Threat intelligence stories

Ransomware hits record 7,458 named victims in 2025 as 124 gangs crowd dark web leak sites and new “supergroup” alliances emerge.

Most ransomware-hit firms now refuse to pay, as Arctic Wolf reports an 11-fold surge in data-only extortion and booming remote access abuse.

New LockBit 5.0 ransomware hits Windows, Linux and ESXi in single campaigns, widening blast radius across mixed and virtualised environments.

CompTIA unveils SecAI+ certification to equip cybersecurity professionals with AI security, risk management and governance skills.

Proofpoint overhauls its partner network with richer incentives, tighter protections and AI-focused services to fuel recurring security revenue.

Australia faces world’s highest rate of serious cyberattacks, exposing millions and forcing a rethink of data resilience strategies.

Data-only extortion soars 11-fold as attackers ‘log in instead of break in’, abusing remote access tools for faster, stealthier raids.

ExtraHop sharpens its network detection tools with deeper identity and Kubernetes insight to power more reliable agentic SOC automation.

Arctic Wolf says attackers are actively exploiting a critical BeyondTrust vulnerability in self-hosted remote access systems.

AI is supercharging supply chain cyber attacks across Asia-Pacific, with Group-IB warning single hacks now threaten thousands of victims.

Cyber operations have become constant, covert pressure in geopolitics, with AI-fuelled identity abuse replacing headline-grabbing cyberattacks.

AI-fuelled ransomware hit record levels in 2025, with BlackFog warning that around 86% of attacks worldwide are never publicly disclosed.

OPSWAT appoints malware expert Jan Miller as CTO and puts him in charge of a new Technology Centre focused on AI-driven threat prevention.

LummaStealer roars back after domain takedown, using fake CAPTCHA ClickFix tricks and CastleLoader to spread via routine user actions.

Okta warns North Korean operatives are landing remote tech jobs with stolen and synthetic identities to fund the regime and enable cyber attacks.

McAfee warns Australians AI-powered romance scams are surging ahead of Valentine’s Day, with one in seven victims losing an average AUD $780.

BADIIS malware is hijacking over 1,800 IIS servers worldwide, quietly boosting illicit gambling and crypto phishing sites via poisoned SEO.

Cloaking dominates PropellerAds’ 2025 safety report as stricter checks drive a 35% rise in blocked campaigns and more account suspensions.

Simbian claims 15-fold customer surge as its AI-driven SOC agents vie to replace rules-based automation in the cyber defence arms race.

NordVPN will use CrowdStrike threat intelligence to power its Threat Protection Pro tool, bringing enterprise-grade data to consumer security.