Aisuru Botnet Shatters Records with 31.4 Tbps DDoS Attack
The Aisuru/Kimwolf botnet launched the largest DDoS attack ever publicly disclosed, peaking at 31.4 Tbps and 200 million requests per second in Cloudflare’s ‘Night Before Christmas’ campaign.
Read More
Match Group Data Breach Exposes User Information from Tinder, Hinge, and OkCupid
Match Group confirms cybersecurity incident after ShinyHunters voice phishing campaign compromises SSO account, exposing data from popular dating apps including Tinder, Hinge, OkCupid, and Match.com.
SolarWinds Fixes Six Critical Web Help Desk Vulnerabilities Including RCE and Auth Bypass
SolarWinds patches six severe vulnerabilities in Web Help Desk, including four critical flaws (CVSS 9.8) enabling unauthenticated remote code execution and authentication bypass. Organizations should update to WHD 2026.1 immediately.
16 Malicious Chrome Extensions Steal ChatGPT Session Tokens
Security researchers discovered 16 malicious browser extensions claiming to enhance ChatGPT that actually steal session tokens, giving attackers full access to accounts and conversation history.
Google Disrupts World’s Largest Residential Proxy Botnet
Google Threat Intelligence Group disrupts IPIDEA, the world’s largest residential proxy network, used by 550+ threat groups including nation-state actors from China, Russia, Iran, and North Korea.
SoundCloud Data Breach Exposes 29.8 Million User Accounts
Music streaming platform SoundCloud confirmed a data breach affecting 29.8 million user accounts. The December 2025 incident exposed emails and profile data, creating risks for phishing and credential stuffing attacks.
Fortinet Blocks Actively Exploited FortiCloud SSO Zero-Day Until Patch is Ready
Fortinet confirms CVE-2026-24858, a critical FortiCloud SSO authentication bypass zero-day actively exploited in the wild. The company has blocked FortiCloud SSO from vulnerable devices while patches are being developed.
Fake Clawdbot VS Code Extension Deploys ScreenConnect RAT
A malicious VS Code extension impersonating the popular Clawdbot AI assistant has been caught deploying ScreenConnect RAT on Windows machines. The trojanized extension worked as a functional AI coding tool while silently installing remote access software.
Chinese APT Groups Leverage PeckBirdy JavaScript C2 Framework Since 2023
Trend Micro researchers have discovered PeckBirdy, a flexible JScript-based C2 framework used by China-linked APT actors to target gambling industries and Asian government entities since 2023.
Poland Thwarts Russian Sandworm Wiper Attack on Power Plants
Russian APT group Sandworm attempted to deploy destructive DynoWiper malware against Polish power plants in late December 2025. The attack was thwarted, but highlights ongoing threats to critical infrastructure from state-sponsored actors.