State CISOs losing confidence in ability to manage cyber risks
Deloitte-NASCIO study shows AI, budget pressures are forcing states to make tough decisions. Source link
Latest Cybersecurity News — Page 25
View all →
Critical GitHub RCE bug exposed millions of repositories
“On GitHub.com, this vulnerability allowed remote code execution on shared storage nodes. We confirmed that millions of public and private repositories belonging to other users…
Why a recent supply-chain attack singled out security firms Checkmarx and Bitwarden
“Current evidence indicates that this data originated from Checkmarx’s GitHub repositories, and that access to those repositories was facilitated through the initial supply chain attack…
Resilience report finds manufacturing leads global cyberattack targets, with ransomware dominating losses
Resilience published on Tuesday new data showing that manufacturing remains the most targeted industry for cyberattacks, driven by its critical role in global supply chains…
Europol IOCTA 2026 report flags shift to industrialised cybercrime powered by AI, ransomware and data theft
Europol has published its annual Internet Organised Crime Threat Assessment (IOCTA), outlining how the cybercrime landscape has evolved over the past 12 months, with a…
AI-powered honeypots: Turning the tables on malicious AI agents
Generative AI allows defenders to instantly create diverse honeypots, like Linux shells or Internet of Things (IoT) devices, using simple text prompts. This makes deploying complex, convincing deceptive…
3 Hot Takes and Tips for Cybersecurity Awareness Month 2023
Happy National Cybersecurity Awareness Month! In an era where it feels like threats are coming at us from all angles, it’s more crucial than ever…
CISA orders feds to patch Windows flaw exploited as zero-day
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has ordered federal agencies to secure their Windows systems against a vulnerability exploited in zero-day attacks. Tracked…
Minecraft Players Targeted by LofyStealer Using Node.js Loader and In-Memory Browser Injection
A dangerous infostealer malware called LofyStealer is actively targeting Minecraft players by disguising itself as a game cheat tool named “Slinky.” The malware runs a…
U.S. Charges Suspected Scattered Spider Member Over Cyber Intrusions
Federal authorities have charged 19-year-old Peter Stokes, known online as “Bouquet,” for his alleged role in the notorious cybercriminal group Scattered Spider. Law enforcement arrested…
US-Estonian Suspect Arrested Over Alleged Scattered Spider Cyberattacks
Peter Stokes, a 19-year-old dual citizen of the US and Estonia, was arrested earlier this month in Finland while attempting to board a flight to…
CISA, Microsoft warn of active exploitation of Windows Shell vulnerability (CVE-2026-32202)
Attackers are exploiting CVE-2026-32202, a zero-click Windows Shell spoofing vulnerability that causes victims’ systems to authenticate the attacker’s server, CISA and Microsoft have warned. About…