Cybercriminals Use Fake AI Guides and Dev Tools to Spread AsyncRAT Malware
(Alessandro Mascellino – Infosecurity Magazine) Threat actors have been disguising malware as AI study guides and developer resources to trick professionals into running a multi-stage attack that ends in the AsyncRAT trojan. New analysis from Fortinet’s FortiGuard Labs described booby-trapped files with names like “AI-Ready PostgreSQL 18” and a fake guide to agentic coding with Claude Code, all aimed at people hunting for AI learning material. The campaign hits Windows users at any organization, the researchers said, and runs entirely through trusted system tools to stay hidden. – Cybercriminals Use Fake AI Guides and Dev Tools to Spread AsyncRAT Mal – Infosecurity Magazine
Interpol Dismantles SniperDz Phishing-as-a-Service Platform
(Kevin Poireault – Infosecurity Magazine) Cybersecurity firm Group-IB has revealed that a recent Interpol-led cybercrime law enforcement operation has led to the takedown of an established phishing-as-a-service (PhaaS) platform and the arrest of its main operator developer. The crackdown, dubbed Operation Ramz, ran from October 2025 to February 2026 across 13 countries in the Middle East and North Africa (MENA) region. The results, announced by Interpol at the end of May, included 201 arrests, 53 servers seized and 382 suspects and 3867 victims identified. A further set of almost 8000 pieces of data and intelligence was also disseminated among participating countries to initiate and support future investigations. On June 11, Group-IB, one Interpol’s main partners for this effort, revealed that the operation led to the takedown of SniperDz and the arrest of its primary developer in Algeria. – Interpol Dismantles SniperDz Phishing-as-a-Service Platform – Infosecurity Magazine
Most Cybersecurity Teams Struggle to Find Time for Training on New Cyber Threats
(Danny Palmer – Infosecurity Magazine) Many cybersecurity teams are struggling to keep up with emerging technologies and the challenges around securing their organizations against them because they don’t have the time to undertake the necessary training, a new study has warned. The research, published by ISC2, asked nearly 1000 cybersecurity leaders from large enterprises around the world how their organization approach cybersecurity team training. Nearly three-quarters of respondents (73%) said their organization’s security training budget has increased over the past year, as businesses react to the emergence of new technologies and cybersecurity challenges that accompany them. One of the most encountered new challenges is the rise of AI: almost half of respondents (47%) said that AI is the most pressing skill their organization is addressing or planning to address through training. – Most Security Teams Struggle to Find Time for Training on New Threats – Infosecurity Magazine
Extortion-Only Attacks Increase, With Data Theft Dominating Ransomware Claims
(Phil Muncaster – Infosecurity Magazine) Insurance experts have urged organizations to reduce their exposure to extortion-only attacks and better manage the consequences when they occur, after revealing a surge in this category of threats. Insurer Resilience said in a new report that 65% of extortion-related claims it handled in the second half of 2025 did not involve data encryption. That’s up from 49% in the first half of the year. By the end of 2025, only 13% of attacks relied on encryption alone, while data theft – on its own or combined with encryption – accounted for 87% of ransomware claims, it noted. The report also revealed that 30-40% of policyholders that paid to suppress data being leaked, sold or shared failed in that goal. – Extortion-Only Attacks Increase, With Data Theft Dominating Ransomware – Infosecurity Magazine
New “Agentjacking” Attacks Could Hijack AI Coding Agents
(Phil Muncaster – Infosecurity Magazine) Researchers have revealed what they claim to be a “new class of attack” which tricks AI coding agents into executing arbitrary code on developer machines. Tenet Security, which specializes in the security of autonomous AI agent, said that “agentjacking” attacks exploit an architectural flaw in the Sentry app performance monitoring and error tracking tool, which is popular with developers. By using the techniques described in the Tenet report, an attacker would inject malicious commands into Sentry error events which are impossible to distinguish from the tool’s own remediation guidance. AI coding agents would then read and execute these instructions, in a way similar to an indirect prompt injection attack. – New “Agentjacking” Attacks Could Hijack AI Coding Agents – Infosecurity Magazine
JDY Botnet Evolves After KV Takedown, Targets Military Networks
(Pierluigi Paganini – Security Affairs) Lumen’s Black Lotus Labs reported the resurgence of the JDY botnet, a covert reconnaissance network tied to Chinese state-sponsored hacking groups including Volt Typhoon. The network was first spotted in late 2023 as a cluster inside KV-botnet. The U.S. government took down the KV cluster in early 2024. JDY kept running. “The JDY botnet comprises over 1,500 small office and home office (SOHO) and Internet of Things (IoT) devices. It operates as a centrally controlled, high-performance scanner used to discover, fingerprint and continuously map exposed services at scale.” reads the report published by Lumen. “The IoT-based malware affects a wider array of devices and feeds structured reconnaissance data into a larger scanning ecosystem for subsequent triage, target identification and exploitation.”. That’s more than double the roughly 650 bots recorded at JDY’s lowest point in January 2024. The device list has diversified too: where the old botnet ran almost exclusively on Cisco RV320 and RV325 routers, today’s JDY pulls in hardware from Araknis, Mimosa Networks, Ubiquiti, Draytek, Hikvision, and Linksys. More manufacturers, more architectures, more coverage. – JDY Botnet Evolves After KV Takedown, Targets Military Networks
New NIST study reveals inherent weaknesses in AI defences
(DigWatch) A new study by a researcher at the US National Institute of Standards and Technology suggests that fixed AI guardrails cannot provide complete protection against adaptive adversarial prompts. The paper, published in IEEE Security & Privacy by NIST senior scientist Apostol Vassilev, uses logic linked to Kurt Gödel’s incompleteness theorems to argue that a finite set of AI safety rules cannot be universally robust against every possible prompt-based attack. – NIST Mathematical Proof Supports Transition to a Continuous-Monitor-and-Update Security Model for AI Systems | NIST
MIT study warns of AI reliance in news verification
(DigWatch) A new MIT Media Lab study suggests that using AI to verify news can improve short-term accuracy but may not help users build lasting skills to detect misinformation. The month-long study followed 67 participants as they assessed news headlines and image pairs. Participants were 21% more accurate at detecting false information when assisted by an AI chatbot during a session. However, their unassisted performance on new news items declined by 15 percentage points by the fourth week compared with before the study began. – MIT study warns of AI reliance in news verification | Digital Watch Observatory
