Security leaders respond to the dismissal of NSA director

Security leaders share their thoughts on the NSA director dismissal, providing insights as to why it may have occurred.

from Cybersecurity News https://ift.tt/z0Jwkep

Recent version of Neptune RAT is spreading, stealing credentials

Research has discovered a recent version of Neptune RAT, which is spreading and stealing credentials. 

from Cybersecurity News https://ift.tt/hX9cZem

Cybersecurity experts share how AI could enhance tax-related scams

Cybersecurity experts share their insights on AI-related threats and how users can stay safe this tax season. 

from Cybersecurity News https://ift.tt/GDHxdm6

Troy Rydman hired as CIO and CISO at Packsize

Troy Rydman has been hired as the chief information officer (CIO) and chief information security officer (CISO) at Packsize. 

from Cybersecurity News https://ift.tt/PVvZ50b

Cybersecurity is the second highest business concern for SMBs

Research by VikingCloud revealed that a successful cyberattack would force nearly one in five small- and medium-sized businesses to close their doors.

from Cybersecurity News https://ift.tt/SlBAnP3

Who’s driving ransomware’s accelerated growth in 2025

A look into IAB tactics, relations with ransomware groups and services offered.

from Cybersecurity News https://ift.tt/Yia6orE

27,000 records in Australian fintech database were exposed

Research has revealed that an Australia-based fintech company had a database exposed. 

from Cybersecurity News https://ift.tt/SBQd4qg

White House security messages leaked through Signal

An Atlantic article published by Jeffery Goldberg on March 24, 2025 alleges that Goldberg was accidentally included in a group chat detailing classified security information.

from Cybersecurity News https://ift.tt/wdRnp8z

6 million records allegedly stolen from Oracle Cloud

An investigation has uncovered a possible breach against Oracle Cloud. 

from Cybersecurity News https://ift.tt/WAJeXo8

Scammers impersonated USPS more than other organizations

A recent scam report by Reboot found that the brands that scammers imitate the most are USPS (15.43%), IRS (11.71%), and Amazon (7.71%).

from Cybersecurity News https://ift.tt/q3L4SYz

23andMe declares bankruptcy, security leaders discuss data concerns

Security leaders share their insights on the possible data risks of 23andMe declaring bankruptcy.

from Cybersecurity News https://ift.tt/KygWdPa

Ransomware incidents increase by 132%, vishing by 1,633%

New research reveals evolutions in threat actor techniques, with emphasis on ransomware and vishing.

from Cybersecurity News https://ift.tt/PgbQVB2

Security leaders discuss new phishing campaign targeting Mac users

Research has identified a new phishing campaign targeting Mac users. 

from Cybersecurity News https://ift.tt/U9uDPjB

Rooted mobile devices are 250 times more vulnerable

Although there has been a reduction in rooted and jailbroken devices, these devices are still a security concern for users and enterprises.

from Cybersecurity News https://ift.tt/tBWsDKk

82% of all phishing emails utilized AI

A report found that there has been a 57.9% increase in attacks being sent from compromised accounts getting through traditional detection.

from Cybersecurity News https://ift.tt/kqWZz21

56% of security teams say AI is crucial to daily operations

A report by Seemplicity found that 86% of security teams are using AI in their security stacks and 56% say AI is now crucial to their daily operations.

from Cybersecurity News https://ift.tt/DNjr6Kx

Nearly 22,000 impacted by Western Alliance Bank breach

Security leaders discuss the Western Alliance Bank breach, which impacted nearly 22,000 customers. 

from Cybersecurity News https://ift.tt/zS4DfA0

New LLM jailbreak technique can create password-stealing malware

A new LLM jailbreak technique enables the development of password-stealing malware

from Cybersecurity News https://ift.tt/iLYF9Jc

Brand impersonation is 51% of browser phishing attempts

A recent Menlo Security report identifies key drivers behind the rise in browser-based attacks, including AI, PhaaS and zero-day vulnerabilities.

from Cybersecurity News https://ift.tt/HQW9hY6

Phishing campaign leverages Microsoft 365 infrastructure for attacks

A phishing campaign is leveraging Microsoft 365 infrastructure for attacks.

