Threat management

Mastering Threat Management: Your Resource for Detection, Intelligence, Response Strategy, and More.

Iranian threat group targets US aviation sector with AI-assisted ‘MiniFast’ backdoor

Laura FrenchMay 27, 2026

Career-themed phishing lures targeted employees of US domestic airlines during Operation Epic Fury.

Today's Top Threat Management Headlines

Threat Management News

Threat Management

Verizon DBIR 2026: Vulnerability exploits top initial access as patching coverage falls

Laura FrenchMay 20, 2026

The report also highlighted ransomware trends and the evolving role of AI in breaches.

Ransomware

Iranian threat group used Chaos ransomware as a ‘false flag,’ researchers say

Laura FrenchMay 7, 2026

The purported ransomware attack did not encrypt files and used infrastructure tied to MuddyWater.

Identity

CloudZ RAT plugin targets Windows Phone Link for possible OTP theft

Laura FrenchMay 6, 2026

The Pheno plugin monitors active Phone Link connections to eavesdrop on texts and notifications.

Encryption

Post Quantum Migration Struggles, AI Threats, and Modern Defenses – Bobby Ford, HD Moore, Eyal Benishti, Ramin Farassat, Daniel dos Santos – ESW #457

May 4, 2026

Interview with Daniel dos Santos: Post-Quantum Cryptography and the Risks No One Is Talking About Post-quantum cryptography (PQC) is quickly shifting from theory to inevitability. In this segment, Daniel dos Santos, VP of Research at Forescout, explains why PQC isn’t the most immediate threat today—but still demands early attention as standards so...

Threat Management

Microsoft: QR code, CAPTCHA-gated phishing more than double in Q1 2026

Laura FrenchMay 1, 2026

The company detected about 8.3 billion email-based phishing threats between January and March.

Ransomware

TeamPCP-linked VECT 2.0 ransomware unintentionally destroys files larger than 128 KB

Laura FrenchApril 29, 2026

Researchers revealed several “amateur” mistakes made in Windows, Linux and ESXi variants.

Threat Management

GlassWorm attackers activate new ‘sleeper’ extensions on Open VSX

Laura FrenchApril 28, 2026

A new cluster of 73 extensions impersonating legitimate projects has been tied to the GlassWorm campaign.

Health and Technology Stethoscope on Circuit Board blue

Threat Management

Medtronic says cyberattack did not disrupt its operations

Steve ZurierApril 27, 2026

Attack raised concerns because it was second one on a major medical device maker since the Iran war started.

Application security

‘AiFrame’ browser attacks continue with fake authenticator, converter extensions

Laura FrenchApril 24, 2026

The malicious extensions inject iframes to display phishing content and extract other data.

Ransomware

Trigona ransomware attackers use novel tool for data exfiltration

Laura FrenchApril 24, 2026

The uploader_client.exe command-line utility allows for rapid and granular data theft.

Fast Five

Selected by the SC Media Editorial team every Tuesday.

Sign up now for the top five issues cybersecurity pros need to know this week.

Threat management

Iranian threat group targets US aviation sector with AI-assisted ‘MiniFast’ backdoor

Today's Top Threat Management Headlines

AI helps uncover critical 4-year-old Zcash vulnerability

AI agents discover numerous vulnerabilities in FFmpeg and Chrome

New Pink cybercrime group targets corporate data using vishing and cloud theft

Hackers exploit critical Everest Forms Pro vulnerability for website control

Threat Management: Explained and Explored

How Agentic AI made org charts obsolete

What zero-trust looks like for AI agents

Fighting fire with fire: Defending against Mythos-powered cyberattacks

5 ways to defend against vibe hacking

Why we need a ‘zero-trust for code’ behavioral approach to secure software

The human factor: Why AI-powered SOCs still need people in charge

Beyond the inbox: Why your domain and social media are the next front lines

How to make CTEM operational versus aspirational

AI as the defender: Reinventing proactive cybersecurity through intelligent automation

When detection isn’t enough: The limits of EDR

Threat Management News

Verizon DBIR 2026: Vulnerability exploits top initial access as patching coverage falls

Iranian threat group used Chaos ransomware as a ‘false flag,’ researchers say

CloudZ RAT plugin targets Windows Phone Link for possible OTP theft

Post Quantum Migration Struggles, AI Threats, and Modern Defenses – Bobby Ford, HD Moore, Eyal Benishti, Ramin Farassat, Daniel dos Santos – ESW #457

Microsoft: QR code, CAPTCHA-gated phishing more than double in Q1 2026

TeamPCP-linked VECT 2.0 ransomware unintentionally destroys files larger than 128 KB

GlassWorm attackers activate new ‘sleeper’ extensions on Open VSX

Medtronic says cyberattack did not disrupt its operations

‘AiFrame’ browser attacks continue with fake authenticator, converter extensions

Trigona ransomware attackers use novel tool for data exfiltration

Fast Five

Selected by the SC Media Editorial team every Tuesday.