NEWS

A digital display shows the words "SYSTEM HACKED" in red against

Vulnerability Management

Alarms sound over attacks via Microsoft NTLM vulnerability

Shaun NicholsApril 18, 2025

Attacks targeting government and contractor companies in Poland and Romania via NTLM exploit.

Data Security

HHS fines Guam hospital over ransomware attack, HIPAA violations

Laura FrenchApril 18, 2025

A ransomware attack and incident involving former employees led to potential HIPAA violations.

Cyberpunk gloom a shattered padlock symbolizes data breach amidst scattered devices broken chain of trust visualized.

Ransomware

Legends International notifies customers, employees of data breach

Steve ZurierApril 18, 2025

Sports venue support company said sensitive information was stolen, but offers no further details.

Cloud Security

Secure legacy Oracle cloud credentials amid leak reports, CISA warns

Shaun NicholsApril 17, 2025

CISA guidance follows reports of Oracle Cloud breached, which the company denies.

Identity

Identity-based cyberattacks a third of intrusions, drop infostealers

Laura FrenchApril 17, 2025

IBM’s X-Force 2025 Threat Intelligence Index reveals an increase in misuse of valid credentials.

Glowing digital key with data patterns, representing cybersecurity, encryption, and secure information access

Cloud Security

Enterprise mobile apps riddled with sloppy data security

Shaun NicholsApril 16, 2025

Nearly 9 in 10 apps tested by Zimperium used encryption that did not adhere to best practices.

Ransomware

Interlock ransomware evolves tactics with ClickFix, infostealers

Laura FrenchApril 16, 2025

The lesserknown ransomware group uses fake updaters on compromised sites to lure victims.

Korea North flag - 3D realistic waving flag on matrix digital ba

DevOps

Developers in the crosshairs of notorious DPRK crew ‘Slow Pisces’

Shaun NicholsApril 16, 2025

North Korea-linked group targets developers with job offers that lead to poisoned coding challenges.

A speaker presents at the MITRE Corporation in Bedford, Mass. (Air Force)

Vulnerability Management

CISA funds CVE program in the 11th hour of contract with MITRE

Steve ZurierApril 16, 2025

Foundation to support CVE Program formally announced amid news that program was saved.

AI/ML

Malicious bots now make up more than a third of web traffic

Laura FrenchApril 15, 2025

About 44% of advanced bot traffic targets APIs, according to the Imperva 2025 Bad Bot Report.

NEWS

Alarms sound over attacks via Microsoft NTLM vulnerability

HHS fines Guam hospital over ransomware attack, HIPAA violations

Legends International notifies customers, employees of data breach

Secure legacy Oracle cloud credentials amid leak reports, CISA warns

Identity-based cyberattacks a third of intrusions, drop infostealers

Enterprise mobile apps riddled with sloppy data security

Interlock ransomware evolves tactics with ClickFix, infostealers

Developers in the crosshairs of notorious DPRK crew ‘Slow Pisces’

CISA funds CVE program in the 11th hour of contract with MITRE

Malicious bots now make up more than a third of web traffic

Upcoming Webcasts

File Security Best Practices in Banking

Financial services organizations face relentless threats, strict compliance demands, and complex application security risks. Falling behind isn’t an option.

AI at RSAC: The Innovations That Will Shape Cybersecurity’s Future

Threat Intelligence Unleashed: Staying Ahead of Evolving Cyber Threats

Mainframe security: Identifying threats, vulnerabilities, and risk mitigation strategies

Perspectives

Q2 2025 CISO priorities: Resilience, intelligence & impact take center stage

Think of MITRE’s CVE program as critical infrastructure

Why MITRE’s CVE funding matters more than ever

Cybersecurity News Articles | SC Media

NEWS

Alarms sound over attacks via Microsoft NTLM vulnerability

HHS fines Guam hospital over ransomware attack, HIPAA violations

Legends International notifies customers, employees of data breach

Secure legacy Oracle cloud credentials amid leak reports, CISA warns

Identity-based cyberattacks a third of intrusions, drop infostealers

Enterprise mobile apps riddled with sloppy data security

Interlock ransomware evolves tactics with ClickFix, infostealers

Developers in the crosshairs of notorious DPRK crew ‘Slow Pisces’

CISA funds CVE program in the 11th hour of contract with MITRE

Malicious bots now make up more than a third of web traffic

Upcoming Webcasts

File Security Best Practices in Banking

Financial services organizations face relentless threats, strict compliance demands, and complex application security risks. Falling behind isn’t an option.

AI at RSAC: The Innovations That Will Shape Cybersecurity’s Future

Threat Intelligence Unleashed: Staying Ahead of Evolving Cyber Threats

Mainframe security: Identifying threats, vulnerabilities, and risk mitigation strategies

Perspectives

Q2 2025 CISO priorities: Resilience, intelligence & impact take center stage

Think of MITRE’s CVE program as critical infrastructure

Why MITRE’s CVE funding matters more than ever