from Cybersecurity News https://ift.tt/MZv4Hu5

Education sector unprepared for evolving cyberattacks, research finds

A new report assesses the cybersecurity posture of the education sector.

from Cybersecurity News https://ift.tt/sNjwHQS

Phishing-based attacks have risen 140% year-over-year

Research has identified more than 752,000 browser-based phishing attacks in the past 12 months. 

from Cybersecurity News https://ift.tt/jBhu9PF

$20B loss estimated from potential March Madness hacks

With the rise of AI, the potential for monetary losses during March Madness is increased.

from Cybersecurity News https://ift.tt/gHNFmY9

1 in 3 security leaders say AI will make ransomware a greater threat

 A report found that the top predicted threat for 2025 is ransomware.

from Cybersecurity News https://ift.tt/qbjPmfJ

67% of organizations experience a certificate-related outage monthly

A recent report by CyberArk revealed that 72% of organizations have experienced at least one certificate-related outage in the past year.

from Cybersecurity News https://ift.tt/rjVlGhM

Chinese threat actor resided in US electric grid for almost one year

A case study discusses an intrusion into the United States electric grid associated with Volt Typhoon, a Chinese threat actor.

from Cybersecurity News https://ift.tt/mUdyrAt

3 Ivanti flaws added to CISA’s vulnerabilities catalogue

CISA has announced five known exploited vulnerabilities now in its catalogue, three of which are Ivanti Endpoint Manager flaws. 

from Cybersecurity News https://ift.tt/TYjQUpG

Cyber leaders must prepare quantum security now, research finds

Cybersecurity leaders share their insights on the state of quantum computing.  

from Cybersecurity News https://ift.tt/Ln9pHM4

48% of Americans have received a fraudulent tax-related message

Cybercriminals don’t just demand money, they go after details like Social Security numbers, birth dates, and banking information to fuel future fraud.

from Cybersecurity News https://ift.tt/XyLxvad

Cyber experts discuss possible cyberattack against X

X experienced a cyberattack that caused widespread technical issues across the network. 

from Cybersecurity News https://ift.tt/vc2R8Oo

88% of security teams are reaching or exceeding performance goals

88% of security teams are reaching or exceeding performance goals, even with limited staff and greater workloads.

from Cybersecurity News https://ift.tt/02fjn7W

48% of professionals struggle to keep up with cybersecurity threats

Governance, risk and compliance (GRC) leaders shared top priorities in a recent MetricStream report.

from Cybersecurity News https://ift.tt/zmksPFg

Cyber leaders weigh in on proposed vulnerability disclosure policy

Cybersecurity leaders discuss the Federal Contractor Cybersecurity Vulnerability Reduction Act of 2025. 

from Cybersecurity News https://ift.tt/Ao60h5L

63% of IT professionals express desire for a mentor

However, challenges can arise when pursuing IT careers, including the need for more technical knowledge (35%), tools and best practices (31%).

from Cybersecurity News https://ift.tt/NLAWwtP

Financial services sector is facing data risks from personal apps

A new report focuses on the risks of personal app use, generative AI and social engineering in the financial sector. 

from Cybersecurity News https://ift.tt/l7QmvLV

Typosquatted packages delivering malware to Linux and macOS systems

Research has identified a typosquatting campaign delivering malware to Linux and macOS systems. 

from Cybersecurity News https://ift.tt/0urwSDj

Cybersecurity experts discuss the YouTube CEO deepfake

Cybersecurity experts share their insights on the YouTube CEO deepfake scam.

from Cybersecurity News https://ift.tt/CvtpmsB

A Chinese espionage group is targeting the IT supply chain

Silk Typhoon, Chinese espionage group, is targeting common IT solutions. 

from Cybersecurity News https://ift.tt/MdgOAZT

88% of organizations are increasing fraud team headcounts

Many organizations are increasing fraud prevention budgets and teams. 

from Cybersecurity News https://ift.tt/fKlHDPC

IT trends: 60% of IT professionals are experiencing burnout

A report on the state of IT work shares notable trends and challenges IT teams are facing. 

from Cybersecurity News https://ift.tt/RZ4HcLm

CTOs fall victim to breaches more often than other c-suite roles

Nearly 100% of c-level executives have had information exposed in a data breach, with an average of 43 data breaches or compilations per executive.

