NEWS

RSAC

Bruce Schneier tackles AI hype, NSA surveillance, and cyber ‘rage fatigue’

Tom Spring April 21, 2025

Bruce Schneier on security theater, AI snake oil, and the limits of cryptographic morality.

A digital display shows the words "SYSTEM HACKED" in red against

Vulnerability Management

Alarms sound over attacks via Microsoft NTLM vulnerability

Shaun NicholsApril 18, 2025

Attacks targeting government and contractor companies in Poland and Romania via NTLM exploit.

Data Security

HHS fines Guam hospital over ransomware attack, HIPAA violations

Laura FrenchApril 18, 2025

A ransomware attack and incident involving former employees led to potential HIPAA violations.

Cyberpunk gloom a shattered padlock symbolizes data breach amidst scattered devices broken chain of trust visualized.

Ransomware

Legends International notifies customers, employees of data breach

Steve ZurierApril 18, 2025

Sports venue support company said sensitive information was stolen, but offers no further details.

Cloud Security

Secure legacy Oracle cloud credentials amid leak reports, CISA warns

Shaun NicholsApril 17, 2025

CISA guidance follows reports of Oracle Cloud breached, which the company denies.

Identity

Identity-based cyberattacks a third of intrusions, drop infostealers

Laura FrenchApril 17, 2025

IBM’s X-Force 2025 Threat Intelligence Index reveals an increase in misuse of valid credentials.

Glowing digital key with data patterns, representing cybersecurity, encryption, and secure information access

Cloud Security

Enterprise mobile apps riddled with sloppy data security

Shaun NicholsApril 16, 2025

Nearly 9 in 10 apps tested by Zimperium used encryption that did not adhere to best practices.

Ransomware

Interlock ransomware evolves tactics with ClickFix, infostealers

Laura FrenchApril 16, 2025

The lesserknown ransomware group uses fake updaters on compromised sites to lure victims.

Korea North flag - 3D realistic waving flag on matrix digital ba

DevOps

Developers in the crosshairs of notorious DPRK crew ‘Slow Pisces’

Shaun NicholsApril 16, 2025

North Korea-linked group targets developers with job offers that lead to poisoned coding challenges.

A speaker presents at the MITRE Corporation in Bedford, Mass. (Air Force)

Vulnerability Management

CISA funds CVE program in the 11th hour of contract with MITRE

Steve ZurierApril 16, 2025

Foundation to support CVE Program formally announced amid news that program was saved.

NEWS

Bruce Schneier tackles AI hype, NSA surveillance, and cyber ‘rage fatigue’

Alarms sound over attacks via Microsoft NTLM vulnerability

HHS fines Guam hospital over ransomware attack, HIPAA violations

Legends International notifies customers, employees of data breach

Secure legacy Oracle cloud credentials amid leak reports, CISA warns

Identity-based cyberattacks a third of intrusions, drop infostealers

Enterprise mobile apps riddled with sloppy data security

Interlock ransomware evolves tactics with ClickFix, infostealers

Developers in the crosshairs of notorious DPRK crew ‘Slow Pisces’

CISA funds CVE program in the 11th hour of contract with MITRE

Upcoming Webcasts

File Security Best Practices in Banking

Financial services organizations face relentless threats, strict compliance demands, and complex application security risks. Falling behind isn’t an option.

AI at RSAC: The Innovations That Will Shape Cybersecurity’s Future

Threat Intelligence Unleashed: Staying Ahead of Evolving Cyber Threats

Mainframe security: Identifying threats, vulnerabilities, and risk mitigation strategies

Perspectives

5 ways corporate boards can support CISOs in 2025

Q2 2025 CISO priorities: Resilience, intelligence & impact take center stage

Think of MITRE’s CVE program as critical infrastructure

Cybersecurity News Articles | SC Media

NEWS

Bruce Schneier tackles AI hype, NSA surveillance, and cyber ‘rage fatigue’

Alarms sound over attacks via Microsoft NTLM vulnerability

HHS fines Guam hospital over ransomware attack, HIPAA violations

Legends International notifies customers, employees of data breach

Secure legacy Oracle cloud credentials amid leak reports, CISA warns

Identity-based cyberattacks a third of intrusions, drop infostealers

Enterprise mobile apps riddled with sloppy data security

Interlock ransomware evolves tactics with ClickFix, infostealers

Developers in the crosshairs of notorious DPRK crew ‘Slow Pisces’

CISA funds CVE program in the 11th hour of contract with MITRE

Upcoming Webcasts

File Security Best Practices in Banking

Financial services organizations face relentless threats, strict compliance demands, and complex application security risks. Falling behind isn’t an option.

AI at RSAC: The Innovations That Will Shape Cybersecurity’s Future

Threat Intelligence Unleashed: Staying Ahead of Evolving Cyber Threats

Mainframe security: Identifying threats, vulnerabilities, and risk mitigation strategies

Perspectives

5 ways corporate boards can support CISOs in 2025

Q2 2025 CISO priorities: Resilience, intelligence & impact take center stage

Think of MITRE’s CVE program as critical infrastructure