Why identity is the definitive cyber defense for federal agencies
Identity has become the new cybersecurity perimeter. As federal agencies rapidly adopt cloud services, AI-powered tools and hybrid work models, identity security is now central…
Category: Cyberscoop
Iranian hackers were more coordinated, aligned during Israel conflict than it seemed
The apparently disjointed response from Iranian hackers to the 12-day conflict with Israel in June actually demonstrated a significant degree of alignment and coordination, according…
Google addresses six vulnerabilities in August’s Android security update
Google addressed six vulnerabilities affecting Android devices in its August security update, marking a months-long lull in the number of software defects disclosed and patched…
AI company Perplexity is sneaking to get around blocks on crawlers, Cloudflare alleges
Artificial intelligence startup Perplexity is using stealthy techniques to get around network blocks against systematic browsing and scraping of web pages, Cloudflare said Monday in…
‘Highly evasive’ Vietnamese-speaking hackers stealing data from thousands of victims in 62+ nations
Vietnamese-speaking hackers are carrying out a “highly evasive, multi-stage operation” to steal information from thousands of victims in more than 62 countries, researchers said in…
Details emerge on BlackSuit ransomware takedown
BlackSuit’s technical infrastructure was seized in a globally coordinated takedown operation last month that authorities touted as a significant blow in the fight against cybercrime.…
CrowdStrike investigated 320 North Korean IT worker cases in the past year
North Korean operatives seeking and gaining technical jobs with foreign companies kept CrowdStrike busy, accounting for almost one incident response case or investigation per day…
Senate confirms national cyber director pick Sean Cairncross
The Senate voted to confirm Sean Cairncross as national cyber director Saturday, giving the Trump administration one of its top cyber officials after a more…
Cursor’s AI coding agent morphed ‘into local shell’ with one-line prompt attack
Threat researchers at AimLabs on Friday disclosed a data-poisoning attack affecting the AI-powered code editing software Cursor that would have given an attacker remote code…
Social engineering attacks surged this past year, Palo Alto Networks report finds
Social engineering — an expanding variety of methods that attackers use to trick professionals to gain access to their organizations’ core data and systems —…
China accuses US of exploiting Microsoft zero-day in cyberattack
U.S. intelligence agencies launched cyberattacks on two Chinese military enterprises dating back to 2022, in one case exploiting a Microsoft zero-day, China alleged Friday. The…
Feds still trying to crack Volt Typhoon hackers’ intentions, goals
Federal analysts are still sizing up what the Chinese hackers known as Volt Typhoon, who penetrated U.S. critical infrastructure to maintain access within those networks,…