from Cybersecurity News https://ift.tt/XNrVcDI

Vishing attacks increased by 442% in the second half of 2024

Vishing attacks rose by 442% from the first half of 2024 to the second. 

from Cybersecurity News https://ift.tt/jSb9LwF

Bay Cove Human Services suffers data breach

Bay Cove Human Services has provided notice of a data breach that may have affected personal and/or protected health information.

from Cybersecurity News https://ift.tt/PzOtQnk

Cyber operations against Russia halted, cyber leaders remain alert

How will organizations be impacted by the order to halt cyber operations against Russia? Cybersecurity leaders share their thoughts. 

from Cybersecurity News https://ift.tt/t0S1deQ

78% of CISOs are experiencing impact from from AI cyber threats

A report discusses the shifting role of AI in cybersecurity. 

from Cybersecurity News https://ift.tt/b4aDdF0

36% of organizations have outlined roles within cybersecurity teams

A recent report fund that 93% of organizations made policy changes over the preceding 12 months to address concerns about personal liability for CISOs.

from Cybersecurity News https://ift.tt/Qq3Wwy2

96% of ransomware incidents involve data exfiltration

Malicious actors are shifting priorities, as 96% of ransomware incidents involve data exfiltration. 

from Cybersecurity News https://ift.tt/1RegNMc

Kash Patel has been sworn in as Director of the FBI

Kash Patel has been sworn in as ninth Director of the FBI. 

from Cybersecurity News https://ift.tt/YviBrq7

Nearly 1M records related to personal property were exposed

A property tracking and return service supporting multiple airports had nearly 1M records exposed.

from Cybersecurity News https://ift.tt/Vh7MrW8

Michael R. Centrella named Assistant Director of the USSS Office of Field Operations

Michael R. Centrella has been promoted to Assistant Director of the USSS Office of Field Operations. 

from Cybersecurity News https://ift.tt/sMaBrUE

Ransomware incidents reached record levels in 2024

An analysis of global ransomware activity reveals ransomware incidents reached record levels in 2024. 

from Cybersecurity News https://ift.tt/yb9wGgK

39% of vulnerabilities could cause both a loss of view and control

A recent Dragos cybersecurity report analyzed two new OT cyber threat groups and ransomware activity.

from Cybersecurity News https://ift.tt/96EjeX1

Security leaders discuss botnet attack against Microsoft 365 accounts

Security leaders discuss the coordinated botnet campaign against Microsoft 365 accounts. 

from Cybersecurity News https://ift.tt/FLTHuRV

99% of organizations faced API security issues within past 12 months

API security challenges are ongoing, with 99% reporting API security issues in the past 12 months.

from Cybersecurity News https://ift.tt/ovysu9l

Richard Bird hired as Chief Security Officer at Singulr AI

Richard Bird has been appointed CSO at Singulr AI. Bird will play a critical role in helping develop practices that keep pace with emerging threats.

from Cybersecurity News https://ift.tt/DqLJ73c

Open source software vulnerabilities found in 86% of codebases

86% of codebases had open source software vulnerabilities while 81% had high- or critical-risk vulnerabilities.

from Cybersecurity News https://ift.tt/mslJ8yL

John Carse hired as Field CISO at Squarex

John Carse has been hired as Field Chief Information Security Officer (CISO) at SquareX. Carse has over two decades of cybersecurity experience.

from Cybersecurity News https://ift.tt/CvzJpDX

7-year-old vulnerability exploited in Salt Typhoon attack

Security leaders discuss the 7-year-old vulnerability that was exploited in the Salt Typhoon attack. 

from Cybersecurity News https://ift.tt/7vZfaAg

SEC establishes Cyber and Emerging Technologies Unit

The SEC has announced it established the Cyber and Emerging Technologies Unit. 

from Cybersecurity News https://ift.tt/jHoP4Da

68% of people are worried about misinformation due to deepfakes

Recent research found that .1% of U.S. and U.K. consumers could accurately distinguish real from fake content across images and video.

from Cybersecurity News https://ift.tt/zl4Lhxc

Quantum computing could arrive soon due to Microsoft’s new chip

According to Microsoft, quantum computers could be built within years instead of decades, citing a recent breakthrough. 

