US law enforcement has seized the dark web domains of the RAMP forum, a key hub for ransomware gangs. An alleged operator confirmed the takedown, but said his “core business” of buying access remains unchanged.
In a radical physical migration, Russian logistics firm CDEK flew 300TB of data on hard drives from Novosibirsk to Moscow. The move, covering 95% of its operations, aims to boost application speed and security after a major 2024 hack.
A new trove of 149 million stolen logins has been found unprotected online. It includes nearly a million Apple accounts, highlighting the relentless threat of info-stealing malware.
According to a Dark Reading analysis, 2025 was a wake-up call that cyber risk is a decision problem, not just a technical one. Major incidents at Change Healthcare, Ascension, and the global CrowdStrike outage showed that when systems become unreliable, human judgment falters.
The FBI has issued a new alert about North Korean phishing campaigns using QR codes. These “quishing” attacks bypass email security and multi-factor authentication to hijack cloud identities. The Kimsuky group is targeting think tanks, academics, and governments.
The UK government is shifting from reactive patching to proactive cyber warfare with a major new investment. A centralized Government Cyber Unit will coordinate defense across all departments and critical infrastructure.
Researchers found a critical security hole in Open WebUI’s Direct Connections feature. If exploited, it could lead to full account takeover. The issue is patched in version 0.6.35.
Infinidat is boosting its storage systems to combat ransomware, promising recovery times as fast as one minute. The upgrades focus on massive capacity and built-in cyber resilience features to shrink the threat window for enterprises.
The cyber insurance market is shifting. After years of falling premiums, the rate of decrease is slowing, and insurers are demanding more proof of security controls. CISOs must now balance risk transfer with provable resilience to navigate the coming changes.
The UK government has launched a £210 million plan to shore up its own cybersecurity defenses. This follows a series of high-profile breaches and a damning audit that found widespread vulnerabilities. The plan creates a new Government Cyber Unit and aims to hold public services to the same standards
