New ‘Blacksite’ phishing kit bundles AiTM with scanner evasion

Laura FrenchJune 25, 2026

The kit includes Cloaked.gg, which displays benign sites to detected scanners and sandboxes.

RESOURCES

Identity
How to Build an AI Governance Framework for Identity
Identity
How to Evaluate and Select Identity and Access Management Tools
Identity
Identity-based attacks: how they work and how to defend against them
Identiverse
From M2M to A2A: Why your identity stack wasn’t built for what’s coming
SOC
Stay ahead in the SOC: Contain threats with confidence and control

PODCASTS

Cloud Security
Cloud Visibility, Fortibleed, hacking things the easy way – Sandy Bird – PSW #932
Leadership
The Strategic Human Firewall as AI Impacts Regulations, Cyber Pros, and Employees – Robert Siciliano – BSW #453
Vulnerability Management
Turing, BODS, Struwwelpeter, EO-14409, VBScript, Pixemsmash, Cloudflare, Aaran Leylan – SWN #592
Application security
How AI Is Reshaping Identity Security at the Infrastructure Layer – Ev Kontsevoy, Neha Duggal, Amit Masand – ASW #388
Vulnerability Management
Navigating Shadow AI in the Enterprise, Verizon’s SECOND 2026 report, and the news – Ankita Gupta – ESW #464

FEATURED

Perspectives Spotlight: Expert Insights

Perspectives Spotlight: Expert Insights

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

Perspectives

In Brief

More Resources

Investing and stock market concept gain and profits with faded candlestick charts.

Critical Infrastructure Security

Think tank warns US markets face hidden infrastructure risks

SC StaffJune 26, 2026

ICIT: Hidden infrastructure concentration threatens U.S. market resilience.

(Credit: Microsoft)

StealC infrastructure takedown assisted by AI analysis, C2 infiltration

Laura FrenchJune 25, 2026

Microsoft, Proofpoint, IBM, Europol and other partners took aim the StealC and Amadey “assembly line.”

(Credit: Ralf – stock.adobe.com)

Network Security

FortiBleed campaign steals 110M credentials from FortiGate targets

Laura FrenchJune 24, 2026

A tool called FortigateSniffer abuses a diagnostic utility to continuously monitor network traffic.

Vulnerability Management

FFmpeg vulnerability ‘PixelSmash’ could enable RCE via video file

Laura FrenchJune 23, 2026

An attacker can use a crafted file to trigger a heap buffer overflow and overwrite a function pointer.

Malware campaign uses VirusTotal manipulation, legitimate news sites to gain reputation

Laura FrenchJune 18, 2026

The clipboard hijacker campaign also uses “ghost networks” on social media to boost engagement.

Digital fingerprint scan composed of glowing blue circuit board pathways representing biometric security and identity verification in modern technological systems

Identity is the foundation of trust. That makes it everyone’s problem.

Heather FlanaganJune 18, 2026

Identiverse 2026 highlighted identity’s expanding role in AI, trust and governance.

(Adobe Stock)

Network Security

F5 releases out-of-band patches for two critical NGINX bugs

Steve ZurierJune 18, 2026

F5 issued urgent patches for two critical NGINX flaws that could enable DoS or code execution.

(Credit: monticellllo – stock.adobe.com)

Vulnerability Management

Max severity Joomla Content Editor extension flaw targeted in automated attacks

Laura FrenchJune 17, 2026

The flaw was added to CISA’s Known Exploited Vulnerabilities catalog with a three-day deadline.

Events