Threat intelligence stories

ShinyHunters claims it hacked merchant data firm Woflow, raising supply chain fears for major brands despite no confirmed breach yet.

Cato launches Dynamic Prevention, a SASE-native engine that auto-detects multi-stage attacks by correlating months of security telemetry.

Global ransomware attacks jump 50% to 7,874 in 2025, with industrial firms bearing the brunt as criminal groups reshuffle their tactics.

Agentic AI massively accelerates elite cyber teams but can slow inexperienced hackers, Hack The Box's large-scale benchmark reveals.

JFrog warns 13 GitHub CI/CD workflow flaws, mostly critical, could let attackers hijack pipelines and steal secrets at scale.

Microsoft and Europol have seized over 300 domains to disrupt Tycoon 2FA, a vast phishing-for-hire service bypassing MFA worldwide.

Bybit says its 2025 Dynamic Risk-Based Protection System stopped scams from draining over USD $300m in suspicious crypto withdrawals.

IRONSCALES' Winter 2026 Release debuts three AI agents, outbound encryption and Teams deepfake defences to counter next‑gen phishing.

Cyber criminals are hijacking MSP trust relationships, abusing valid credentials and VPNs as AI turbocharges phishing and ransomware.

LevelBlue and Tenable have teamed up to launch a tiered exposure management service giving MSPs continuous, risk-based visibility.

From door-to-door sales to tracking ransomware, one woman proves cybersecurity careers can thrive far from the traditional path.

European authorities and tech firms have disrupted Tycoon 2FA, a major phishing service used to bypass MFA and hijack cloud accounts.

Check Point launches Secure AI Advisory to tie AI governance and regulatory readiness directly into enterprise security operations.

Cybersecurity is missing vital human insight; drawing in women and non‑STEM talent could close both the threat and perspective gaps.

HP reports a surge in AI-powered “flat-pack” cyberattacks as criminals trade sophistication for speed, low cost and mass customisation.

Silent account takeover fraud is draining billions as criminals hijack real identities; here's how businesses can finally fight back.

LevelBlue launches Resilience Retainer, a flexible funds-based cyber incident response service with rapid SLAs and rollover security spend.

Cloudflare warns AI-driven identity fraud and SaaS abuse are reshaping cybercrime, as global costs hit USD $10.5 trillion a year.

Non-consensual deepfake abuse of women is not just online harassment but cybercrime, demanding full threat intelligence and security action.

Proofpoint plugs Collaboration Protection into AWS Security Hub Extended Plan, folding email and collaboration threat defence into one AWS deal.