Law enforcement takedowns disrupted major ransomware groups in 2025—but attacks didn’t slow down. In fact, victims surged nearly 50% as new groups rushed in and tactics shifted from loud lockups to quieter data extortion.
This Saturday Security Story highlights why disruption doesn’t always mean decline—and why resilience matters more than ever.
Stay curious. Stay prepared.
https://www.databreachtoday.com/ransomware-by-numbers-victim-group-count-surges-a-30528
As AI becomes part of our daily workflow — from writing code to planning strategy — attackers are shifting tactics. In this Saturday Security Story, we break down how malicious Chrome extensions, some even featured by Google, were quietly harvesting entire AI chatbot conversations from nearly a million users. This wasn’t traditional hacking or malware. It was trust abuse. Source code, business strategy, legal questions, internal URLs — all siphoned off under the guise of “anonymous analytics.” The real risk today isn’t just zero-days or ransomware. It’s tired humans moving fast inside tools they assume are safe. Take a moment this weekend to audit your browser extensions, remove what you don’t need, and remember: featured doesn’t mean verified. Like, subscribe, and stay curious. https://www.darkreading.com/cloud-security/fake-ai-chrome-extensions-steal-900k-users-data https://thehackernews.com/2026/01/two-chrome-extensions-caught-stealing.html https://www.esecurityplanet.com/threats/900000-users-hit-as-chrome-extensions-steal-ai-chat-data/
Post-holiday fatigue is one of the most profitable windows for fraud. Last year alone, more than $12 billion was siphoned from Americans through scams—not hacks. These weren’t break-ins. They were conversations. From fake job offers and tax refund texts to AI-cloned voices impersonating banks, employers, and even family members, today’s attacks rely on urgency and trust, not malware. The uncomfortable truth? Your biggest risk in 2026 isn’t a zero-day exploit—it’s a tired, distracted human trying to do the right thing. Slow down. Verify unexpected messages. Don’t click links. Don’t send gift cards or crypto. And enable MFA everywhere you can. This is your Saturday Security Story. I’m Peter — like, subscribe, and share. https://cbsaustin.com/news/nation-world/new-year-new-scams-how-criminals-prey-on-busy-tired-consumers-post-holidays-christmas-hanukkah-money-cash-finances-financial-resolutions-tax-prep-scammers-fraud
Cybersecurity in 2025 is no longer about breaking through firewalls — it’s about exploiting trust. Here are some of the realities shaping the 2025–2026 cybersecurity landscape: * How attackers are innovating faster than defenders * How identity, insider risk, and supply chains became the primary attack paths * Why nearly all breaches involve human behavior, not zero-days * How AI is accelerating both attacks and defenses * The dangerous disconnect between frontline security teams and executive leadership With global cybercrime projected to exceed $14 trillion by 2028, organizations must rethink what “security” actually means. The strongest perimeter won’t save you if identity controls, reporting culture, and human awareness are weak. This is your Saturday Security Story — focused on what really matters. https://www.vikingcloud.com/blog/cybersecurity-statistics 👍 Like 🔔 Subscribe 📤 Share
Breaches aren’t about breaking in anymore — they’re about buying in. In this Saturday Security Story, we look at the return of Scattered LAPSUS$ Hunters, their new Telegram activity, and an alleged SaaS supply-chain breach tied to Gainsight and Salesforce integrations impacting hundreds of organizations. But the most disturbing change? They’re openly recruiting insiders. For as little as $25,000, this group is offering to buy access to: * Okta * Microsoft SSO * VPNs * GitHub * Internal dashboards and screenshots No zero-days - No malware - Just people. This isn’t hypothetical — a CrowdStrike employee was recently fired for feeding this exact group. Top patterns: Stolen tokens. Trusted apps. Social engineering. Identity abuse. Your biggest security risk isn’t the perimeter anymore. It’s identity, access, and who you trust inside your environment. If you’re responsible for security, IT, or risk — this is a shift you can’t ignore. Like, subscribe, and share to keep this conversation going. https://socradar.io/blog/scattered-lapsus-hunters-gainsight-breach/ https://www.linkedin.com/feed/update/urn:li:activity:7404905350488932352/
Manufacturers are deep in their 2025 Golden Quarter — but it’s not just production that’s surging. Cyberattacks on the manufacturing sector have hit an all-time high. More than half of all compromised manufacturers paid ransomware demands this year, with average payouts topping $1 million and recovery costs adding another $1.3 million. For the first time in years, exploited vulnerabilities beat phishing and stolen credentials as the top attack vector. And experts agree the biggest gaps are clear: limited cybersecurity expertise, unseen vulnerabilities, and slow adoption of essential protections. From Jaguar Land Rover shutting down production for nearly a month to major beverage operations grinding to a halt, the impact is massive. And with AI and automation expanding across factory floors, the attack surface is only growing. This is your Saturday Security Story. I’m Peter — like, sub, and share to stay ahead of what’s happening in cybersecurity. https://www.darkreading.com/cyberattacks-data-breaches/threat-landscape-increasingly-dangerous-manufacturers https://industrialcyber.co/reports/half-of-2025-ransomware-attacks-hit-critical-sectors-as-manufacturing-healthcare-and-energy-top-global-targets/
