China-Linked Group UNC6508 Targets North American Research; US Curbs Anthropic AI Models Sparking Industry Outcry

China-Linked Group UNC6508 Bypasses Defenses for Over a Year in Massive Research Data Heist

A sophisticated, multi-year cyberespionage campaign by a China-nexus threat actor, UNC6508, has been exposed by Google's Threat Intelligence Group. Active since at least 2023, the group targeted major medical, academic, and military research organizations in t...

Maine Disables Public Data Breach Portal After Trolls Post Fake VRChat and Discord Breaches

The Office of the Maine Attorney General has temporarily disabled its public-facing data breach notification portal after it was abused by an unknown entity. The perpetrator submitted fraudulent breach reports for the companies VRChat and Discord, claiming mil...

Ransomware Attack by 'The Gentlemen' Halts Production at Mackay Sugar, Australia's Second-Largest Producer

Mackay Sugar, Australia's second-largest producer of raw sugar, has suffered a ransomware attack attributed to a group called 'The Gentlemen.' The cyberattack forced the company to shut down at least two of its cane-processing mills in Queensland and halt harv...

Anubis Ransomware Hits Adriatic Port, Stealing Port Safety Plans in $10M Extortion Attempt

A ransomware attack by the Anubis group on a port authority in the Adriatic Sea has crippled operations and resulted in the theft of highly sensitive data, including port safety plans. The incident, which dates back to December 2025, involved a $10 million ran...

Irish DPC Fines Health Service €300,000 for GDPR Failures in 2018 Hospital Ransomware Attack

Ireland's Data Protection Commission (DPC) has fined the Health Service Executive (HSE) €300,000 and issued a formal reprimand for multiple GDPR violations related to a 2018 ransomware attack. The attack targeted the Midlands Regional Hospital Tullamore, encry...

Hacker 'AckLine' Leaks Data of 16,000+ Travel Agency Customers for Free on Underground Forum

A threat actor named 'AckLine' has leaked the personal records of more than 16,000 customers of Needlework Tours, an Australian travel agency specializing in craft tours. The compromised data, which includes full names, addresses, contact numbers, dates of bir...

State Officials Warn of Cyber Crisis, Urge Congress to Renew Critical Grant Program

Update:Eight months after federal funding changes, the Multi-State Information Sharing and Analysis Center (MS-ISAC), a critical resource for state and local cybersecurity, has lost dozens of states and over 10,000 local government members. These entities can no long...

The AI Sword: Anthropic Model Demonstrates Hacking Prowess Surpassing Human Experts

Update:New projections indicate that AI models, including Anthropic's Mythos and OpenAI's GPT-5.4-Cyber, are driving a record-high forecast of 66,000 CVEs in 2026. This overwhelming volume creates a 'signal-to-noise' crisis for defensive security operations, leading...

ShinyHunters Exploits Oracle PeopleSoft Zero-Day, Breaching Over 100 Orgs, Primarily in Higher Education

Update:The University of Nottingham has confirmed a data breach affecting approximately 454,600 current and former students. The ShinyHunters group exploited CVE-2026-35273 in Oracle PeopleSoft to steal highly sensitive personal information, including passport number...

Pharma Giant Novo Nordisk Discloses Data Breach Affecting Clinical Trial Participants

Update:Novo Nordisk has re-confirmed its data breach, providing slightly more specific details regarding the exfiltrated data. For clinical trial participants, the pseudonymized data now explicitly includes immunogenicity data and biomarkers, in addition to previousl...

US Government Orders Anthropic to Halt Foreign Access to Advanced AI Models

Update:New details reveal the US government's ban on Anthropic's Fable 5 and Mythos 5 models was prompted by a third-party 'jailbreak' demonstration and suspicions of China-linked access. In response, Anthropic disabled the models for all global users. Over 50 promin...