CyberScoop | Breaking Cybersecurity News, Public Sector Threats

AI-powered health apps are flooding the market. But their data security policy is more of a pinky promise than a legal mandate. (Source: Getty Images)

Your AI doctor doesn’t have to follow the same privacy rules as your real one

AI apps are making their way into healthcare. It’s not clear that rigorous data security or privacy practices will be part of the package.

By Derek B. Johnson

Madhu Gottumukkala, acting director of the Cybersecurity and Infrastructure Security Agency, testifies during the DHS oversight hearing in the Cannon House office building on Jan. 21, 2026. (Photo by Heather Diehl/Getty Images)

Acting CISA chief says DHS funding lapse would limit, halt some agency work

Financial

By Tim Starks

A figure walking with a glowing trail of binary code emanating from a case, symbolizing stolen data. (Getty Images Plus)

0APT ransomware group rises swiftly with bluster, along with genuine threat of attack

Cybercrime

By Matt Kapko

Featured on CyberScoop

CISA to host industry feedback sessions on cyber incident reporting regulation

By Tim Starks
GOP Congress moves to shape election law in Trump’s image

By Derek B. Johnson
Microsoft Patch Tuesday matches last year’s zero-day high with six actively exploited vulnerabilities

By Matt Kapko
After major Poland energy grid cyberattack, CISA issues warning to U.S. audience

By Tim Starks
Critics warn America’s ‘move fast’ AI strategy could cost it the global market

By Derek B. Johnson

Popular Stories

Nauval Wildani, iStock/Getty Images Plus

Cyber scholarship-for-service students say government has pulled rug on them, potentially burdening them with debt

Hiring freezes, budget cuts and more are raising questions about the future of CyberCorps.

By Tim Starks

(Scoop News Group graphic)

A house full of open windows: Why telecoms may never purge their networks of Salt Typhoon

Experts tell CyberScoop that the U.S. telecom system is just too technologically fragmented to gather a clear picture of threats, and too big to ever fully eject…

By Derek B. Johnson

(Graphic by Scoop News Group)

‘Whatever we did was not enough’: How Salt Typhoon slipped through the government’s blind spots

Seven sources tell CyberScoop that a lack of coordination and miscommunication between federal agencies and the telecommunications industry left critical networks exposed to the Chinese hacking group.

By Tim Starks

(Getty Images)

Prolific Russian ransomware operator living in California enjoys rare leniency awaiting trial

Ianis Aleksandrovich Antropenko allegedly committed ransomware attacks from 2018 to 2022. He’s been out on bond since his arrest almost a year ago, despite multiple run-ins with…

By Matt Kapko

Who needs VC funding? How cybercriminals spread their ill-gotten gains to everyday business ventures

By Matt Kapko

Trump and others want to ramp up cyber offense, but there’s plenty of doubt about the idea

By Tim Starks Mark Pomerleau

Who is sending those scammy text messages about unpaid tolls?

By Matt Kapko

Despite challenges, the CVE program is a public-private partnership that has shown resilience

By Cynthia Brumfield

Legal barriers complicate justice for spyware victims

By Tim Starks

Insights

Abstract art of data security — Image: Giannina Vera, Scoop News Group

Why cyber modernization requires partners with technical plus acquisition expertise

By Katie Baxter

Image of US Capitol evoking data flow — Image: Scoop News Group

Why identity is the definitive cyber defense for federal agencies

By Daniel Wilbricht

Agencies push for digital transformation amid security challenges

By Scoop News Group

Photo illustration of AI and security.

Want to scale cyber defenders? Focus on AI-enabled security and organization-wide training

By Jay Bhalodia

Videos

CMMC compliance made practical: A data-first path forward

By Scoop News Group

Why blocking cyber threats is no longer enough

By Scoop News Group

To Catch a Thief: China’s Rise to Cyber Supremacy

By Scoop News Group

Red Hat’s Adam Clater on navigating zero trust’s unknowns

By Scoop News Group

Podcasts

No exceptions: How Amazon killed the password and unified security

By CyberScoop Staff

What leaders can learn from the WEF’s Cybersecurity Outlook

By CyberScoop Staff

Opportunistic by Default: How OT gets pulled into the blast radius

By CyberScoop Staff

How do you win a conflict most Americans can’t see?

