%term

Record-Breaking DDoS Attacks & the Security Landscape Heading Into 2026

Dec 30, 2025 By Cloudflare In Cloudflare

In this end-of-year episode of This Week in NET, host João Tomé is joined by Omer Yoachimik, Senior Product Manager for DDoS Protection at Cloudflare, to break down the realities of the 2025 DDoS threat landscape — and what’s coming next.

View Video

Cloudflare

Read more about Record-Breaking DDoS Attacks & the Security Landscape Heading Into 2026

Understanding the Risks of Multi-Location Internet Connectivity

Dec 26, 2025 By SecuritySenses In SecuritySenses

Modern enterprises rarely live in one building anymore. Branches, stores, plants, and remote teams all depend on fast internet to reach apps and data. That reach is powerful, but it also multiplies the ways attackers can find you. The more doors you add, the more locks and alarms you need.

Read Post

SecuritySenses

Read more about Understanding the Risks of Multi-Location Internet Connectivity

Social Engineering Tactics 2026: How Attackers Are shifting from Email to 'Swipe-Up' Scams

Dec 23, 2025 By Ezra M. In Memcyco

The image of the cyber attacker is changing. For years, the industry focused on email gateways and typo-squatted domains like citi-bank-security.com. But according to Tzoor Cohen, CTI Lead at Memcyco, the battleground has shifted. In 2026, the most dangerous social engineering tactics typically don’t start in an inbox. They start on social media, utilize legitimate infrastructure like Bitly, and exploit the user interface (UI) of mobile devices to hide malicious intent.

Read Post

Memcyco

Read more about Social Engineering Tactics 2026: How Attackers Are shifting from Email to 'Swipe-Up' Scams

How Attackers Maintained Persistence in AWS After Stealing Credentials

Dec 21, 2025 By Gabriel Avner In Apono

Last week’s disclosure from AWS is another reminder that in the cloud, attackers don’t need to break in. They just need a working set of keys. Several AWS customers learned this the hard way when threat actors used compromised IAM credentials to deploy a rapid cryptomining campaign across EC2 and ECS environments. The incident didn’t rely on vulnerabilities or sophisticated exploitation. It relied on valid credentials and overly permissive access.

Read Post

Apono

Read more about How Attackers Maintained Persistence in AWS After Stealing Credentials

AI, DDoS, and the Internet in 2025 | Cloudflare Radar Year in Review

Dec 19, 2025 By Cloudflare In Cloudflare

In this special Year in Review episode of This Week in NET, host João Tomé is joined by David Belson to break down the Cloudflare Radar 2025 Year in Review. Together, they explore what Cloudflare’s global network reveals about how the Internet evolved over the past year — from the rapid rise of AI crawlers and agent traffic, to record-breaking DDoS attacks, the spread of post-quantum encryption, and the growing impact of government-directed shutdowns and outages.

View Video

Cloudflare

Read more about AI, DDoS, and the Internet in 2025 | Cloudflare Radar Year in Review

HTTP Request Smuggling Attack Explained with Real Examples

Dec 19, 2025 By VISTA InfoSec In VISTA InfoSec

***********************************************************************************

View Video

VISTA InfoSec

Read more about HTTP Request Smuggling Attack Explained with Real Examples

81% of Small Businesses Sustained a Cyber Incident Over the Past Year

Dec 19, 2025 By KnowBe4 Team In KnowBe4

Eighty-one percent of small businesses suffered a security or data breach over the past year, and 38% of these businesses were forced to raise their prices as a result, a report from the Identity Theft Resource Center (ITRC) has found. The report notes that external hackers have overtaken malicious insiders as the most common root cause of these incidents. This trend is partially driven by AI-assisted social engineering attacks, which were cited as a root cause by more than 41% of victims.

Read Post

KnowBe4

Read more about 81% of Small Businesses Sustained a Cyber Incident Over the Past Year

How PPC Campaign Vulnerabilities Can Lead to Ransomware Attacks

Dec 18, 2025 By SecuritySenses In SecuritySenses

In the US, search ad spend was expected to reach $124.59 billion in 2024. Those big pay-per-click (PPC) advertising budgets are attracting the attention of cybercriminals. Click fraud is a well-known hazard in marketing circles. However, a more insidious threat lurks in the background.

Read Post

SecuritySenses

Read more about How PPC Campaign Vulnerabilities Can Lead to Ransomware Attacks

The Future Of Cybersecurity: How AI And Machine Learning Are Transforming Penetration Testing

Dec 17, 2025 By SecuritySenses In SecuritySenses

In today's rapidly evolving digital landscape, the protection of sensitive information and critical infrastructure has become more paramount than ever. Traditional cybersecurity measures are increasingly being augmented with advanced technologies like Artificial Intelligence (AI) and Machine Learning (ML). These innovations are now transforming the realm of penetration testing, offering enhanced capabilities for identifying and mitigating vulnerabilities.

Read Post

SecuritySenses

Read more about The Future Of Cybersecurity: How AI And Machine Learning Are Transforming Penetration Testing

Link11 Identifies Five Cybersecurity Trends Set to Shape European Defense Strategies in 2026

Dec 16, 2025 By Link11

Link11 releases new insights outlining five key cybersecurity developments expected to influence how organizations across Europe prepare for and respond to threats in 2026. The findings are based on analysis of current threat activity, industry research, and insights from the Link11 European Cyber Report, alongside broader market indicators such as PwC's Global Digital Trust Insights 2026.

Read Post