Risk
-
FBI warns Kimsuky used malicious QR codes in 2025 quishing campaigns
An FBI flash alert warned that North Korea linked group Kimsuky used malicious QR codes in 2025 spear phishing to target think tanks, academia, and government entities. The attacks aimed to steal session tokens and bypass multi factor authentication.
-
U.S. to Withdraw From Several International Cybersecurity Organizations
The White House announced the U.S. will withdraw from 66 international organizations, including several that work on cybersecurity, prompting critics to warn of weakened multinational coordination on cyber defenses and online rights.
-
Palo Alto Networks in talks to buy Israeli cybersecurity startup Koi for about $400 million
Palo Alto Networks is reported to be in talks to buy Israeli startup Koi for about $400 million. Koi, founded in 2024 and backed with $48 million, offers an AI driven supply chain security platform that protects over 500,000 endpoints.
-
Cisco in advanced talks to buy Axonius for $2 billions
Cisco is in advanced talks to acquire Israeli cybersecurity firm Axonius for $2 billion, according to a Calcalist report. Axonius was previously valued at $2.6 billion and has raised about $700 million.
-
Cyber incident forces two day closure at Warwickshire school
A cyber incident shut down IT at Higham Lane School in Nuneaton, cutting phones, email and servers and forcing a two day closure. Recovery work involves a Department for Education response team and trust IT experts.
-
UK launches Government Cyber Action Plan with £210 million pledge
The UK launched a Government Cyber Action Plan with a £210 million pledge to create a Government Cyber Unit and new cyber profession while aligning departments with critical infrastructure security requirements to strengthen public sector defences.
-
AI agents flagged as new insider threat in 2026 by Palo Alto report
A Palo Alto Networks predictions report warns AI agents are a new insider threat in 2026 as Gartner forecasts 40 percent of enterprise apps will adopt task specific agents. The report highlights privilege risk, prompt injection and defensive uses.
-
Investors in F5 urged to seek lead plaintiff status after BIG-IP breach and 10.9% share drop
A press release said investors in F5 have until February 17, 2026 to seek lead plaintiff status after the company linked weaker fiscal 2026 guidance to a BIG-IP security breach and a 10.9 percent two-day share decline.
-
Critical authentication bypass in IBM API Connect prompts urgent patching
A critical authentication bypass in IBM API Connect, tracked as CVE-2025-13915 and affecting several 10.0.8.x and 10.0.11.0 releases, can grant unauthorized access without user interaction. IBM issued interim fixes and advised disabling developer self-service if unable to patch.
-
China-linked APT used DNS poisoning to deliver MgBot backdoor, Kaspersky says
Kaspersky linked a China-aligned APT known as Evasive Panda to a campaign from November 2022 to November 2024 that used DNS poisoning to deliver an MgBot backdoor to targets in Türkiye, China and India, employing staged loaders, custom encryption and host-specific payloads.
