Author: Andy Stern
-
Trump administration proposes cutting $491M from CISA budget
by
in SecurityNews
Tags: cisaA budget summary doesn’t give specific details on which programs it would cut, instead providing a broad outline. First seen on cyberscoop.com Jump to article: cyberscoop.com/trump-administration-proposed-cisa-budget-cuts/
-
Disney Slack attack wasn’t Russian protesters, just a Cali dude with malware
by
in SecurityNewsA 25-year-old California man pleaded guilty to stealing and dumping 1.1TB of data from the House of Mouse First seen on theregister.com Jump to article: www.theregister.com/2025/05/02/disney_slack_hacker_revealed_to/
-
Recent DoJ settlements suggest Biden cyber-fraud initiative still active
by
in SecurityNewsThe Justice Department under Trump has now settled two cases that bear the hallmarks of a Biden-era cyber enforcement initiative. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/biden-cyber-fraud-initiative-still-active/747012/
-
Attackers Ramp Up Efforts Targeting Developer Secrets
by
in SecurityNewsSoftware teams need to follow security best practices to eliminate the leak of secrets, as threat actors increase their scanning for configuration and repository files. First seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/attackers-targeting-developer-secrets
-
Beyond Models: Securing AI’s Real-World Use
by
in SecurityNewsMenlo Venture’s Rama Sekhar on AI Threats and Opportunities. Public attention has been focused on the dangers of large language models such as hallucinations or harmful output, but the most pressing security risks are no longer rooted in the models, but in how they are integrated with real-world tools, said Rama Sekhar, partner at Menlo…
-
Despite Arrests, Scattered Spider Continues High-Profile Hacking
by
in SecurityNewsWhile law enforcement has identified and arrested several alleged members, the notorious threat group continues to wreak havoc. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/despite-arrests-scattered-spider-continues-hacking
-
Salesforce expands model lineup in support of agentic AI
by
in SecurityNewsThe software vendor added variations to its family of large action models for on-device implementation, limited GPU resources and industrial applications. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/salesforce-AI-strategy-large-action-models-guardrails-benchmarks/747021/
-
Government and Ofcom disagree about scope of Online Safety Act
by
in SecurityNewsMPs heard different views from the online harms regulator and the UK government about whether and how the Online Safety Act obliges platforms to deal with disinformation First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366623592/Government-and-Ofcom-disagree-about-scope-of-Online-Safety-Act
-
Defense Industrial Base Strengthens Cybersecurity With CMMC
by
in SecurityNewsDOD’s Stacy Bostjanick Shares Cyber Strategies for Enhancing Cyber Resilience. Stacy Bostjanick, deputy CIO and chief of Defense Industrial Base Cybersecurity at the Department of Defense, shared a robust plan to protect the DIB from relentless cyberattacks through stronger standards and proactive cyber strategies. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/defense-industrial-base-strengthens-cybersecurity-cmmc-a-28199
-
Enhancing EHR Security: Best Practices for Protecting Patient Data
by
in SecurityNewsIn the digital healthcare landscape, electronic health records (EHRs) are foundational to patient care, operational efficiency and regulatory compliance. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/05/enhancing-ehr-security-best-practices-for-protecting-patient-data/
-
Cyberthreats Surge as Attackers Target Compromised Identity
by
in SecurityNewsCrowdStrike’s Adam Meyers on Cybercriminals Moving From Endpoints to Softer Targets. With EDR making it difficult for cybercriminal to carry out attacks, they are now shifting focus to exploit vulnerabilities in compromised identities and unmanaged devices to move laterally across organizations, said Adam Meyers, senior vice president of counter adversary operations at CrowdStrike. First seen…
-
UK Luxury Retailer Harrods Hit by Cyber Attack After MS, Co-op
by
in SecurityNewsLuxury retailer Harrods confirms a cyber attack attempt, restricting internet access but keeping its online store running. Learn… First seen on hackread.com Jump to article: hackread.com/uk-luxury-retailer-harrods-by-cyber-attack-ms-co-op/
-
So will Microsoft das Passwort jetzt endgültig abschaffen
by
in SecurityNewsFirst seen on t3n.de Jump to article: t3n.de/news/so-will-microsoft-das-passwort-jetzt-endgueltig-abschaffen-1685405/
-
World Password Day sollte überflüssig werden in einer von Passwörtern befreiten Zukunft
