The French national cybersecurity agency, CERT-FR, has released a new security bulletin identifying critical vulnerabilities affecting various information systems. The agency provides essential mitigation strategies and security recommendations to help organizations protect their infrastructure against potential exploitation.
The German Federal Prosecutor's Office has initiated a criminal investigation into a sophisticated phishing campaign targeting high-profile users of the Signal messaging app. Authorities are investigating potential espionage activities, with early evidence pointing toward Russian state-linked actors as the primary suspects behind the cyber operation.
The UK Biobank has launched an investigation following reports that sensitive health information belonging to 500,000 volunteers was allegedly listed for sale online. Access to the database was temporarily suspended as a precautionary measure while officials assess the scope and nature of the security incident to protect participant privacy.
The German cabinet has approved a draft law mandating that internet service providers store customer IP addresses for three months. The measure is designed to assist law enforcement in investigating serious crimes, balancing security needs with data protection requirements following previous legal challenges regarding data retention in Germany and the European Union.
Authorities and cybersecurity experts are investigating a massive cryptocurrency heist targeting KelpDAO. Reports indicate that nearly $300 million in digital assets were siphoned over the weekend, with early analysis pointing toward suspected North Korean state-sponsored hacking groups as the primary actors behind the breach.
Approximately 15,000 drivers in the United Kingdom have been granted permission to pursue a group compensation claim against car dealership Arnold Clark. The legal action follows a 2022 cyberattack that exposed the personal data of customers and employees, leading to a significant data protection lawsuit.
The Russia-linked cryptocurrency exchange Grinex has confirmed a significant security breach resulting in the loss of more than $13 million in digital assets. The platform is currently investigating the incident, which has raised concerns regarding security protocols within the regional crypto market.
The U.S. Department of State has announced a new visa restriction policy targeting individuals involved in the misuse of commercial spyware. This action aims to hold accountable those who facilitate the targeting of journalists, activists, and dissidents, marking a significant step in U.S. efforts to curb the proliferation of surveillance technology.
Finnish authorities have launched an investigation into the distribution of fake safety instructions regarding drone attacks. The fraudulent documents surfaced following recent drone sightings and crashes in the country, prompting officials to warn the public against following the misleading guidance.
The Department of Traffic of Mato Grosso do Sul (Detran-MS) has intensified its digital security efforts in 2026, successfully identifying and removing over 10 fraudulent websites designed to impersonate the institution and deceive citizens seeking traffic-related services.
The Russian Foreign Ministry has formally denied recent reports alleging that Russian hackers have collaborated with Iranian entities to conduct cyberattacks. The ministry dismissed the claims as unfounded, maintaining that Russia does not engage in state-sponsored cyber aggression or partnerships for such activities, amid ongoing international scrutiny regarding global cyber operations.
German security agencies have identified a sophisticated cyber espionage campaign attributed to Russian actors. The operation involved compromising internet routers to target sensitive government, military, and critical infrastructure data. Officials have issued warnings and mitigation guidance to organizations affected by the breach.
German law enforcement has publicly identified two Russian nationals, Igor Turashev and Irina Zemlyanikina, as key figures in the Evil Corp ransomware gang. The move, part of a coordinated international effort, marks a significant escalation in the pursuit of cybercriminals responsible for global attacks causing billions in damages and targeting critical infrastructure.
Authorities in Chandigarh, India, launched extensive search operations across several schools after receiving bomb threats via email. Police and bomb disposal squads were deployed to ensure student safety, leading to evacuations and precautionary measures. Investigations are currently underway to identify the source of the threats, which have been deemed hoaxes in similar recent incidents.
Iran's Islamic Revolutionary Guard Corps (IRGC) has issued threats against major United States technology firms. The rhetoric, linked to retaliatory measures for the deaths of Iranian leaders, has raised concerns regarding cybersecurity and the safety of corporate infrastructure. Officials are monitoring the situation as tensions between Tehran and Washington remain elevated.
Slovenia's intelligence and security agency, SOVA, has confirmed instances of foreign influence during the country's recent parliamentary elections. The findings were presented to the National Security Council, highlighting efforts to manipulate public opinion and disrupt the democratic process through cyber activities and disinformation campaigns.
The UK government has imposed sanctions on a cryptocurrency network used to facilitate illegal scam centers in Southeast Asia and the sale of stolen personal data. The measures target entities involved in laundering proceeds from 'pig butchering' scams, which have defrauded victims globally of significant sums, marking a major step in the UK's efforts to combat cyber-enabled financial crime.
Cyber security experts are calling on the UK government to boost funding for national cyber resilience. The appeal comes as geopolitical instability, particularly in the Middle East, heightens concerns regarding potential state-sponsored cyber threats and the vulnerability of critical national infrastructure to sophisticated digital attacks.
Brazilian investment bank BTG Pactual temporarily suspended its Pix instant payment services following the identification of a cyber attack on its systems. The bank confirmed the incident, stating that it acted to protect client data and ensure the security of its operations while investigating the breach.
Authorities from Germany, the U.S., and Canada have successfully dismantled command-and-control infrastructure linked to major IoT botnets. The coordinated operation targeted malicious networks used for cyberattacks, marking a significant blow to global cybercriminal activities. Officials emphasized the importance of international cooperation in securing digital infrastructure.
