On 29 December 2025, coordinated cyberattacks unfolded across Poland's critical infrastructure, targeting energy and industrial organizations. The attackers struck numerous wind and solar farms, a private manufacturing company, and a heat and power (CHP) plant, but failed to negatively affect energy generation or distribution. Poland's national computer emergency response team, CERT Polska, assessed that all of the incidents were carried out by the same threat actor. READ MORE...
Photo-sharing platform Flickr is notifying users of a potential data breach after a vulnerability at a third-party email service provider exposed their real names, email addresses, IP addresses, and account activity. Founded in 2004, Flickr is one of the world's largest photography communities and sharing sites, hosting over 28 billion photos and videos. The company says it has 35 million monthly users and 800 million monthly page views. READ MORE...
In 2025, there were 251 ransomware attacks on educational institutions worldwide - of which 94 incidents were confirmed by the targeted organizations, according to a report released Thursday by Comparitech, a cybersecurity and online privacy product review website. Additionally, 3.96 million records were breached among those confirmed attacks. Ransomware attacks on the education sector worldwide began to slow down in 2025. READ MORE...
Valentine's Day is just around the corner and Microsoft has been giving us a lot of love with a non-stop supply of patches starting with January 2026 Patch Tuesday. The January releases addressed 92 vulnerabilities in Windows 11 and Server2025, as well as 79 vulnerabilities for Windows 10 and its associated servers. We also saw updates for legacy 2016 versions of Microsoft Office and even a SQL Server update. READ MORE...
For well over half a decade, a China-linked threat actor has been operating a gateway-monitoring and adversary-in-the-middle (AitM) framework to deliver and interact with backdoors, Cisco's Talos researchers warn. Dubbed DKnife, the framework consists of seven Linux-based implants designed for deep packet inspection, traffic manipulation, and malware delivery, and has been active since at least 2019. READ MORE...
A Taiwanese man who ran one of the world's largest dark web drugs marketplaces has been sentenced to 30 years in a US federal prison, in what the judge described as "the most serious drug crime I have ever been confronted with in 27.5 years." 24-year-old Rui-Siang Lin operated Incognito Market under the alias "Pharaoh" from October 2020 until March 2024, facilitating over $105 million in illegal drug sales to more than 400,000 customers across the globe. READ MORE...
SmarterTools SmarterMail business email and collaboration servers are targeted in attacks exploiting another recent critical-severity vulnerability, the US cybersecurity agency CISA warns. Roughly two weeks ago, security researchers raised the alarm about hackers exploiting an authentication bypass bug in SmarterMail to reset administrator account passwords and take control of vulnerable instances. Last week, CISA added the flaw to its Known Exploited Vulnerabilities (KEV) catalog. READ MORE...
Most enterprise work now happens in the browser. SaaS applications, identity providers, admin consoles, and AI tools have made it the primary interface for accessing data and getting work done. Yet the browser remains peripheral to most security architectures. Detection and investigation still focus on endpoints, networks, and email, layers that sit around the browser, not inside it. The result is a growing disconnect. When employee-facing threats occur, security teams often struggle. READ MORE...