This week’s developments reinforce the need for proactive risk management, robust incident response, and the continuous alignment of cybersecurity programs to emerging risks and regulatory requirements.

Explore the latest cyber threats and trends, from FCC telecom rule changes and AI-driven insurance risks to ransomware crew hacks and critical infrastructure challenges in the JANUS Associates Cyber Threat Report.

The cybersecurity landscape is evolving rapidly, with AI-driven social engineering, DDoS automation, and advanced threat collaboration dominating the headlines. JANUS Associates analyzes the top cybersecurity incidents and trends shaping Q4 2025; drawing from CISA, FBI joint advisories, and trusted cybersecurity intelligence agencies and other trusted public sources.

Critical Nvidia Security Flaw Exposes Cloud AI Systems to Host Takeover

A stark warning from researchers at Wiz after discovering a TOCTOU (Time-of-check Time-of-Use) vulnerability that exposes enterprise cloud environments to code execution, information disclosure and data tampering attacks. Read More

National Public Data Published Its Own Passwords
New details are emerging about a breach at National Public Data (NPD), a consumer data broker that recently spilled hundreds of millions of Americans’ Social Security Numbers, addresses, and phone numbers online. KrebsOnSecurity has learned that another NPD data broker which shares access to the same consumer records inadvertently published the passwords to its back-end database in a file that was freely available from its homepage until today. Read More

Tech contractor exposes data of 4.6 million US voters
The databases, which lacked any password protection, included highly sensitive personal information such as full names, addresses, dates of birth, Social Security numbers, and driver’s license numbers. Read More