Kyushu Electric Power Data Breach Hits 10.9 Million Customers
A backup hard drive holding personal data on up to 10.9 million people has vanished from a Japanese utility's server room. Weeks into the investigation, nobody can say where it went. The Kyushu Electric Power data breach is shaping up to be one of the largest data exposure incidents reported in Japan this year. This didn't involve a sophisticated hack.
Glassworm Botnet Taken Down in Coordinated Three-Way Strike
A developer-targeting botnet with one of the most resilient command-and-control architectures seen in recent memory has been dismantled. The Glassworm botnet, active since early 2025, was shut down on May 26, 2026 when CrowdStrike, Google, and the Shadowserver Foundation simultaneously cut off all four of its command-and-control channels in a precision operation. For organizations that build or consume software, the
US Cybercrime Losses Record: $16.6 Billion Lost in FBI Report
Americans lost more money to cybercrime in 2024 than ever before. The FBI's Internet Crime Complaint Center received over 859,000 complaints last year, with reported losses reaching a record $16.6 billion — a 33% surge from the year before. The US cybercrime losses record reflects not just more attacks, but more damaging ones, with the average victim losing nearly $19,400.
Who Ran REvil Ransomware? Germany Finally Has Answers
For years, one of the most feared names in cybercrime belonged to no one — at least, no one with a face or a real identity. That changed this week. Germany's Federal Criminal Police Office, the Bundeskriminalamt (BKA), has publicly identified two Russian nationals as the men who ran both GandCrab and REvil ransomware — the criminal operations that extorted
KadNap Botnet Turns ASUS Routers into Cybercrime Proxies
Cybersecurity researchers have uncovered a growing KadNap botnet that hijacks ASUS routers and other edge networking devices to power a large proxy network used in cybercrime. The malware quietly infects vulnerable devices and converts them into traffic relays that attackers can rent or use to conceal malicious activity. The campaign demonstrates how home and small-business networking hardware can become valuable
Phobos Ransomware Admin Pleads Guilty to Wire Fraud
A key administrator behind the Phobos ransomware operation has pleaded guilty to wire fraud conspiracy in a U.S. federal court. The case marks another major development in international efforts to disrupt ransomware networks responsible for attacks on businesses and public institutions worldwide. Authorities identified Evgenii Ptitsyn, a Russian national, as one of the administrators who helped run the Phobos ransomware
HungerRush Extortion Emails Target Restaurant Customers
Restaurant customers across the United States recently received alarming messages tied to HungerRush extortion emails, a campaign that attempted to pressure the restaurant technology provider with threats of data exposure. The attacker distributed mass emails directly to patrons of restaurants using the HungerRush platform, claiming to possess sensitive data and demanding payment. Early reports quickly circulated online as recipients shared
AWS Data Centers Hit by Drone Strikes
AWS Data Centers in the Middle East sustained physical damage after drone strikes hit facilities in the United Arab Emirates and Bahrain. The incident disrupted cloud services and forced emergency response measures inside critical infrastructure sites. The event highlights a growing reality for global technology providers. Digital services may operate in the cloud, but the infrastructure behind them remains vulnerable
Massiv Android Malware Spreads via Fake IPTV Apps
Massiv Android malware has emerged as a new banking threat targeting mobile users through fake IPTV applications. Attackers disguise the malware as a streaming app to trick users into installing it outside official app stores. Once active, it gives criminals deep access to infected devices and allows them to steal sensitive financial data. Security researchers observed the campaign primarily targeting
LaLiga Piracy Ruling: Spain Orders VPN IP Blocking
Spain has intensified its crackdown on illegal football streaming through a new LaLiga piracy ruling that shifts enforcement beyond traditional internet service providers. A commercial court has ordered two major VPN companies to restrict access to IP addresses linked to unauthorized LaLiga broadcasts, marking a notable expansion in how copyright protection operates in the digital space. Instead of focusing solely