from Cybersecurity News https://ift.tt/ShHGkIT

CISA and FBI issue warning for Ghost ransomware activity

CISA and FBI issue an advisory about Ghost ransomware activity. 

from Cybersecurity News https://ift.tt/Z7SqAYG

Venture capital firm Insight Partners faces security breach

A global venture capital firm has announced it experienced a cyber incident.

from Cybersecurity News https://ift.tt/rV24Z50

1.6M clinical research records exposed in data leakage

Research reveals a non-password-protected database associated with a clinical trial site network.

from Cybersecurity News https://ift.tt/ilnbQPk

Mobile phishing threats are evolving, according to new research

A new report highlights trends in mobile-specific phishing attacks. 

from Cybersecurity News https://ift.tt/z6vOD0S

Only 1 in 3 cybersecurity professionals would recommend their employer

A new report offers insight into hiring trends, cyber professional compensation and job satisfaction.

from Cybersecurity News https://ift.tt/M35OncX

97% of companies block or restrict generative AI usage

The data from a cybersecurity report shows that 66% of respondents use GenAI for work, with 64% using personal email accounts to access the tools.

from Cybersecurity News https://ift.tt/HagyK8T

Phishing remains the preferred technique among threat actors

Phishing is the preferred technique among threat actors, according to a new report.

from Cybersecurity News https://ift.tt/qUZXWds

76% of security leaders plan to increase their security budgets in 2025

A CDG report found that 92% of IT professionals stated they had some degree of confidence in their ability to meet compliance requirements.

from Cybersecurity News https://ift.tt/urwq9zM

Ransomware attack hits 5 Michigan casinos, shuts them down

Casinos in Michigan were targeted by a ransomware attack. 

from Cybersecurity News https://ift.tt/CdROAUu

Super Bowl Sunday saw a 57% rise in malicious gambling content

A recent cybersecurity report by DNSFilter found that Super Bowl Sunday saw a 57% rise in malicious gambling and betting content. 

from Cybersecurity News https://ift.tt/rwtV0Mu

The top 4 unmanaged apps are AI-driven

A recent Torii report analyzed how businesses are managing a rise in "shadow IT" and artificial intelligence (AI) driven tools. 

from Cybersecurity News https://ift.tt/nSBEOU7

Gmail, Yahoo targeted by a new two-factor authentication phishing kit

A phishing kit is bypassing two-factor authentication. 

from Cybersecurity News https://ift.tt/o2bJfMZ

Cyber Conspiracy Modernization Act proposed, cyber expert weighs in

A proposed bipartisan bill aims to increase punishment for cybercrimes. 

from Cybersecurity News https://ift.tt/MTekPR9

US declines international AI declaration, security leaders discuss

The United States and the United Kingdom have declined to sign the AI Action Summit agreement. 

from Cybersecurity News https://ift.tt/ierTVNp

Nine out of 10 IT teams are better funded than they were last year

A recent Omada report found that 95% of IT leaders see identity security as an important part of their cybersecurity strategy.

from Cybersecurity News https://ift.tt/8Y6jb4n

Report shows DDoS attacks increased 56% year-over-year

DDoS attacks have increased in volume and magnitude from Q3-Q4 2023 to Q3-Q4 2024.

from Cybersecurity News https://ift.tt/URkfxCS

39% of law enforcement agencies unable to timely solve investigations

Thirty-three percent of law enforcement agencies indicate that analyzing the data is the most challenging part of the intelligence and insight process.

from Cybersecurity News https://ift.tt/0zpwv6J

88% of UK businesses say cyber fraud drove payment fraud

A recent U.K. cybersecurity report found that 93% of companies were targeted by fraud in the past year, with 73% expecting risks to grow in 2025.

from Cybersecurity News https://ift.tt/cloJPbU

Ransomware extortion rose by 46% in Q4 2024

According to a Nuspire report, ransomware extortion publications rose by 46% compared to Q3, with Clop ransomware emerging as the most active group.

from Cybersecurity News https://ift.tt/4go2wPQ

29% of school systems report a rise in student-to-student security incidents

A recent cybersecurity report by Clever found that 5% of U.S. school systems have implemented multi-factor authentication (MFA) for students.

