Threat management

Russian hack attack concept, on the computer keyboard. 3D rendering

Russian hackers using sophisticated ‘Authentic Antics’ malware, UK says

Shaun NicholsJuly 19, 2025

Infostealer targets Microsoft accounts and looks to hide its activity amidst legitimate Windows system processes.

Today's Top Threat Management Headlines

Threat Management: Explained and Explored

Cloud Security
Why MSPs are the new favorite target of cybercriminals
Threat Management
Don’t let security debt play you: How to spot, prioritize, and eliminate silent cyber liabilities
Threat Management
How 75 CISOs are fighting back against security debt
Threat Management
Don’t let security debt play you: Four moves to take back control
Threat Intelligence
Breaking the chain: How to disrupt cybercrime’s use of stolen data
Threat Intelligence
Bridging the gap: Turning threat intelligence into operational security outcomes
AI/ML
AI’s brightest promise may be its biggest risk
MDR
Orchestrated autonomy: Building AI-driven resilience in MDR operations
Firewalls, Routers
Rethinking Regex: Smarter detection for a modern threat landscape
MDR
The hybrid defense model: How AI agents and human analysts are transforming MDR

Threat Management News

Phishing attack abuses QR codes to bypass FIDO keys

A man-in-the-middle attack relays a cross-device sign-in mechanism via a fake login site.

Microsoft Teams phishing spreads updated Matanbuchus malware loader

Matanbuchus 3.0 adds greater stealth and execution capabilities, and could lead to ransomware.

Network Security

China-linked Salt Typhoon infiltrated state National Guard network

Security officials touted victory over a second China-linked group on critical infrastructure networks.

(Credit: Araki Illustrations – stock.adobe.com)

67 malicious npm packages, novel loader spread North Korean malware

Packages that load BeaverTail malware were downloaded more than 17,000 times.

(Credit: Bilal Ulker – stock.adobe.com)

WordPress plugin Gravity Forms targeted in supply chain attack

Certain versions of the legitimate plugin contained malware for a brief time period.

Fake Visual Studio Code extension for Cursor led to $500K theft

The spoofed “Solidity” extension was installed from the Open VSX registry in Cursor.

China Bans Cyber Attacks: Examining Internet Security with Chinese Flag and Binary Data Through a Magnifying Glass Concept

Network Security

China-based hacker to face charges in US after arrest in Italy

Man believed to be a member of group that stole research and intellectual property from the U.S.

Vulnerability Management

AI tool predicts 17% increase in CVE disclosures in 2025

CVEForecast leverages historical CVE data to train predictive machine learning models.

NordDragonScan infostealer targets Windows with LOTL methods

The campaign distracts victims from its malicious nature using benign decoy documents.

DragonForce ransomware variant tied to emerging DEVMAN threat actor

The ransomware sample contained “oddities” including encryption of its own ransom note.

Fast Five

Selected by the SC Media Editorial team every Tuesday.

Sign up now for the top five issues cybersecurity pros need to know this week.

Threat Management Events