By CyberScoop Staff

The Latest

A logo sign outside of the headquarters of Ivanti in South Jordan, Utah. (Kristoffer Tripplaar / Alamy Stock Photo)

Fallout from latest Ivanti zero-days spreads to nearly 100 victims

The great wall of China at sunset. (Getty Images)

AI security’s ‘Great Wall’ problem

WASHINGTON, DC – JULY 23: DHS Inspector General Joseph Cuffari prepares to depart a hearing. The DHS Inspector General is launching an audit of DHS privacy practices. (Photo by Kevin Dietsch/Getty Images)

DHS privacy probe will focus on biometric tracking by ICE, OBIM

Javier Zayas Photography, Getty Images

CISA tells agencies to stop using unsupported edge devices

Department of Justice building. (Getty Images)

Alleged 764 member arrested, charged with CSAM possession in New York

(Getty Images)

Why boards should be obsessed with their most ‘boring’ systems

WASHINGTON, DC – DECEMBER 03: (L-R) Chairman Sen. Ted Cruz (R-TX) and Ranking member Sen. Maria Cantwell (D-WA) arrive for a hearing with the Senate Commerce, Science and Transportation Committee in the Russell Senate Office Building on Capitol Hill on December 3, 2025 in Washington, DC. Senator Maria Cantwell, D-Wash., wants hearings to force AT&T and Verizon to disclose how they’ve responded to the hacks to protect telecom networks. (Photo by Anna Moneymaker/Getty Images)

Cantwell claims telecoms blocked release of Salt Typhoon report

power plant, energy infrastructure, industrial control systems — (Getty Images)

What’s next for DHS’s forthcoming replacement critical infrastructure protection panel, AI information sharing

A logo sign outside of the headquarters of Ivanti in South Jordan, Utah. (Kristoffer Tripplaar / Alamy Stock Photo)

Ivanti’s EPMM is under active attack, thanks to two critical zero-days

Sean Cairncross, as CEO of the Millenium Challenge Corporation, speaks onstage during the 2019 Concordia Annual Summit in New York City. (Photo by Riccardo Savi/Getty Images for Concordia Summit)

Sean Cairncross’ cybersecurity agenda: less regulation, more cooperation

A poll worker helps a person cast their ballot at Fifteenth Avenue Baptist Church on December 2, 2025 in Nashville, Tennessee. Voters head to the polls to fill the house seat left vacant after the resignation of Republican Mark Green. (Photo by Jon Cherry/Getty Images)

As feds pull back, states look inward for election security support

Members of the Peoples Liberation Army band leave after the closing session of the Chinese People’s Political Consultative Conference, or CPPCC, at the Great Hall of the People on March 10, 2025 in Beijing. (Photo by Kevin Frayer/Getty Images)

China-based espionage group compromised Notepad++ for six months

“Move fast and break things” Facebook CEO Mark Zuckerberg onstage at the F8 conference 2014. (Mike Deerkoski via Wikimedia Commons, CC BY 2.0, https://creativecommons.org/licenses/by/2.0/)

We moved fast and broke things. It’s time for a change.

Upcoming Events

Feb 12 2026

EMERGE: Modern Government

Waldorf Astoria, Washington, D.C.

Feb 16 2026

CYBERWEEK

WASHINGTON D.C.

Feb 19 2026

CyberTalks

International Spy Museum, Washington, D.C.

Feb 25 2026

Webinar: Cyber Resilience – The Age of Persistent Threats

Virtual

Mar 19 2026

Elastic Public Sector Summit

Waldorf Astoria, Washington, D.C.