Recent investigations have revealed an intriguing twist in the cybersecurity landscape: even hackers can become victims. Security researchers have identified that a significant proportion of LokiBot malware circulating online are altered copies of the original variant. This discovery raises new concerns regarding the integrity of cybersecurity threats and highlights the…
In a significant cybersecurity incident, a database containing 149 million account usernames and passwords has been taken down after a researcher alerted the hosting provider. This extensive dataset included 48 million Gmail accounts, 17 million Facebook accounts, and about 420,000 for the cryptocurrency platform Binance, among others. The discovery was…
British authorities have apprehended a second teenage suspect linked to the significant cyber breach affecting UK telecommunications provider TalkTalk. Following an earlier arrest of a 15-year-old boy from County Antrim, Northern Ireland, police action escalated with the capture of a 16-year-old from Feltham, West London, as part of an ongoing…
Cybercrime, Fraud Management & Cybercrime Recent Developments: CIRO Phishing Breach, Ingram Micro Ransomware, and CVE Increase Pooja Tikekar (@PoojaTikekar) • January 22, 2026 Image: Shutterstock/ISMG ISMG compiles weekly summaries of cybersecurity breaches globally. Recent incidents include sensitive data shared by the U.S. Social Security Administration on an unauthorized Cloudflare server,…
Kazakhstan Advances Data Breach Law Reforms, Elevating Risks for Australian Firms Kazakhstan is set to implement significant reforms to its data breach laws, which will introduce criminal charges for mass personal data leaks while increasing the maximum fines to approximately $42,500. This legislative move signals an escalating commitment to stricter…
Cybersecurity experts have identified a new peer-to-peer (P2P) worm named P2PInfect, which specifically targets vulnerable Redis installations for subsequent exploitation. Unlike many previous threats, P2PInfect can compromise Redis servers operating on both Linux and Windows platforms, making it a particularly formidable threat, as noted by researchers from Palo Alto Networks’…
Digitally signed malware has gained traction recently, utilizing legitimate digital certificates to mask malicious activities. Recent investigations have uncovered a malware campaign employing stolen valid digital certificates from Taiwanese technology firms, including D-Link, to authenticate their harmful applications and thereby appear trustworthy to unwitting users. Digital certificates, issued by recognized…
cURL Project Ends Vulnerability Reward Program Amid AI Report Surge The developers behind cURL, a widely-used networking tool, are discontinuing their vulnerability reward program due to a significant influx of low-quality submissions, many of which have been identified as AI-generated. Daniel Stenberg, the founder and lead developer of the open-source…
Recent developments in the investigation of the high-profile data breach at British telecom provider TalkTalk have led to the arrest of a 16-year-old male from London. This individual was apprehended by the Metropolitan Police Cyber Crime Unit (MPCCU) at his residence in Norwich, under the suspicion of violating the Computer…