Iran claims massive cyber-attack on medtech firm Stryker
A pro-Iran group says it wiped 200,000 Stryker systems, but public evidence is thin. Here’s what’s known, what isn’t, and why it matters.
Compromised WordPress sites used in global ClickFix infostealer campaign
Rapid7 warns over 250 legitimate sites were compromised to push ClickFix prompts and infostealer malware at unsuspecting visitors.
Iran’s MuddyWater hackers hit US firms with new Dindoor backdoor
Iran-linked MuddyWater used a new Dindoor backdoor against a bank, airport, non-profit, and software firm branch in a fresh espionage campaign.
Israel: RedAlert spyware campaign exploits wartime panic with trojanized app
A wartime-themed spyware campaign in Israel used SMS lures and a fake Red Alert app to trick users into installing Android surveillance malware.
AI and deepfakes are making cyber-attacks easier to launch, Cloudflare warns
Cloudflare says AI and deepfakes are helping attackers scale phishing, impersonation and fraud with less skill and greater realism.
Less lucrative ransomware market pushes attackers toward stealthier Windows tools
Ransomware groups are replacing Cobalt Strike with native Windows tools as payments fall and data-theft extortion becomes more common.
Critical Langflow flaw was exploited within hours of disclosure
A critical Langflow vulnerability enabling unauthenticated RCE was reportedly exploited within hours of public disclosure.
Ransomware payments fall even as attacks jump, signaling a harsher but less reliable extortion market
Chainalysis data shows ransomware attacks up 50% in 2025, while total payments fell 8% and median payouts climbed sharply.
Google disrupts China-linked UNC2814 espionage campaign after decade of stealth
Google says China-linked UNC2814 ran a decade-long espionage campaign, using a novel backdoor against 53 victims in 42 countries.
AI is shrinking attacker breakout time to four minutes, report says
ReliaQuest says AI-assisted attacks can reach breakout in four minutes and exfiltration in under 10, shrinking defender response time.
Refund fraud has become a repeatable underground business
Flare says refund fraud is now sold as a service, helping criminals exploit retailer returns and payment disputes at scale.
Anthropic says Chinese AI firms used Claude in distillation attacks
Anthropic says DeepSeek, Moonshot AI and MiniMax used Claude for unauthorized distillation to train competing AI models.