 | 28
PostHog admits Shai-Hulud 2.0 was its biggest ever security bungle
Automation flaw in CI/CD workflow let a bad pull request unleash worm into npm
Devops28 Nov 2025 | 8
Korean web giant Naver acquired crypto exchange Upbit, which reported a $30m heist a day later
Talk about buyer’s remorse
Cyber-crime28 Nov 2025 | 6
OpenAI cuts off Mixpanel after analytics leak exposes API users
ChatGPT maker places other vendors under review following breach
AI + ML27 Nov 2025 | 4
FCC sounds alarm after emergency tones turned into potty-mouthed radio takeover
Agency flags hijacks of insecure studio-to-transmitter gear after attackers pipe in fake alerts and vulgar audio
Cyber-crime27 Nov 2025 | 36
Asahi admits ransomware gang may have spilled almost 2M people's data
Brewer finally tallies fallout from September attack as it pushes earnings into 2026
Cyber-crime27 Nov 2025 | 5
Scottish council still rebuilding systems two years after ransomware attack
Audit sympathetic toward Comhairle nan Eilean Siar as staff stretched to capacity trying to recover
Cyber-crime27 Nov 2025 | 23
Biting the hand that feeds IT
