Weekly roundup exploring how cyber threats, AI misuse, and digital deception are reshaping global security trends.

Stolen LastPass vaults from the 2022 breach enabled about $35M in crypto thefts through 2025, according to TRM Labs.

Fortinet reports active attacks exploiting CVE-2020-12812, a FortiOS SSL VPN flaw that can bypass two-factor authentication ...

CISA adds an actively exploited Digiever DS-2105 Pro NVR vulnerability to KEV, warning of botnet attacks and urging ...

ESET reports a 62% rise in the Nomani investment scam, using AI deepfakes on social media, while detections fell 37% in late ...

A new MacSync macOS stealer spreads via a signed, notarized fake installer, bypassing Apple Gatekeeper before Apple revoked ...

SEC files charges over a $14M crypto scam using fake AI investment tips, WhatsApp groups, and bogus trading platforms to ...

In 2025, small and mid-sized businesses made up 70.5% of data breaches, driven by weaker defenses and high-volume ...

Italy’s antitrust authority fined Apple €98.6M for ATT rules that forced extra consent steps on third-party apps and harmed ...

The US Justice Department seized a domain used to steal bank logins, causing $14.6 million in losses from 19 US victims.

Two Chrome Extensions Caught Secretly Stealing Credentials from Over 170 Sites | Read more hacking news on The Hacker News ...

Android attackers use fake apps and droppers to spread the Wonderland SMS stealer, stealing OTPs, SMS data, and bank funds, ...