by
in SecurityNews
Tags: passwordFirst seen on datensicherheit.de Jump to article: www.datensicherheit.de/world-password-day-ueberfluessig-zukunft-ohne-passwoerter
-
Erkenntnisse aus dem Verizon Data Breach Investigation Report (DBIR) 2025
by
in SecurityNewsFirst seen on datensicherheit.de Jump to article: www.datensicherheit.de/verizon-data-breach-investigation-report-2025-erkenntnisse
-
Softwarefehler bei Patientenakten: 45 US-Krankenhäuser über Tage lahmgelegt
by
in SecurityNews
Tags: unclassifiedFirst seen on t3n.de Jump to article: t3n.de/news/softwarefehler-patientenakten-1685040/
-
Nahendes Windows-10-Ende – Windows 11 kommt immer noch nicht vom Fleck
by
in SecurityNews
Tags: windowsDas Windows-10-Ende naht, doch Windows 11 kommt bei den Marktanteilen nicht vom Fleck. Windows 10 liegt wie gehabt vorne. First seen on computerbase.de Jump to article: www.computerbase.de/news/betriebssysteme/nahendes-windows-10-ende-windows-11-kommt-immer-noch-nicht-vom-fleck.92453
-
AI-Powered Influence Campaigns: How Claude AI Was Exploited in Global Disinformation Operations
by
in SecurityNewsFirst seen on thesecurityblogger.com Jump to article: www.thesecurityblogger.com/ai-powered-influence-campaigns-how-claude-ai-was-exploited-in-global-disinformation-operations/
-
AI models routinely lie when honesty conflicts with their goals
by
in SecurityNewsKeep plugging those LLMs into your apps, folks. This neural network told me it’ll be fine First seen on theregister.com Jump to article: www.theregister.com/2025/05/01/ai_models_lie_research/
-
Ransomware attacks on food and agriculture industry have doubled in 2025
by
in SecurityNewsThe uptick began in the fourth quarter of 2024 and continued into 2025, with the increases largely attributed to Clop’s exploitation of a popular file sharing service. First seen on therecord.media Jump to article: therecord.media/ransomware-attacks-food-and-ag-double-2025
-
Cut CISA and Everyone Pays for It
by
in SecurityNews
Tags: cisaGutting CISA won’t just lose us a partner. It will lose us momentum. And in this game, that’s when things break. First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/cut-cisa-everyone-pays
-
The Cloud Illusion: Why Your Database Security Might Be at Risk
by
in SecurityNewsWith the right cloud database architecture, you gain versatility as well as optimal security. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/05/the-cloud-illusion-why-your-database-security-might-be-at-risk/
-
Treasury Moves to Ban Huione Group for Laundering $4 Billion
by
in SecurityNewsThe Treasury Department is moving to cut off Huione Group, a Cambodian conglomerate, from the U.S. financial system, saying the firm and its multiple entities laundered billions of dollars for North Korea’s Lazarus Group and criminal gangs running pig-butchering scams from Southeast Asia. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/05/treasury-moves-to-ban-huione-group-for-laundering-4-billion/
-
Your graphics card’s so fat, it’s got its own gravity alert
by
in SecurityNews
Tags: riskAsus implements droop detector for PCIe slots as GPUs now so heavy they risk toppling out First seen on theregister.com Jump to article: www.theregister.com/2025/04/30/gpu_pcie_droop/
-
CISA Adds Two New Exploited Vulnerabilities to Its Catalog: CVE-2024-38475 and CVE-2023-44221
by
in SecurityNewsThe Cybersecurity and Infrastructure Security Agency (CISA) recently updated its Known Exploited Vulnerabilities (KEV) Catalog, adding two vulnerabilities, CVE-2024-38475 and CVE-2023-44221, that are currently being actively exploited. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/cisa-adds-cve-2024-38475-and-cve-2023-44221/
-
Keeper Security renews Atlassian Williams Racing F1 partnership
by
in SecurityNewsKeeper Security, the provider of zero-trust and zero-knowledge Privileged Access Management (PAM) software protecting passwords, passkeys, privileged accounts, secrets and remote connections, today announced a multi-year renewal of its partnership with Atlassian Williams Racing. “We’re thrilled to continue our synergistic partnership with Atlassian Williams Racing as part of our strategy in forging long-term relationships with…
-
Harrods Hit by Cyberattack, Marking Third UK Retailer Targeted in Recent Wave
by
in SecurityNewsHarrods, the iconic British luxury department store, has confirmed that it was recently targeted in a cybersecurity incident, becoming the third major UK retailer in just a few days to report a cyber incident. The Harrods cyberattack follows similar breaches at Marks & Spencer and the Co-op. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/harrods-cyberattack/