from Cybersecurity News https://ift.tt/8wIzlke

DOGE inputs federal data to AI, cyber leaders discuss implications

DOGE has been feeding sensitive federal information into AI. Security leaders discuss. 

from Cybersecurity News https://ift.tt/nMqVtlI

Lawmakers propose DeepSeek ban on government devices

A bipartisan congressional bill has been proposed, which would prohibit the use of DeepSeek on government devices.

from Cybersecurity News https://ift.tt/GfdKChJ

59% insurance sector breaches caused by third parties

A review of breach histories of the top 150 insurance companies worldwide reveals 59% included third-party attack vectors.

from Cybersecurity News https://ift.tt/ZG5VyCs

Deepseek-impersonating malware is stealing data, research finds

The emergence of DeepSeek has led to malicious actors attempting to exploit its prominence.

from Cybersecurity News https://ift.tt/1KIXl7L

Malicious actors using multimedia messages to promote Bitcoin scams

Video-based abuse is being leveraged in a new Bitcoin scam. 

from Cybersecurity News https://ift.tt/Dp6oKW4

Report: Password stores are targeted by 25% of malware

A new report reveals an increase in credential-stealing malware.

from Cybersecurity News https://ift.tt/2z3PrcM

850,000 individuals impacted by Globe Life ransomware incident

An estimated 850,000 individuals have been affected by a ransomware attack on Globe Life, an insurance organization.

from Cybersecurity News https://ift.tt/kS29RIM

39 cybercrime domains seized, linked to HeartSender cybercrime group

Law enforcement agencies have dismantled 39 cybercrime domains and associated servers.

from Cybersecurity News https://ift.tt/m0CBKOV

90% of security professionals report conformance with DORA

Ninety percent of professionals report conformance with Digital Operational Resilience Act and the Network and Information Security Directive 2.

from Cybersecurity News https://ift.tt/fzmvMxa

Ransomware attack targets the New York Blood Center

The New York Blood Center experienced a ransomware attack. 

from Cybersecurity News https://ift.tt/9rJeaOf

47% of organizations have put off cybersecurity upgrades

According to a recent Sentry report, a majority (67%) of security leaders admit they're feeling more stressed compared to last year.

from Cybersecurity News https://ift.tt/3Veg7o1

Phishing tax scams increase as tax deadlines approach

Researchers have observed an increase in malicious domains and campaigns impersonating tax agencies and financial institutions. 

from Cybersecurity News https://ift.tt/8tcXHNM

Coming soon to job boards: The Chief Secure Networking Officer

The Chief Secure Networking Officer (CSNO) is a transformative role designed to ensure seamless performance and security for next-generation technologies. 

from Cybersecurity News https://ift.tt/wA8z3od

Vulnerability discovered in Subaru’s connected vehicle service

Subaru’s STARLINK connected vehicle service contains a vulnerability that permits access to user accounts and vehicles. 

from Cybersecurity News https://ift.tt/ulgdRUn

PayPal ordered to pay $2M in settlement from 2022 breach

The New York State Department of Financial Services has declared that PayPal will pay $2M in a settlement. 

from Cybersecurity News https://ift.tt/b65hkMg

190M impacted by Change Healthcare breach, security leaders discuss

 Security leaders discuss an update from Change Healthcare. 

from Cybersecurity News https://ift.tt/m5H3GCy

Simplify your security toolkit

What threats do security leaders need to worry about? Answer this question and more with Corey Nachreiner, CISO at WatchGuard.

from Cybersecurity News https://ift.tt/65rJYqS

DeepSeek: What to know about the Chinese artificial intelligence model

Cyber experts delve into DeepSeek, the Chinese artificial intelligence model. 

from Cybersecurity News https://ift.tt/BvVOqr1

Security research discovers vulnerabilities in popular travel service

An account takeover vulnerability has been discovered in a popular online travel service. 

from Cybersecurity News https://ift.tt/Pq87RSU

Celebrating Data Privacy Day: Experts share data protection insights

This Data Privacy Day, cybersecurity experts share insights on data protection best practices.

from Cybersecurity News https://ift.tt/DL6gdT9

Mobile phishing campaign impersonates USPS, steals credentials

Security leaders discuss a new mobile phishing campaign that impersonates the USPS. 

