In today’s interconnected world, vendor risk assessment is as crucial as remembering where you left your phone charger. It’s the unsung hero of enterprise cybersecurity, ensuring that trusted partners don’t become the Achilles’ heel of your digital ecosystem. By keeping a close eye on third-party risks, businesses can dodge disasters and maintain cyber resilience.

In the latest plot twist in the hospitality sector, ClickFix attacks have hotels and their customers unwittingly starring in a cybersecurity drama. Using compromised Booking.com accounts, threat actors are serving up malware with a side of phishing. Remember, folks, if it looks too good to be true, it probably involves ClickFix.

Aleksei Olegovich Volkov, a Russian hacker, faces years in US prison after cozying up with Yanluowang ransomware crews. He brokered access for cyber attacks and even complained to co-conspirators about needing holiday cash. The prosecution didn’t find his plea for pity amusing; Volkov owes $9.1 million in restitution.

The 2025 OWASP Top 10 list has been reshuffled like a deck of cards, with Broken Access Control still reigning as the ace. Security Misconfiguration leaps to second, while new kid Mishandling of Exceptional Conditions sneaks in at tenth. It’s a cybersecurity soap opera, but without the dramatic pauses.

“Being hacked is like finding out your dog stole your lunch: shocking, messy, and you’re not sure where to start. First, contain the breach before it multiplies like a family of rabbits. Then, lock down your accounts tighter than a jar of pickles. Remember, clarity, not panic, is your best defense against being hacked.”

Curly COMrades abuses Hyper-V to camouflage malware in Linux VMs, taking stealth to new heights. These cyber ninjas use Microsoft’s hypervisor to create a hidden virtual machine, running malware invisibly. It’s like hiding a criminal in a cardboard box labeled “Not a Criminal.” Endpoint security, meet your new nemesis!

The Browser Security Report 2025 reveals that the user’s browser is now the epicenter of identity, SaaS, and AI-related risks. GenAI has become the top data exfiltration channel, with over 77% of employees pasting sensitive data into prompts. Traditional controls like DLP and EDR are outdated, leaving browsers an unguarded frontier.

Agentic AI in cybersecurity is like hiring a super-fast detective who never needs coffee breaks. With a global shortage of 4 million cybersecurity workers, this AI steps in, allowing security teams to shift from a frantic game of triage to strategic threat hunting. Agentic AI helps SOCs make decisions faster, ensuring nothing slips through the…

The FBI has issued a federal subpoena to domain registrar Tucows, seeking extensive billing and session records. They’re on a mission to unmask the anonymous, proving once again that even the internet’s stealthiest can’t hide from an agent on a caffeine high.

The GlassWorm malware has slithered back into the Open VSX registry, just weeks after being evicted from the Visual Studio Code extensions marketplace. Koi Security discovered new infected extensions, showing that GlassWorm is not just a bug; it’s a determined pest, cleverly hiding its tracks and wreaking havoc on unsuspecting developers.

Cybercriminals have spilled the beans on nearly 30 organizations supposedly hit by the Oracle EBS hack. Cl0p ransomware group is flaunting its work, listing victims like Harvard University and South Africa’s Wits University. While some confirmed the breach, many remain tight-lipped, perhaps hoping that silence is their best security blanket.

Monsta FTP, a popular file management tool, had a security flaw that let hackers take control of servers without needing to log in. WatchTowr discovered this vulnerability, CVE-2025-34299, which could lead to Remote Code Execution. Users should update to Monsta FTP 2.11.3 immediately to protect their servers.

The Australian government is cracking down on North Korea’s cyber shenanigans, imposing sanctions on entities linked to the country’s digital mischief. With a travel ban and financial squeeze, Australia and the US aim to curb Pyongyang’s cryptocurrency heists and IT worker schemes. Australia’s message to North Korea: stop your cybercrime capers!

The UK’s NCA has launched the “Crypto Dream Scam Nightmare” campaign to spotlight crypto-investment fraud. Men under 45, beware: your dream investment could be a nightmare in disguise. With over 17,000 reports last year, scams promise high returns but deliver empty wallets. Stay sharp and avoid becoming a pig in the “pig butchering” con!

Nine malicious NuGet packages by “shanhai666” hide time-delayed payloads to sabotage databases and industrial systems. Sharp7Extend is the most dangerous, causing random crashes and silent data corruption. Scheduled triggers from 2027 to 2028 make detection tricky. It’s the software equivalent of setting an alarm clock for chaos.

Allianz UK confirmed it was hit by the Clop gang’s Oracle EBS attack, affecting 750 customers. The attack, separate from the Allianz Life breach, compromised only Allianz UK’s customer data. Allianz joins the unfortunate lineup of organizations targeted by Clop’s zero-day exploits, leaving everyone wondering if cybercriminals have adopted a rewards program.

The UK’s National Cyber Security Centre is calling time on its Web Check and Mail Check tools, urging users to seek commercial alternatives by March 31, 2026. It’s like saying goodbye to an old friend, but with more cyber resilience and fewer emotional farewells. Remember, finding alternatives is key!

Phishing campaign targets hotels with a ClickFix twist, tricking managers into downloading PureRAT malware. The scheme mimics booking platforms like Booking.com, stealing credentials and banking details. Cybercriminals even enlist “traffers” for malware distribution. It’s like a cybercrime Airbnb, but instead of guests, you’ve got unwanted malware checking in!

The GlassWorm campaign is back, now targeting the Visual Studio Code ecosystem. These sneaky threat actors use invisible Unicode characters to hide malware in extensions, causing chaos by pilfering credentials and cryptocurrency. Despite efforts to squash the worm, it wriggles back, proving more persistent than a toddler at bedtime.

Cisco’s new AI model, clocking in at a whopping 17 billion parameters, is set to outmuscle its predecessor, Foundation-Sec-8B. This model aims to not just detect threats but offer advice on tackling them too. Expect its debut just after Christmas—because nothing says holiday spirit like bolstering cyber defenses!