Cybersecurity Archives

PromesaArtStudio, iStock/Getty Images Plus

Judges strike skeptical note of NSO Group’s argument to dismiss case from El Salvadoran journos

Dada et al v. NSO Group has been one of many cases where alleged spyware victims have run into jurisdictional hurdles.

1 day ago By Tim Starks

US Treasury Department building, Washington DC (Getty Images)

Treasury bureau notifies Congress that email hack was a ‘major’ cybersecurity incident

The OCC said the February incident resulted in the theft of “highly sensitive information" tied to the financial conditions of federally regulated institutions.

3 days ago By Derek B. Johnson

A view of the Microsoft corporate logo in front of the Microsoft Office building on 41st street and 8th avenue on July 19, 2024 in New York City. (Photo by Craig T Fruchtman/Getty Images)

Microsoft patches zero-day actively exploited in string of ransomware attacks

Microsoft said Storm-2460 has exploited the zero-day in the Windows Common Log File System to attack organizations in the U.S., Venezuela, Spain and Saudi Arabia.

3 days ago By Matt Kapko

A view of the Google offices in New York City on May 19, 2020. (Photo by Ben Gabbe/Getty Images)

Google addresses 2 actively exploited vulnerabilities in security update

Serbian security services exploited one of the actively exploited vulnerabilities to break into the phone of a youth activist in Serbia, according to Amnesty International.

4 days ago By Matt Kapko

The Chinese national flag flies outside the Ministry of Foreign Affairs in Beijing on July 26, 2023. (Photo by GREG BAKER/AFP via Getty Images)

China-backed espionage group hits Ivanti customers again

UNC5221 has a knack for exploiting defects in Ivanti products. The group has exploited at least four vulnerabilities in the vendor’s products since 2023, according to Mandiant.

Apr 3, 2025 By Matt Kapko

Safe Mode

Silent Push’s Ken Bagnall on how companies can work with governments to take down malicious infrastructure

Ken Bagnall, CEO of Silent Push Ken

Apr 3, 2025 By CyberScoop Staff

International intelligence agencies raise the alarm on fast flux

The NSA and its partners want organizations to protect themselves against the technique, which can be tough to spot.

Apr 3, 2025 By Greg Otto

Cyber Command touts AI-driven gains in cybersecurity, network monitoring

Executive Director Morgan Adamski said the agency’s use of generative AI tools has reduced the timeframe for analyzing malicious traffic from days and weeks to hours and…

Apr 2, 2025 By Derek B. Johnson

Independent tests show why orgs should use third-party cloud security services

AWS, Microsoft Azure and Google Cloud Platform each scored 0% security effectiveness in CyberRatings.org’s evaluation of cloud network firewall vendors’ ability to prevent exploits and evasions.

Apr 2, 2025 By Matt Kapko

ransomware healthcare — The healthcare sector has seen enterprises both large and small shut down due to ransomware attacks. (Getty Images)

Dispersed responsibility, lack of asset inventory is causing gaps in medical device cybersecurity

As medical devices are bought and re-sold on the secondary market, they become harder to find and patch when a new vulnerability is discovered, a doctor told…

Apr 1, 2025 By Derek B. Johnson