Tag: threat-landscape

Chrome Extensions Go Rogue After Ownership Transfer: Weekly Security Roundup

Two Chrome extensions became malicious following ownership transfers, allowing attackers to inject code and steal user data. Meanwhile, mid-market organizations continue struggling to achieve enterprise-level security postures amid increasing supply chain attack awareness.

Mar 9, 2026The Hacker News, SANS ISC

chrome-extensionssupply-chainmalware

🇺🇸Google

mediumIndustry & Policy

Ransomware Payments Drop 8% Despite 50% Attack Surge, Median Ransom Size Climbs

Despite a 50% increase in ransomware attacks during 2025, total payments to criminals dropped 8% according to Chainalysis research. However, median ransom payment sizes increased significantly, suggesting threat actors are targeting fewer but higher-value victims.

Mar 2, 2026Infosecurity Magazine

ransomwarepayment-trendschainalysis

highIndustry & Policy

Industry Intelligence: OT Incident Scaling, AI-Accelerated Attacks, and Multi-Million Dollar Enforcement Actions

Industry developments show AI enabling attackers to compromise networks in under 30 minutes, with some breakout times dropping to just 4 minutes. Meanwhile, law enforcement scored major wins with 651 cybercrime arrests across Africa, and new frameworks emerge for measuring OT incident severity.

Feb 25, 2026Dark Reading, Infosecurity Magazine

operational-technologyartificial-intelligencethreat-landscape

🏴Medusa🇰🇵Lazarus

🇺🇸Reddit

mediumData Breaches & Incidents

Data Breach Intelligence: New Mobile Surveillance Malware, Victim Notification Gaps, and 2026 Threat Evolution

A new malware-as-a-service called ZeroDayRAT claims comprehensive surveillance capabilities on Android and iOS devices. Security researcher Troy Hunt highlights ongoing issues with breach notification delays affecting victims.

Feb 24, 2026Hackread, Troy Hunt

mobile-malwaredata-breachessurveillance

🇦🇪Telegram

highIndustry & Policy

Security Roundup: AI Agents Break Guardrails, Supply Chain Attacks, and Rising DDoS Threat

AI agents ignore security controls, supply chain attack hits npm, advanced phishing bypasses MFA, and DDoS attacks reach alarming levels in this week's security developments.

Feb 20, 2026Dark Reading, Infosecurity Magazine

ai-securitysupply-chain-attacksphishing

🇺🇸Google