Data theft stories

Attackers are ditching malware for stolen identities, misconfigurations and abused AI tools, Google warns in its latest cloud threat report.

Google warns attackers are shifting from browsers to corporate systems, as tracked zero-day exploits climb and enterprise edge devices surge.

Scammers hijack Israel-Iran war headlines for classic advance-fee email cons, security researchers warn, urging users not to respond.

Microsoft and Europol have seized over 300 domains to disrupt Tycoon 2FA, a vast phishing-for-hire service bypassing MFA worldwide.

AI-driven cyberattacks are surging across Asia-Pacific, with IBM warning basic security gaps now let attackers move from scan to impact faster.

European authorities and tech firms have disrupted Tycoon 2FA, a major phishing service used to bypass MFA and hijack cloud accounts.

Identity-based attacks drove nearly 70% of incidents in Expel's 2026 threat report, exposing gaps between basic controls and real-world defence.

A rapid surge in OpenClaw AI assistant use has left tens of thousands of exposed systems and a trail of hijacked tools and malicious add-ons.

ShinyHunters shifts to subdomain-brand phishing and vishing on mobiles, bypassing domain checks to hijack SSO logins and SaaS sessions.

AI-fuelled hackers can now spread across corporate networks in as little as four minutes, outpacing human defenders by hours.

SentinelOne launches an AI-native identity security suite to police human and machine activity in real time, beyond simple login checks.

AI-fuelled ransomware, rapid cloud intrusions and identity abuse are transforming cyber risk, slashing response times for defenders.

WatchGuard marks 30 years in cybersecurity, touting MSP-first strategy, 25,000 partners and a unified, automated security platform.

PromptSpy Android malware taps Google's Gemini AI to navigate screens, lock itself in recent apps and thwart users' attempts to remove it.

INTERPOL's Africa cybercrime blitz nets 651 arrests, seizes 2,341 devices and recovers USD $4.3m after scams linked to USD $45m losses.

New LockBit 5.0 ransomware hits Windows, Linux and ESXi in single campaigns, widening blast radius across mixed and virtualised environments.

Fake Olympics shop ads on Meta push fans to cloned sites mimicking Milano Cortina 2026 store to steal card and personal details.

AI is supercharging supply chain cyber attacks across Asia-Pacific, with Group-IB warning single hacks now threaten thousands of victims.

AI-fuelled ransomware hit record levels in 2025, with BlackFog warning that around 86% of attacks worldwide are never publicly disclosed.

Okta warns North Korean operatives are landing remote tech jobs with stolen and synthetic identities to fund the regime and enable cyber attacks.