Threat IntelligenceOKX tool leveraged by Lazarus Group briefly taken downSC StaffMarch 18, 2025Implementing such a shutdown would allow several improvements that would curtail abuse of the tool.
Supply chainClickFix supply chain attack impacts over 100 car dealershipsSC StaffMarch 18, 2025Threat actors injected a fraudulent reCAPTCHA on the dealer webpages.
Supply chainThousands of GitHub repositories’ secrets exposed by supply chain compromiseSC StaffMarch 18, 2025More than 23,000 GitHub repositories had their secrets leaked.
Critical Infrastructure SecurityBipartisan Senate legislation bolsters water cybersecuritySC StaffMarch 17, 2025The legislation would broaden the Agriculture Department's Circuit Rider Program.
Data SecurityThousands impacted by data exfiltrating PyPI packagesSC StaffMarch 17, 2025More than a quarter of the bogus packages were purporting to be time-related utilities.
Critical Infrastructure SecurityState-backed cyberespionage against European telcos escalatesSC StaffMarch 17, 2025France also noted having its telecommunications industry targeted for cyberespionage.
Critical Infrastructure SecurityMS-ISAC, EI-ISAC cuts threaten national security, officials saySC StaffMarch 14, 2025The Department of Homeland Security justified reduced spending by emphasizing MS-ISAC's redundancies.
Security Staff Acquisition & DevelopmentFederal agencies ordered to avoid cyber staff layoffsSC StaffMarch 14, 2025Orders to steer clear of firing cybersecurity personnel have been given by the Trump administration.
