Critical Infrastructure SecurityMS-ISAC, EI-ISAC cuts threaten national security, officials saySC StaffMarch 14, 2025The Department of Homeland Security justified reduced spending by emphasizing MS-ISAC's redundancies.
Security Staff Acquisition & DevelopmentFederal agencies ordered to avoid cyber staff layoffsSC StaffMarch 14, 2025Orders to steer clear of firing cybersecurity personnel have been given by the Trump administration.
Threat IntelligenceNew FCC council seeks to combat US telco-targeted cyber threatsSC StaffMarch 14, 2025Such a new FCC unit also aims to address security weaknesses leveraged by nation-states.
Vulnerability ManagementActively exploited Juniper router vulnerability addressedSC StaffMarch 14, 2025CVE-2025-21590 was disclosed by Google's Mandiant team to have been exploited by Chinese cyberespionage hacking group UNC3886.
IoTAttacks exploiting Edimax IP camera zero-day ongoing for nearly a yearSC StaffMarch 14, 2025Intrusions by the Mirai-based botnets involved the targeting of devices with default credentials.
RansomwareReport: Ransomware attacks soared to new heights last monthSC StaffMarch 14, 2025More than a third of the intrusions last month were attributed to the Clop ransomware operation.
Vulnerability ManagementAccount hijacking possible with ruby-saml library bugsSC StaffMarch 14, 2025Both vulnerabilities originate from the differences in XML parsing between REXML and Nokogiri.
MalwareNewly emergent OBSCURE#BAT malware campaign uncoveredSC StaffMarch 14, 2025Attackers behind the OBSCURE#BAT use fake CAPTCHAs in typosquatted domains and spoofed software.
Threat IntelligenceUkraine loses Signal support for anti-Russian cyber threat efforts, says officialSC StaffMarch 13, 2025Signal was claimed to have been ignoring the country's requests for cooperation.
Threat IntelligenceIndia apprehends Garantex admin at US behestSC StaffMarch 13, 2025Garantex had its websites sequestered as part of a joint U.S. and European law enforcement clampdown.