WantToCry ransomware evades detection through SMB abuse, remote encryption

Laura FrenchMay 20, 2026

More than 1.5 million exposed SMB ports may be susceptible to brute force attacks.

RESOURCES

Application security
APIs under pressure: How AI is rewriting the rules of enterprise security
SASE
Next-generation enterprise defense: Managing risk in the age of agentic AI
Managed Security Services
The CISO shortage: Finding leadership without a leader
Exposure management
Fighting fire with fire: Defending against Mythos-powered cyberattacks
SOC
The human factor: Why AI-powered SOCs still need people in charge

PODCASTS

Leadership
Shift to Prevention and Enforcement as We Repeat Security Mistakes With AI – Rob Allen – BSW #448
Vulnerability Management
My Mother the Car, AI Slop, Nginx, Polyscope, Drupal, , GitHub, Aaran Leyland… – SWN #582
Application security
The State of AI & AppSec – Keith Hoodlet – ASW #383
Data Security
AI Has a data problem, cascading breaches, and the weekly news – Dimitri Sirota – ESW #459
Vulnerability Management
Cisco, Canvas, Microsoft, Exchange 0-Days, NPM Backdoors, GPT-5.5 and more… – SWN #581

FEATURED

Perspectives Spotlight: Expert Insights

Perspectives Spotlight: Expert Insights

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

Perspectives

In Brief

More Resources

(Credit: Araki Illustrations – stock.adobe.com)

New Mini Shai-Hulud attack targets npm ecosystem

Steve ZurierMay 20, 2026

Mini Shai-Hulud campaign hits 323 npm packages, GitHub Actions and VS Code tools.

Threat Management

Verizon DBIR 2026: Vulnerability exploits top initial access as patching coverage falls

Laura FrenchMay 20, 2026

The report also highlighted ransomware trends and the evolving role of AI in breaches.

Vulnerability Management

Universal Robots patches critical 9.8 flaw in ‘cobots’ OS

Steve ZurierMay 19, 2026

Critical flaw in Universal Robots cobots could let attackers hijack production systems remotely.

Iran suspected in breaching automatic tank gauges at US gas stations

Laura FrenchMay 19, 2026

The automatic tank gauge systems were reportedly exposed online without passwords.

A hand holds a tablet displaying digital icons and connections against a night cityscape. This image represents technology, innovation, and modern communication concepts.

Vulnerability Management

Critical bug in F5 NGINX actively exploited

Steve ZurierMay 18, 2026

Experts raise concerns because NGINX runs in front of one-third of al website worldwide.

Cybersecurity and Infrastructure Security Agency CISA logotype displayed on smartphone

Critical Infrastructure Security

IBM executive floated for CISA director as concerns persist for agency

Steve ZurierMay 18, 2026

Cybersecurity leaders warn weakened CISA could hurt AI-era defense and threat response.

Critical Infrastructure Security

TeamPCP releases ‘vibe coded’ Shai-Hulud source code, issues challenge

Laura FrenchMay 15, 2026

The variant was used in recent attacks against TanStack and others – but it’s not the original, researchers say.

Vulnerability Management

10.0 Cisco Catalyst SD-WAN Controller bug added to CISA’s KEV list

Steve ZurierMay 15, 2026

Maximum-severity bug an authentication bypass flaw that’s considered the highest value target in an attacker’s playbook.

EVENTS