X vs EU: Platform Appeals Against €120M Digital Services Act Penalty
Commission emphasized that while the Digital Services Act (DSA) does not mandate identity verification, it prohibits misleading design practices.
Analisi dei processi e teoria dei sistemi: un framework per mitigare i rischi dei LLM
L'integrazione dei Large Language Models (LLM) in applicazioni critiche pone questioni fondamentali riguardo alla sicurezza e all'affidabilità operativa. Ecco un approccio sistematico alla valutazione dei rischi nei sistemi AI attraverso l'analisi dei processi e la teoria dei sistemi (STPA)
UAE Blocked AI-Powered Terrorist Cyberattacks Targeting Critical Infrastructure
Campaign involving network infiltration, ransomware deployment and phishing operations designed to destabilize essential services in UAE, blocked.
Arkanix Stealer pops up as short-lived AI info-stealer experiment
An information-stealing malware operation named Arkanix Stealer, promoted on multiple dark web forums towards the end of 2025, was likely developed as an AI-assisted experiment.
CarGurus - 12,461,887 breached accounts
In February 2026, the automotive marketplace CarGurus was the target of a data breach attributed to the threat actor ShinyHunters. Following an attempted extortion, the data was published publicly and contained more than 12M email addresses across multiple files including user account ID mappings, finance pre-qualification application data and dealer account and subscription information. Impacted data also included names, phone numbers, physical and IP addresses, and auto finance application outcomes.
Predator spyware hooks iOS SpringBoard to hide mic, camera activity
Intellexa's Predator spyware can hide iOS recording indicators while secretly streaming camera and microphone feeds to its operators.
Amazon: AI-assisted hacker breached 600 FortiGate firewalls in 5 weeks
Amazon is warning that a Russian-speaking hacker used multiple generative AI services as part of a campaign that breached more than 600 FortiGate firewalls across 55 countries in five weeks.
‘Starkiller’ Phishing Service Proxies Real Login Pages, MFA
Most phishing websites are little more than static copies of login pages for popular online destinations, and they are often quickly taken down by anti-abuse activists and security firms. But a stealthy new phishing-as-a-service offering lets customers sidestep both of…
Romanian hacker faces up to 7 years for breaching Oregon emergency management department
Japanese tech giant Advantest hit by ransomware attack
Advantest Corporation disclosed that its corporate network has been targeted in a ransomware attack that may have affected customer or employee data.
Ukrainian national gets 5-year sentence for involvement in North Korea IT worker scheme
Finanza nel mirino, incidenti raddoppiati nel 2025
Il settore finanziario sta vivendo una fase di forte pressione: secondo la ricerca Exposure Management Research di Check Point, nel 2025 gli incidenti informatici a livello globale che hanno colpito banche e servizi finanziari sono più che raddoppiati rispetto al 2024, passando da 864 a 1.858 casi, con un incremento del 114,8%. Europa: DDoS in …
CISA: BeyondTrust RCE flaw now exploited in ransomware attacks
Hackers are actively exploiting the CVE-2026-1731 vulnerability in the BeyondTrust Remote Support product, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) warns.
AI e attori Nation-State: quando i modelli diventano infrastruttura strategica del conflitto ibrido
Secondo il report di Google, gruppi riconducibili a Cina, Russia, Iran e Corea del Nord stanno impiegando modelli generativi come Gemini come supporto operativo lungo diverse fasi della cyber kill chain. Ecco le quattro V del rischio AI e come i modelli generativi favoriscono il conflitto ibrido
AI, ransomware, deepfake, supply chain: le frontiere della sicurezza nel 2026
Le tattiche degli attacchi ransomware si evolveranno ulteriormente, fino a includere estorsioni multilivello e manipolazione dei dati. Ecco le tendenze dell'anno
Data breach at French bank registry impacts 1.2 million accounts
The French Ministry of Finance has published an announcement informing of a cybersecurity incident that has impacted 1.2 million accounts.
Errare disumanum est
Si parla molto del fattore umano, nonché degli errori umani che intervengono nella gestione della sicurezza cyber. Il problema è che il loro emergere – o ancor peggio il ricorrere – è una cartina al tornasole della mancata capacità di aver assunto una postura di sicurezza adeguata
SigmaWare Stealer Analysis - Intelshare
Sintesi riepilogativa delle campagne malevole nella settimana del 14 – 20 febbraio
Why the shift left dream has become a nightmare for security and developers
The "shift left" approach has increased pressure on developers, as speed demands override security checks in modern CI pipelines. Qualys explains how analyzing 34,000 public container images revealed 7.3% were malicious and why security must be enforced at the infrastructure layer by default.
Musk and X launch legal appeal against EU’s record €120 million fine
Russia stepping up hybrid attacks, preparing for long standoff with West, Dutch intelligence warns
PayPal discloses data breach that exposed user info for 6 months
PayPal is notifying customers of a data breach after a software error in a loan application exposed their sensitive personal information, including Social Security numbers, for nearly 6 months last year.
Hackers breach contractor linked to Ukraine’s central bank collectible coin store
Mississippi medical center closes all clinics after ransomware attack
The University of Mississippi Medical Center (UMMC) closed all its clinic locations statewide on Thursday following a ransomware attack.
The Cyber Express Weekly Roundup: AI Disruption, Regulatory Pressure, and the Evolving Cyber Threat Landscape
AI-driven fraud, GDPR probes, ransomware, and deepfake risks reshape global cybersecurity in this week’s Cyber Express roundup.
French National Bank Authority Breach Exposed 1.2 Million Accounts
French national bank authority confirmed a major data breach affecting 1.2 million bank accounts after a malicious actor stole credentials belonging to a
Operation Olalampo: Inside MuddyWater’s Latest Campaign
FBI: Over $20 million stolen in surge of ATM malware attacks in 2025
The FBI warned that Americans lost more than $20 million last year amid a massive surge in ATM "jackpotting" attacks, in which criminals use malware to force cash machines to dispense money.
What Big Tech Leaders Said On AI’s Future at India AI Impact Summit 2026
While global CEOs discussed capability growth, the panel on Responsible AI at Scale shifted attention to emerging cyber risks.