BotNet News

The world’s cybersecurity risks are more complex than ever. A single attack can disrupt key services like power grids, healthcare systems, or financial networks, with potentially devastating consequences for individuals and businesses. And due to the increasing interconnectedness of our digital systems, those consequences can have a ripple effect across society.

That’s why we’re committed to keeping you informed about the threats, breaches and advancements that are transforming the landscape of cyber risk. With this news in hand, you’ll have the insights you need to build more resilient security strategies.

In this week’s Cyberthreat News, US Customs and Border Protection swabbes children for DNA samples — then uploads it to an FBI-run database that can track them in the future, Signal takes a swipe at Microsoft Recall, and more.

Stealer malware no longer steals just passwords; now it steals live sessions, and attackers are moving faster than ever. Flare’s research, The Account & Session Takeover Economy 2025, reveals how attackers exploit infected employee endpoints to hijack enterprise sessions — often in less than 24 hours.

State-sponsored threat actors are increasingly targeting critical infrastructure networks, and the damage they can inflict is immense. The Czech government recently formally accused China of breaching one of its unclassified ministries, with the intrusion being traced to the APT31 threat actor (which overlaps with other threat clusters like Altaire, Bronze Vinewood, Judgement Panda, PerplexedGoblin, RedBravo and Violet Typhoon). Zero-day exploits are a prized target for cyber criminals, who can then sell them for large sums on the dark web. And social engineering tactics, such as phishing, can wreak havoc by tricking people into disclosing sensitive information or taking actions that compromise security.