The cyberattack disrupted information and booking systems and lasted for several hours. 

The post German Rail Giant Deutsche Bahn Hit by Large-Scale DDoS Attack appeared first on SecurityWeek.

Explore the tools Unit 42 found on a Muddled Libra rogue host. Learn how they target domain controllers and use search engines to aid their attacks.

The post A Peek Into Muddled Libra’s Operational Playbook appeared first on Unit 42.

Other noteworthy stories that might have slipped under the radar: AT&T and Verizon response to Salt Typhoon, AI agents solve security challenges, man arrested in Poland for DDos Attacks.

The post In Other News: Record DDoS, Epstein’s Hacker, ESET Product Vulnerabilities appeared first on SecurityWeek.

Criminals are using AI to clone professional websites at an industrial scale. A new report shows how one AI-powered network grew to 150+ domains by hiding behind Cloudflare and rotating IP ranges.

The post Researchers Expose Network of 150 Cloned Law Firm Websites in AI-Powered Scam Campaign appeared first on SecurityWeek.

Why do successful phishing attacks target our psychology rather than just our software? Discover Unit 42’s latest insights on defeating social engineering and securing your digital life.

The post Why Smart People Fall For Phishing Attacks appeared first on Unit 42.

Hackers rely on evolved vishing and login harvesting to compromise SSO credentials for unauthorized MFA enrollment.

The post ShinyHunters-Branded Extortion Activity Expands, Escalates appeared first on SecurityWeek.

Russia's current isolation from the Olympics may lead to increased cyberthreats targeting the 2026 Winter Games. We discuss the potential threat picture.

The post Understanding the Russian Cyberthreat to the 2026 Winter Olympics appeared first on Unit 42.

A total of 87 individuals, mostly Venezuelan nationals, have been charged for their role in the ATM jackpotting scheme.

The post US Charges 31 More Defendants in Massive ATM Hacking Probe appeared first on SecurityWeek.

Domains set up by the threat actor suggest attacks aimed at Atlassian, Canva, Epic Games, HubSpot, Moderna, ZoomInfo, and WeWork.

The post Over 100 Organizations Targeted in ShinyHunters Phishing Campaign appeared first on SecurityWeek.

The WorldLeaks cybercrime group claims to have stolen information from the footwear and apparel giant’s systems.

The post Nike Probing Potential Security Incident as Hackers Threaten to Leak Data appeared first on SecurityWeek.

Dozens of Venezuelan nationals have been charged by the US for their role in ATM jackpotting attacks. 

The post 2 Venezuelans Convicted in US for Using Malware to Hack ATMs appeared first on SecurityWeek.

Threat actors may have wanted to take advantage of the holiday weekend in the United States to increase their chances of success.

The post LastPass Users Targeted With Backup-Themed Phishing Emails appeared first on SecurityWeek.

Operating as an access broker, the defendant sold unauthorized access to compromised networks to an undercover agent.

The post Jordanian Admits in US Court to Selling Access to 50 Enterprise Networks appeared first on SecurityWeek.

Nicholas Moore pleaded guilty to repeatedly hacking the U.S. Supreme Court’s filing system and illegally accessing computer systems belonging to AmeriCorps and the Department of Veterans Affairs.

The post Tennessee Man Pleads Guilty to Repeatedly Hacking Supreme Court’s Filing System appeared first on SecurityWeek.

Other noteworthy stories that might have slipped under the radar: BodySnatcher agentic AI hijacking, Telegram IP exposure, shipping systems hacked by researcher.

The post In Other News: FortiSIEM Flaw Exploited, Sean Plankey Renominated, Russia’s Polish Grid Attack appeared first on SecurityWeek.

We've known that social engineering would get AI wings. Now, at the beginning of 2026, we are learning just how high those wings can soar.

The post Cyber Insights 2026: Social Engineering appeared first on SecurityWeek.

RedVDS enables threat actors to set up servers that can be used for phishing, BEC attacks, account takeover, and fraud.

The post RedVDS Cybercrime Service Disrupted by Microsoft and Law Enforcement appeared first on SecurityWeek.

Het is niet best gesteld met de online beveiliging van Nederland. De Rijksoverheid heeft een onderzoek uitgevoerd waaruit blijkt dat veel mensen hun beveiliging niet op orde hebben. Gelukkig kan je dat heel makkelijk zelf oplossen.

Je hebt ze misschien al gezien: de Doe Je Updates-spotjes van de overheid ( of je hebt er bij ons over gelezen ). Deze campagne waarschuwt Nederland voor de gevaren van het niet updaten van slimme apparaten. De AIVD trekt dit nu breder en wijst op apparaten die misschien wat minder sexy zijn.

Je zou verwachten dat het dataverkeer dat via satellieten loopt, netjes versleuteld is – en dus niet af te luisteren. Niets blijkt minder waar: met een simpele satellietschotel en onderdelen van in totaal nog geen 800 dollar zijn satellieten makkelijk af te luisteren.