(Credit: sdx15 – stock.adobe.com)

(Credit: sdx15 – stock.adobe.com)

How OpenClaw could be hijacked with a simple website visit

Laura FrenchFebruary 27, 2026

Patching is required to fix a vulnerability that enables any website to brute force OpenClaw’s gateway password.

RESOURCES

Hardware
Mainframe security in a changing regulatory landscape: Aligning with NYDFS, DORA, and beyond
Firewalls, Routers
Thwarting today’s threats with next-generation security technology
Threat Hunting
Defusing the danger of North Korean IT workers
MDR
How to transform your SOC through XDR and MDR
Government security
Trust and data integrity: Cornerstones of AI for the public sector

PODCASTS

Vulnerability Management
Brainstorm, SonicWall, Junos, Glienicke Brücke, Burger King, Claude, Josh Marpet… – SWN #559
IoT
AI Is Taking Over Cybersecurity – PSW #915
Leadership
Security as a Business Enabler by Re-envisioning Risk and Leading through Uncertainty – Elyse Gunn – BSW #436
Vulnerability Management
Infinite AI Monkeys, Ploutus, Serv-U, Fortinet, Cyberwar, COBOL, NIST, Aaran Leyland – SWN #558
Privacy
Helping Users with Practical Advice to Protect their Digital Devices – Runa Sandvik – ASW #371

FEATURED

Perspectives Spotlight: Expert Insights

Perspectives Spotlight: Expert Insights

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

Perspectives

In Brief

More Resources

DoH DNS over HTTPS Written on Green Key of Metallic Keyboard. Finger pressing key.

Network Security

UAT-10027 targets US education, healthcare sectors via DOH technique

Steve ZurierFebruary 27, 2026

Once the threat actor establishes persistence, it can return and expand access.

All-in-one RAT combines credential theft, ransomware, DDoS and more

Laura FrenchFebruary 27, 2026

Steaelite allows cybercriminals to control victims’ machines through a single browser panel.

Secure By Design Pledge

Threat Management

Five Eyes warn teams to patch Cisco Catalyst SD-WAN controllers

Steve ZurierFebruary 26, 2026

By exploiting one Cisco SD-WAN controller, attackers can push policy changes to every corner of the enterprise.

Application security

Open-source vulnerabilities per codebase surge by 107%

Laura FrenchFebruary 26, 2026

The Black Duck 2026 OSSRA report explores AI as one of several factors in the historic increase.

China map outline, flag colors red, yellow glowing. Futuristic circuit board digital technology backdrop. High-tech data streams, innovation, modern design, connectivity global network.

Application security

Google disrupts decade-long China-linked UNC2814 espionage campaign

Steve ZurierFebruary 25, 2026

GTIG points out that this campaign had no overlaps with other PRC activities, such as Salt Typhoon.

Threat Management

CrowdStrike: Average cyberattack breakout time now under 30 minutes

Laura FrenchFebruary 25, 2026

Attackers gained speed as AI-enabled attacks and zero-day exploitation significantly increased.

Korea North flag - 3D realistic waving flag on matrix digital ba

Threat Management

North Korea’s Lazarus Group targets US, Middle East healthcare sectors

Steve ZurierFebruary 24, 2026

Threat actor focuses on identity-based attacks followed by a ransomware drop.

Application security

SANDWORM_MODE: Shai-Hulud with an AI twist

Laura FrenchFebruary 24, 2026

A new npm supply chain attack injects a malicious MCP server and targets LLM API keys.

EVENTS