from Cybersecurity News https://ift.tt/Q98JuUi

Trump administration dismisses Cyber Safety Review Board (CSRB)

The Department of Homeland Security has dismissed its advisory committees, including the Cyber Safety Review Board (CSRB).

from Cybersecurity News https://ift.tt/yJkXqDe

Phishing rose 30.5% year-over-year in APAC region

According to a recent report, between 2023 and 2024, the median monthly rate of advanced email attacks in the APAC region surged by 26.9%.

from Cybersecurity News https://ift.tt/7fylrXU

Top cybersecurity conferences in 2025

Security magazine highlights a few upcoming cybersecurity conferences in 2025.

from Cybersecurity News https://ift.tt/w3zK6Lb

$4.88M was the average cost of a data breach in 2024

A new report discusses the relationship between cybersecurity and insurance as digital infrastructure grows increasingly intertwined into business operations.

from Cybersecurity News https://ift.tt/fdhTokW

Healthcare cyberattacks caused financial damage for 69% of organizations

A cyberattack resulted in financial damage for 69% of healthcare organizations, compared to 60% among other industries.

from Cybersecurity News https://ift.tt/cvLOgAU

94.2% of CISOs say CCM could improve compliance and security

A new report provides insights on the struggles CISOs face. 

from Cybersecurity News https://ift.tt/4tkSzse

Report: Healthcare ransomware targets are shifting

Certain ransomware groups are targeting healthcare institutions more than other sectors. 

from Cybersecurity News https://ift.tt/KxhMBeo

84% of organizations say lack of AI transparency led to compliance issues

A recent Camunda report found that 82% of organizations fear “digital chaos” due to increasingly complex, interconnected and automated processes.

from Cybersecurity News https://ift.tt/9oI37tX

US experiences 47% of global utilities cyberattacks

A new report indicates a rise in cyberattacks against the utilities sector.

from Cybersecurity News https://ift.tt/Z3NARhC

CISA report calls on US government to close the software knowledge gap

CISA has released a report on the state of software understanding.

from Cybersecurity News https://ift.tt/Qux4FMt

Security’s Top 5 – 2024 Year in Review

Security’s Top 5 from Security magazine showcases the top stories and new developments from across the security industry.

from Cybersecurity News https://ift.tt/38I4dBD

Biden Administration proposes framework for AI chip exports

The Biden Administration has proposed a framework for AI chip exports, and security leaders are sharing their thoughts. 

from Cybersecurity News https://ift.tt/z8P5qeJ

Report: CISO responsibility is expanding beyond cybersecurity

The responsibilities of CISOs are expanding; however, only 3% of those surveyed indicate a pay raise to reflect their greater responsibility. 

from Cybersecurity News https://ift.tt/BpxrgF2

Report: Software security awareness training is at an all-time low

A recent report discovered only 51.2% of organizations are offering basic software security awareness training.

from Cybersecurity News https://ift.tt/DtONKsL

Cybersecurity researchers discover malware targeting macOS users

Cybersecurity researchers have discovered an information-stealing malware targeting macOS users. 

from Cybersecurity News https://ift.tt/6aY0MvV

Large companies saw a rise in email-based cyberattacks

The financial sector faces an increase in email attacks.

from Cybersecurity News https://ift.tt/l8XMqcS

AI and other top cybersecurity predictions for 2025

The new year brings new opportunities, but also the potential for new challenges. Security leaders share some of their predictions for 2025.

from Cybersecurity News https://ift.tt/I7ZPbnT

The Green Bay Packers online store breached, customer information compromised

The Green Bay Packers is notifying of a breach against its online store, which may have impacted the personal and/or financial data of customers.

from Cybersecurity News https://ift.tt/n3XL6oB

“U.S. Cyber Trust Mark” launched by the White House

The White House announced a “U.S. Cyber Trust Mark,” establishing a label for American consumers to verify if their connected devices are cybersecure.

from Cybersecurity News https://ift.tt/Ul2IOLs

Recent research reveals “phish-free PayPal phishing” scam

Research reveals the emergence of a “phish-free PayPal phishing” scam.

from Cybersecurity News https://ift.tt/PTXNQ0o