ShinyHunters has claimed the theft of 14 million records from the US bakery-cafe chain’s systems.
The attacks targeting Europe were analyzed by Ukraine’s CERT-UA and the cybersecurity company Zscaler.
Poland’s CERT has published a report on the recent attack, providing new details on targeted ICS and attribution.
The fastest way to squander the promise of AI is to mistake automation for assurance, and novelty for resilience.
To all those who are fighting the good fight in the world of cyber, keep collaborating to ensure our world never succumbs to the chaos of the Upside Down.
By integrating identity threat detection with MFA, organizations can protect sensitive data, maintain operational continuity, and reduce risk exposure.
Security leaders chart course beyond predictions with focus on supply chain, governance, and team efficiency.
When software can think and act on its own, security strategies must shift from static policy enforcement to real-time behavioral governance.
Attendees will walk away with guidance for how to build AI agents identities, unify them under a consistent security model, and ensure AI development moves quickly without compromise.
RegisterSecurityWeek’s 2026 Ransomware Summit will discuss a roadmap for defending the enterprise, from mitigating root causes to mastering recovery, giving security teams the critical insights needed to navigate and neutralize today’s ransomware extortion threats.
Register
SecurityWeek’s 2026 Ransomware Summit is a must-attend event for cybersecurity professionals as ransomware attacks continue to hit big-name victims across industries with ruthless efficiency.
[February 25, 2026 | Virtual]
SecurityWeek’s 2026 Supply Chain Security Summit is where top security experts unpack the complexity of modern software supply chain threats and proven strategies to mitigate risk.
[March 18, 2026 | Virtual]
SecurityWeek’s 2026 ICS Lockdown is an online extension of the ICS Cybersecurity Conference and will dive deep into the world of industrial cybersecurity to help those charged with protecting OT environments.
[April 29, 2026 | Virtual]
SecurityWeek’s 2026 Threat Detection & IR Summit brings together security practitioners from around the world to share war stories on breaches, APT attacks and more.
[May 20, 2026 | Virtual]
-
Albeit mainly considered a theoretical risk, the flaw has been exploited to disable protections and deliver malware. (February 3, 2026)
-
The attacks targeting Europe were analyzed by Ukraine’s CERT-UA and the cybersecurity company Zscaler. (February 3, 2026)
-
The critical-severity vulnerabilities could allow unauthenticated attackers to execute arbitrary code remotely. (January 30, 2026)
-
The two bugs impacted n8n’s sandbox mechanism and could be exploited via weaknesses in the AST sanitization logic. (January 29, 2026)
-
Hackers rely on evolved vishing and login harvesting to compromise SSO credentials for unauthorized MFA enrollment. (February 2, 2026)
-
A total of 87 individuals, mostly Venezuelan nationals, have been charged for their role in the ATM jackpotting scheme. (January 28, 2026)
-
Domains set up by the threat actor suggest attacks aimed at Atlassian, Canva, Epic Games, HubSpot, Moderna, ZoomInfo, and WeWork. (January 27, 2026)
-
The WorldLeaks cybercrime group claims to have stolen information from the footwear and apparel giant’s systems. (January 24, 2026)
