Fallout from latest Ivanti zero-days spreads to nearly 100 victims
Ivanti customers, including major government agencies, face mounting pressure as attackers expand their scope of targets to exploit a pair of vulnerabilities the vendor disclosed…
Category: Cyberscoop
AI threat modeling must include supply chains, agents, and human risk
The Great Wall of China was built to slow northern raiders and prevent steppe armies from riding straight into the empire’s heart. Yet in 1644,…
DHS privacy probe will focus on biometric tracking by ICE, OBIM
The Department of Homeland Security’s watchdog office has launched an audit of the agency’s privacy practices amid allegations that DHS and its components have used…
CISA tells agencies to stop using unsupported edge devices
A Cybersecurity and Infrastructure Security Agency order published Thursday directs federal agencies to stop using “edge devices” like firewalls and routers that their manufacturers no…
Alleged 764 member arrested, charged with CSAM possession in New York
A 23-year-old New York man allegedly affiliated with 764 was arrested and charged with receiving child sexual abuse material. Aaron Corey of Albany, N.Y., faces…
Why boards should be obsessed with their most ‘boring’ systems
Following a series of high-profile cyberattacks, boards of directors are now requiring their organizations to take greater responsibility for the risks posed by enterprise resource…
Cantwell claims telecoms blocked release of Salt Typhoon report
More than a year after national security officials revealed that Chinese hackers had systematically infiltrated U.S. telecommunications networks, the top Senate Democrat on the committee…
Ivanti’s EPMM is under active attack, thanks to two critical zero-days
Attackers are again focusing on a familiar target in the network edge space, actively exploiting two critical zero-day vulnerabilities in Ivanti software that allows administrators…
What’s next for DHS’s forthcoming replacement critical infrastructure protection panel, AI information sharing
A revised government-industry council devoted to critical infrastructure protection could be set up to have broader and more specific discussions on things like cybersecurity and…
National Cyber Director wants help to cut cybersecurity regulations and renew CISA
The Trump administration needs help from industry to reduce the cybersecurity regulatory burden and to back important cyber legislation on Capitol Hill, among other areas,…
As feds pull back, states look inward for election security support
It’s no secret that the Trump administration has radically altered the federal government’s relationship with state election officials since being sworn into power last year.…
China-based espionage group compromised Notepad++ for six months
A China-based threat group operating for almost two decades broke into the internal systems of Notepad++, an extremely popular open source-code editor, to spy on…