Uncategorized Archives

Vibe coding is here to stay. Can it ever be secure?

Research shows that AI-generated code is remarkably insecure. Yet experts tell CyberScoop it's up to industry to figure out a way to limit the issues the technology…

3 days ago By Derek B. Johnson

CrowdStrike, Microsoft aim to eliminate confusion in threat group attribution

Wild variances in naming taxonomies aren’t going away, but a new initiative from the security vendors aims to more publicly address obvious overlap in threat group attribution.

5 days ago By Matt Kapko

A map shows where infrastructure was targeted. (Europol)

Large-scale sting tied to Operation Endgame disrupts ransomware infrastructure

A coordinated effort took down seven kinds of malware and targeted initial access brokers.

May 23, 2025 By Greg Otto

infected file, information stealer, malware — (Getty Images)

Lumma Stealer toppled by globally coordinated takedown

Global law enforcement authorities and Microsoft seized or disrupted the prolific infostealer’s central command infrastructure, malicious domains and marketplaces where the malware was sold.

May 21, 2025 By Matt Kapko

Proofpoint, RSA 2019 — (Scoop News Group photo)

Proofpoint to acquire Hornetsecurity for over $1 billion

Proofpoint has entered into an agreement to acquire Hornetsecurity Group, a Germany-based provider of Microsoft 365 security services, in a deal reportedly valued at more than $1…

May 15, 2025 By Greg Otto

A Texas delegate holds up a sign as US Representative from Texas Monica De La Cruz speaks during the third day of the 2024 Republican National Convention at the Fiserv Forum in Milwaukee, Wisconsin, on July 17, 2024. Days after he survived an assassination attempt Donald Trump won formal nomination as the Republican presidential candidate and picked Ohio US Senator J.D. Vance for running mate. (Photo by Patrick T. Fallon / AFP) (Photo by PATRICK T. FALLON/AFP via Getty Images)

DOJ charges hacker for 2021 Texas GOP website defacement

Aubrey Cottle allegedly gained access to the Texas GOP’s website through a breach of its hosting provider.

Mar 31, 2025 By Derek B. Johnson

Director of National Intelligence, Tulsi Gabbard, and CIA Director, John Ratcliffe, testify before a House Permanent Select Committee on Intelligence hearing on “Worldwide Threats,” on Capitol Hill in Washington, DC, on March 26, 2025. (Photo by Drew ANGERER / AFP / Getty Images)

Intelligence chiefs insist Signal chat was a simple mistake

Democrats on the House Intelligence Committee expressed anger over the use of the messaging app to coordinate military strikes on Houthi targets in Yemen.

Mar 26, 2025 By Greg Otto

Despite challenges, the CVE program is a public-private partnership that has shown resilience

In 1999, Dave Mann and Steve Christey, two researchers from the nonprofit R&D corporation MITRE, debuted a concept for security vulnerabilities that laid the groundwork for the…

Mar 24, 2025 By Cynthia Brumfield

Previously deemed unfeasible due to incompatibilities between Cassandra’s upstream code and FIPS-approved libraries, the development responds to persistent customer demand for compliance-ready solutions. (Getty Images)

Chainguard’s FIPS-compliant Cassandra addresses security demand of federal and regulated markets

The new offering paves the way for orgs to use the widely popular open-source software with their highly sensitive data.

Mar 5, 2025 By Greg Otto

Threat actors are increasingly trying to grind business to a halt

Palo Alto Networks’ threat intelligence firm said nearly 9 in 10 cyberattacks it responded to last year involved disrupted business operations.

Feb 25, 2025 By Matt Kapko