Threat management

Mastering Threat Management: Your Resource for Detection, Intelligence, Response Strategy, and More.

Smart home router glowing with firewall hologram

FCC bans foreign-made routers in bid to secure supply chain

Steve ZurierMarch 25, 2026

Security pros OK with FCC’s move to ban foreign routers, but say the real risk lies with unmanaged identities.

Today's Top Threat Management Headlines

Threat Management: Explained and Explored

RSAC
Fortra’s John Wilson on the prolific BEC group Scripted Sparrow
Governance, Risk and Compliance
Building institutional capacity: Why AI-augmented security is the new standard
AI/ML
AI is now the decisive factor in cyber conflict
Identity
Thwarting AI-powered attacks: How identity management can help
AI benefits/risks
Anthropic’s 500 zero-days tell us something CISOs aren’t ready to hear
Threat Management
How to build a breach-ready security posture without the enterprise price tag
Application security
Why our AI world demands a remediation-first approach to exposure management
Security Operations
Stop alert fatigue: Fix security noise before breaches
Security Strategy, Plan, Budget
Why now’s the time to prepare for the quantum computing era
Security Strategy, Plan, Budget
Disinformation: What boosts it – and how teams can respond

Threat Management News

From left to right: Ed Skoudis, Joshua Wright, Robert M. Lee, Heather Barnhart and Rob T. Lee.

RSAC 2026: 5 ways AI is our worst enemy, and 3 ways to make it SOC’s best friend

Laura FrenchMarch 25, 2026

Keynotes from Splunk and the SANS Institute reinforce the double-edged nature of AI.

Technology background with national flag of Iran. 3D rendering

Threat Management

Iran-backed Handala uses Telegram for C2 to push malware, FBI says

Steve ZurierMarch 23, 2026

FBI warns Iran-linked hackers use Telegram as stealthy malware C2, evading detection.

Vulnerability Management

Critical Langflow RCE vulnerability exploited within 20 hours

Laura FrenchMarch 20, 2026

CVE-2026-33017 could enable an unauthenticated attacker to execute arbitrary Python code on the server.

(Credit: Kateryna – stock.adobe.com)

Threat Management

Fake interactive Zoom call leads to malicious ScreenConnect download

Laura FrenchMarch 20, 2026

JavaScript is used to imitate a glitchy Zoom call, prompting the user to install an “update.”

Critical Infrastructure Security

Lack of CISA leadership amid DHS shutdown raises risks, cyber pros say

Steve ZurierMarch 19, 2026

CISA operates short-staffed without a director, raising concerns over cyber risk.

Beast Ransomware’s toolkit revealed by exposed directory

Laura FrenchMarch 19, 2026

Researchers tracked the group’s tooling from reconnaissance to encryption.

Close-up of Apple MacOS Dock with Finder icon selected and mouse cursor hovering

Application security

Apple rolls out ‘Background Security Improvements’ for WebKit browser engine bug

Steve ZurierMarch 18, 2026

Apple shifts to more continuous security patches versus waiting for the next big OS release.

stethoscope on technology background

Threat Management

Stryker cyberattack contained, but experts warn repair costs could soar

Steve ZurierMarch 17, 2026

Security pros call “containment” victory claim hollow as recovery could cost multi-millions.

Threat Management

Phishing emails target AI defenses with unique obfuscation

Laura FrenchMarch 17, 2026

Benign content hidden at the bottom of an email is designed to “outweigh” malicious content.

System compromised alert digital warning error message, cyber threat red glow, data breach alert.

Threat Management

No restoration timeline for medical device maker Stryker after cyberattack

Steve ZurierMarch 13, 2026

Company also tells customers the attack by Iran-linked Handala disrupted supply chain.

Fast Five

Selected by the SC Media Editorial team every Tuesday.

Sign up now for the top five issues cybersecurity pros need to know this week.