HelpNetSecurity – Phishing reclaims the top initial access spot, attackers experiment with AI tools
“Phishing returned as the leading method attackers used to break into organizations in the first quarter of 2026, accounting for over a third of engagements where initial access could be determined, according to Cisco Talos. “
Cyberinsider – RenEngine campaign infected 400.000 users via cracked games
“A dual-stage malware campaign leveraging a previously undiscovered loader, RenEngine, has infected over 400,000 systems globally, with more than 5,000 new infections daily.”
BleepingComputer – Fake Lastpass emails pose as password vault backup alerts
“LastPass is warning of a new phishing campaign disguised as a maintenance notification from the service, asking users to back up their vaults in the next 24 hours. The malicious emails include a link that allegedly takes users to a site where they can create an encrypted backup, where the attacker likely tries to hijack […]
Anthropic – Disrupting the first reported AI-orchestrated cyber espionage campaign
In mid-September 2025, we detected suspicious activity that later investigation determined to be a highly sophisticated espionage campaign. The attackers used AI’s “agentic” capabilities to an unprecedented degree—using AI not just as an advisor, but to execute the cyberattacks themselves.
CSO – CISOs face quantum leap in prioritizing quantum resilience
“Despite recognizing the severity of the threat, enterprises continue to respond slowly to warnings that existing systems must be updated to address the risks of the approaching advent of quantum computers.”
ChannelPro – Future-proofing cybersecurity: Understanding quantum-safe AI and how to create resilient defenses
“The main concern of a cryptographically relevant quantum computer (CRQC) is around its capabilities, as it’s theorized that the machine would break traditional public key cryptography (PKC) algorithms. While CRQCs are currently unavailable, the development trajectory of quantum computing suggests these could emerge by 2037 if not sooner.”
Computable – Microsoft Copilot liet geheime toegang tot bedrijfsdata toe
“Microsofts ai-assistent Copilot heeft gedurende langere tijd onjuiste toegangslogboeken gegenereerd binnen de Microsoft-cloudomgeving. Hierdoor konden organisaties niet accuraat vaststellen wie toegang had tot vertrouwelijke documenten.”
Infosecurity Magazine – Researchers Discover First Reported AI-Powered Ransomware
“In what is reportedly a world-first, ESET researchers have discovered PrompLock, a generative AI-powered ransomware implant currently in development.”
VRTnws – Cyberaanval bij Orange Belgium: hackers kregen toegang tot 850.000 klantenaccounts
“Eind juli heeft Orange Belgium een cyberaanval op een van zijn IT-systemen ontdekt, waardoor “ongeoorloofde toegang werd verkregen tot bepaalde gegevens van 850.000 klantenaccounts”.”
Bleepingcomputer – Major password managers can leak logins in clickjacking attacks
“Six major password managers with tens of millions of users are currently vulnerable to unpatched clickjacking flaws that could allow attackers to steal account credentials, 2FA codes, and credit card details.”