Study finds organizations are deploying AI at record speed while their security and governance frameworks lag behind.

Study finds organizations are deploying AI at record speed while their security and governance frameworks lag behind.

As artificial intelligence (AI) becomes an integral part of modern business operations, a new report from F5 highlights a growing concern: organizations are deploying AI at record speed, but their security and governance frameworks are struggling to keep up. The 2025 State of AI Application Strategy Report reveals critical gaps in preparedness that could leave enterprises vulnerable as they accelerate their AI initiatives.
CISA warns of a cyberattacker’s ability to derail a train by engaging emergency brakes through software-defined radio (SDR).

CISA warns of a cyberattacker’s ability to derail a train by engaging emergency brakes through software-defined radio (SDR).

A significant cybersecurity vulnerability affecting the United States rail network has recently come to light, revealing that trains can be remotely forced to engage emergency brakes through the use of inexpensive software-defined radio (SDR) equipment. This flaw, which poses serious safety and operational risks, has been known to security researcher Neil Smith since 2012, but only gained widespread attention following a formal advisory issued by the Cybersecurity and Infrastructure Security Agency (CISA) in 2025.
CISA adds Wing FTP Server vulnerability to the Known Exploited Vulnerabilities (KEV) catalog.

CISA adds Wing FTP Server vulnerability to the Known Exploited Vulnerabilities (KEV) catalog.

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has officially added a new critical vulnerability, CVE-2025-47812, affecting Wing FTP Server, to its Known Exploited Vulnerabilities (KEV) Catalog. This action follows confirmed reports of active exploitation in the wild, underscoring the urgent need for organizations to address this security risk immediately.
Computer hacker holding up a bitcoin

Cyberattacker targets VSCode’s Cursor IDE via a fake Solidity language extension to steal $500k in crypto from a blockchain developer.

A sophisticated cyberattack targeted the Cursor IDE—a Visual Studio Code (VSCode) fork popular among developers for its AI-assisted coding features. Attackers published a fake extension called "Solidity Language" in the Open VSX extension marketplace, masquerading as a tool for Ethereum smart contract development. This extension was, in reality, a vehicle for malware distribution and remote access.
Computer hacker holding up cash

Interlock ransomware group has developed a new PHP-based remote access trojan (RAT) designed to evade detection.

Security researchers from The DFIR Report, in collaboration with Proofpoint, have identified a significant new campaign by the Interlock ransomware group. The threat actors are leveraging a newly developed remote access trojan (RAT) to target organizations across multiple sectors, marking a notable evolution in their tactics and tooling.
New Forensic Technique Reveals Hidden Traces Left by Hackers Exploiting Remote Desktop Protocol

New Forensic Technique Reveals Hidden Traces Left by Hackers Exploiting Remote Desktop Protocol

A groundbreaking forensic methodology is revolutionizing the way cybersecurity professionals investigate attacks leveraging Microsoft’s Remote Desktop Protocol (RDP). This innovative approach allows investigators to reconstruct hacker activity—even when conventional evidence has been deleted—by extracting and analyzing overlooked digital artifacts generated during RDP sessions.
India’s CBI dismantles sophisticated cybercrime syndicate responsible for tech support scams targeting United Kingdom and Australia.

India’s CBI dismantles sophisticated cybercrime syndicate responsible for tech support scams targeting United Kingdom and Australia.

In a significant victory against international cybercrime, India’s Central Bureau of Investigation (CBI) has announced the successful dismantling of a sophisticated transnational cybercrime syndicate responsible for orchestrating large-scale tech support scams targeting citizens in the United Kingdom and Australia.
Hackers targeting Southeast Asia are using a previously undocumented Windows backdoor called HazyBeacon.

Hackers targeting Southeast Asia are using a previously undocumented Windows backdoor called HazyBeacon.

Government agencies across Southeast Asia have become the focus of a sophisticated cyber-espionage campaign, according to recent threat intelligence reports. The campaign, attributed to an advanced threat group tracked as CL-STA-1020, employs a previously undocumented Windows backdoor dubbed HazyBeacon and leverages innovative methods to evade detection, raising new concerns about the security of cloud-based infrastructure.
A computer hacking talking on a cellphone

Critical vulnerabilities found in Kigen’s eSIM (embedded SIM) technology, impacting billions of smartphones and IoT devices.

Security researchers have uncovered critical vulnerabilities in Kigen’s eSIM (embedded SIM) technology, raising concerns over the security of more than two billion devices worldwide. The flaws, which impact smartphones and a vast array of Internet of Things (IoT) products, could enable attackers to remotely compromise devices, intercept private communications, and steal sensitive subscriber data.