Enterprise Security Tech

The University of Hawaii Cancer Center is facing growing scrutiny after quietly navigating a ransomware attack that compromised decades old cancer research data, then waiting months to inform regulators and affected individuals. According to a report filed with the Hawaii state legislature in December, attackers gained unauthorized access to servers supporting cancer research operations in late August. The intruders encrypted systems, disrupted access to research files, and

Artificial intelligence is no longer just changing how organizations defend themselves online. It is fundamentally reshaping how cybercrime works, compressing the time, cost, and skill required to launch attacks that once demanded large criminal operations or nation-state backing. That is one of the clearest signals emerging from the World Economic Forum’s Global Cybersecurity Outlook 2026 , which finds that cyber-enabled fraud and phishing have overtaken ransomware as the to

A flood of unexpected Instagram password reset emails has left millions of users wondering whether their accounts were quietly compromised or if something else is unfolding behind the scenes. Meta insists there was no breach of Instagram’s systems and that accounts remain secure. Security researchers are not so quick to dismiss the risks. The confusion stems from reports that a dataset tied to roughly 17.5 million Instagram users is circulating on cybercrime forums. Malwareby

As the cybersecurity industry closes the books on 2025, the year is already solidifying around a familiar but unsettling conclusion: attackers didn’t need radically new malware to cause outsized damage. They needed people, timing, and a growing catalog of quietly catastrophic infrastructure flaws. That’s the throughline emerging from a year-end review by incident response specialists at LevelBlue , which absorbed digital forensics heavyweight Stroz Friedberg earlier this year

A new malware campaign dissected by the Securonix  Threat Research team underscores an uncomfortable truth for defenders: some of the most effective modern intrusions still rely on decades-old Windows scripting, dressed up with just enough obfuscation and in-memory trickery to stay ahead of automated detection. Tracked as SHADOW#REACTOR , the operation delivers a familiar end goal—a fully functional Remcos remote access trojan—but the path it takes to get there is anything bu

For a brief moment last week, the internet appeared to relive a familiar panic: headlines warning that cybercriminals had walked away with data from millions of Instagram users. Security vendor Malwarebytes  said attackers had stolen sensitive information tied to roughly 17.5 million accounts. Instagram pushed back just as forcefully, insisting there was no breach of its systems at all. Both claims can technically coexist — and that uneasy overlap says more about the modern d