North Korea digital technology flag cyber background. North Korean banner cyberattack and espionage concept illustration.

(Adobe Stock)

North Korea launches hacking hub focused on artificial intelligence

Shaun NicholsMarch 21, 2025

"Research Center 227" reportedly focused on using AI for cyberattacks.

RESOURCES

Identity
Securing the identity attack surface: Strategies for closing identity security gaps
Vulnerability Management
Automating vulnerability management: The key to overcoming persistent challenges
SOAR
The evolution of SOAR: From legacy to next-gen platforms
Identity
Securing AI: How identity security is key to trusting AI in the enterprise
Encryption
Hidden flaws exist in millions of RSA digital certificates

PODCASTS

Vulnerability Management
Orange Drop Caps, apps, Veeam, jobs, Heathrow, vpentest, Aaran Leyland, and More… – SWN #461
Vulnerability Management
Its Not Really A 0-Day – PSW #866
Leadership
Smart Cybersecurity Spending, as CISOs Architect Resilience and Grade Themselves – BSW #387
Breach
Breaking Down Human-Element Breaches To Improve Cybersecurity – Jinan Budge – BSW #387
Vulnerability Management
Angry Iguana, Squid Bot, Bruted, 0Auth, Dragon Medical, Clippy 2.0, CISA, Josh Marpet – SWN #460

FEATURED

Perspectives Spotlight: Expert Insights

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

Perspectives

In Brief

More Resources

Google Chrome application icon on Apple iPhone X screen close-up. Google Chrome app icon. Google Chrome application.

AI/ML

Popular AI tools tricked to create malware for Chrome browser

Steve ZurierMarch 21, 2025

Cato Networks researchers create jailbreak method where hacking is normal in an alternate reality.

iPhone 13 Pro with notification software update iOS 15.5 on the screen close up, new operating system 2022 on iPhone apple devices for download updates

Network Security

Rooted, jailbroken mobile devices pose security risk to organizations

Shaun NicholsMarch 20, 2025

One out of every 1,000 devices it encounters have either been rooted (Android) or jailbroken (iOS).

Businessman using a computer to backup storage data Internet technology concept for backup online documentation database and digital file storage system or software,file access, doc sharing.

Data Security

Veeam patches critical 9.9 flaw in backup and replication product

Steve ZurierMarch 20, 2025

Deserialization vulnerability that could let attackers run a remote code execution (RCE).

Distributed Workforce

Cybersecurity job market faces disruptions: Hiring declines in key roles amid automation and outsourcing

Bill BrennerMarch 20, 2025

The 2025 U.S. Cybersecurity Job Posting Data Report highlights significant shifts in cybersecurity hiring, with a rise in governance and compliance roles, a decline in traditional security engineering positions, and increasing demand for legal and policy-focused professionals in response to evolving regulatory and technological landscapes.

Patch/Configuration Management

Flaw in Windows shortcut abused by at least 11 threat groups

Shaun NicholsMarch 19, 2025

Attackers are making use of Windows shortcut (.lnk) files to dupe users into running malicious code on their systems.

Threat Intelligence

ClearFake exploits Web3 capabilities for malware campaign

Laura FrenchMarch 19, 2025

The threat actor retrieves resources and payloads from smart contracts on the Binance Smart Chain.

Close up of Google Cloud sign displayed in front of their headquarters in Silicon Valley; South San Francisco bay area. Credit: Adobe Stock

Cloud Security

Inside Google’s $32 billion Wiz acquisition: A VC’s perspective

Tom Spring March 19, 2025

An exclusive conversation with SC Media and cybersecurity venture capitalist Bob Ackerman explores the deal’s impact on hybrid cloud, AI, and the future of M&A.

Vulnerability Management

GitHub Action bug allows supply chain attack; added to CISA list

Steve ZurierMarch 19, 2025

Affected organizations running repos in GitHub should assume compromise and rotate secrets immediately.

Cybersecurity News, Awards, Webinars, eSummits, Research

North Korea launches hacking hub focused on artificial intelligence

RESOURCES

PODCASTS

FEATURED

Perspectives Spotlight: Expert Insights

Get daily email updates

Perspectives

5 ransomware threats facing the financial sector – and 5 ways to respond

We can – and must – do better recovering from ransomware attacks

Cybersecurity in shipping and logistics: Small budgets, big risk

How ‘Agentic AI’ will drive the future of malware

Why security teams need to get ready for ‘Q-Day’

In Brief

Updated CISA vulnerabilities catalog includes Edimax, NAKIVO, SAP NetWeaver bugs

Data breach refuted by Baidu after user info leak

GitHub Action supply chain attack less impactful than thought

Suspected Chinese-linked hackers set sights on Taiwan

Ukrainian defense sector hit with Dark Crystal RAT

More Resources

You need to prepare for post-quantum cryptography now. Here’s why

Legacy SOAR vs. next-gen SOAR: Understanding the differences

Enhancing cybersecurity: The role of automation in vulnerability management

Who’s using what: Results from the 2025 Okta Businesses at Work report

InFocus with Semperis’ Sean Deuby: The state of Active Directory

Popular AI tools tricked to create malware for Chrome browser

Rooted, jailbroken mobile devices pose security risk to organizations

Veeam patches critical 9.9 flaw in backup and replication product

Cybersecurity job market faces disruptions: Hiring declines in key roles amid automation and outsourcing

Flaw in Windows shortcut abused by at least 11 threat groups

ClearFake exploits Web3 capabilities for malware campaign

Inside Google’s $32 billion Wiz acquisition: A VC’s perspective

GitHub Action bug allows supply chain attack; added to CISA list

EVENTS

Mastering Attack Surface Management: Lessons from the Frontlines

Closing Security Gaps: Enhancing Credential Management in Critical Infrastructure

Cyber Insurance Essentials: Protecting Against the Financial Fallout of Attacks

Zero Trust in Action: Redefining Security for a Borderless World

Security Without Speed Bumps: Using WAF Simulator to Transform DevSecOps Workflows