The FBI has issued a Private Industry Notification (PIN) regarding new malware campaigns targeting Chinese-branded webcams and DVRs, using a remote access trojan (RAT) called HiatusRAT.

The US Cybersecurity and Infrastructure Security Agency (CISA) has issued a binding operational directive (BOD 25-01) requiring federal civilian agencies to secure their Microsoft cloud environments.

Cybersecurity researcher Jeremiah Fowler uncovered an unprotected database belonging to Care1, a Canadian provider of AI-driven software solutions for optometrists.

Allied Irish Bank (AIB) is advising customers to stay alert against rising fraud risks, especially during the holiday season when many relax their vigilance. The bank has identified the top five fraudulent tactics prevalent in 2024, urging consumers to take proactive steps to protect themselves.

Experian's 12th annual Data Breach Industry Forecast warns that data breaches will continue unabated in 2025, with AI emerging as a dominant force in both cyberattacks and defenses.

A massive international law enforcement operation, involving agencies from 40 countries, has led to the arrest of over 5,500 individuals connected to financial crimes and the seizure of more than $400 million in virtual assets and government-backed currencies.

Russian authorities have reportedly detained Mikhail Pavlovich Matveev, known by aliases such as Wazawaka, Uhodiransomwar, and Boriselcin. Matveev, wanted by the FBI since 2023, is linked to major ransomware groups including Hive, LockBit, and Babuk, which have been responsible for devastating cyberattacks on critical infrastructure, government agencies, and businesses worldwide.