Explore

Rapid Read Rapid Read
White House Cybersecurity Strategy Promotes Active Disruption with Industry Support

White House Cybersecurity Strategy Promotes Active Disruption with Industry Support

Bob Ackerman, founder of Allegis Cyber and partner at DataTribe, discussed the new national cybersecurity strategy on the Safe Mode podcast. The strategy aims to push the industry towards more open and coordinated 'active disruption' with government support, while avoiding practices like hack-back. Ackerman highlighted the industry's demand for clearer 'rules of the road' and the challenges in transitioning from reactive collaboration to proactive threat management. The conversation also touched on the role of artificial intelligence in cybersecurity, noting the rapid acceleration of offensive tools and the difficulties defenders face with visibility, noise, and prioritization. Ackerman emphasized the importance of focusing on fundamentals and hygiene, as effective defense requires clear visibility.
Rapid Read Rapid Read
Industry Reactions to White House's New Cybersecurity Strategy Highlight Challenges

Industry Reactions to White House's New Cybersecurity Strategy Highlight Challenges

The White House's new national cybersecurity strategy is prompting discussions within the industry about its implications and challenges. Bob Ackerman, founder of Allegiance Cyber, highlights the strategy's push for more open and coordinated 'active disruption' with government support, while cautioning against misinterpretations such as hack-back. Industry leaders are calling for clearer 'rules of the road' to transition from reactive collaboration to proactive threat management. The strategy also addresses the rapid evolution of AI, which is expected to complicate cybersecurity efforts due to increased offensive capabilities and challenges in visibility and prioritization.
Rapid Read Rapid Read
Hacker Targets Chinese Supercomputer, Offers Stolen Data for Sale

Hacker Targets Chinese Supercomputer, Offers Stolen Data for Sale

A hacker group known as FlamingChina has reportedly breached the National Supercomputing Center (NSCC) in Tianjin, China, stealing a vast amount of sensitive data. The stolen information includes research across various fields such as aerospace engineering, military research, and bioinformatics. The group has posted samples of the data on Telegram, claiming it contains valuable intelligence. Cybersecurity experts suggest that the dataset's size and content make it attractive to adversarial state intelligence services. The breach raises concerns about cybersecurity vulnerabilities and the potential for sensitive information to be exploited by foreign governments.
Rapid Read Rapid Read
Iran-Backed Hackers Target US Critical Infrastructure, Disrupt Operations

Iran-Backed Hackers Target US Critical Infrastructure, Disrupt Operations

Iranian-affiliated hackers have been targeting US critical national infrastructure (CNI) providers, causing operational disruptions and financial losses. According to a Cybersecurity and Infrastructure Security Agency (CISA) advisory, these threat actors have been focusing on internet-facing operational technology (OT) assets, including programmable logic controllers (PLCs) from Rockwell Automation/Allen-Bradley. The sectors affected include government services, water and wastewater systems, and energy. The hackers have been manipulating data on human-machine interface (HMI) and supervisory control and data acquisition (SCADA) displays. They use configuration software to establish connections to targeted PLCs via overseas IP addresses. CISA has urged US organizations to review tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs) to mitigate risks.
Rapid Read Rapid Read
Iran-Linked Cyberattacks Disrupt U.S. Critical Infrastructure

Iran-Linked Cyberattacks Disrupt U.S. Critical Infrastructure

Six U.S. federal agencies have warned of cyberattacks by Iran-affiliated threat actors targeting programmable logic controllers at critical infrastructure sites. These attacks have affected water, wastewater, energy, and government facilities, causing operational disruptions and financial losses. The advisory links the attacks to escalating hostilities between Iran, the U.S., and Israel, and highlights the need for organizations to review their cybersecurity measures.
Rapid Read Rapid Read
US Authorities Warn of Iranian Hackers Targeting Critical Infrastructure

US Authorities Warn of Iranian Hackers Targeting Critical Infrastructure

On April 7, 2026, several U.S. government agencies issued a joint warning about Iranian-backed hacker groups escalating their tactics to sabotage critical U.S. infrastructure systems. The primary targets include sectors essential to daily life, such as water supply, wastewater treatment plants, energy facilities, and local government facilities. These attacks exploit vulnerabilities in Programmable Logic Controllers (PLCs) and SCADA systems, particularly those from Rockwell Automation/Allen-Bradley. The Iranian government-backed group 'Handala' has been identified as a key perpetrator, having infiltrated networks of major companies like Stryker to erase data remotely. The hackers are reportedly using legitimate engineering software to gain access and have installed SSH software to maintain remote control.
AP News AP News
Trump met with NATO leader Rutte after musing about pulling out of the military alliance

Trump met with NATO leader Rutte after musing about pulling out of the military alliance

President Donald Trump met with NATO's Secretary-General Mark Rutte on Wednesday
AP News AP News
Trump will meet with NATO leader Rutte as he muses about pulling out of the military alliance

Trump will meet with NATO leader Rutte as he muses about pulling out of the military alliance

The White House says President Donald Trump will discuss leaving NATO when he meets with the military alliance's Secretary-General Mark Rutte
Rapid Read Rapid Read
Cybersecurity Industry Faces Challenges from AI-Enabled Attacks

Cybersecurity Industry Faces Challenges from AI-Enabled Attacks

The cybersecurity industry is grappling with the rise of AI-enabled cyberattacks, as nation-state threat actors deploy autonomous agents to scale their operations. A Chinese state-sponsored threat actor, GTG-1002, has weaponized an AI coding assistant into an autonomous attack platform, executing large-scale cyberattacks with minimal human intervention. This development highlights the need for the cybersecurity industry to adopt collective, agentic defense mechanisms, such as a 'hive mind' architecture to share collective intelligence. The democratization of AI-enabled cyberattacks is no longer speculative, posing significant challenges to traditional cybersecurity measures.
Rapid Read Rapid Read
Iran-Backed Hackers Target U.S. Critical Infrastructure via Internet-Facing OT Assets

Iran-Backed Hackers Target U.S. Critical Infrastructure via Internet-Facing OT Assets

Iranian-affiliated hackers have been targeting U.S. critical national infrastructure (CNI) providers, causing operational disruptions and financial losses. The Cybersecurity and Infrastructure Security Agency (CISA) issued an advisory detailing the attacks on internet-facing operational technology (OT) assets, including programmable logic controllers (PLCs) from Rockwell Automation/Allen-Bradley. The sectors affected include government services, water and wastewater systems, and energy. The hackers have been manipulating data on HMI and SCADA displays, using configuration software to create connections to targeted PLCs.
Rapid Read Rapid Read
Iranian Hackers Escalate Attacks on US Critical Infrastructure Amid Hostilities

Iranian Hackers Escalate Attacks on US Critical Infrastructure Amid Hostilities

Iranian hacking campaigns have intensified against US critical infrastructure sectors, including government services, water systems, and energy facilities. According to a joint advisory from US cybersecurity, law enforcement, and intelligence agencies, these hackers are targeting programmable logic controllers and supervisory control and data acquisition displays. The aim is to cause disruptive effects within the United States, with some activities already resulting in operational disruptions and financial losses. This escalation coincides with heightened tensions between the US and Iran, as President Trump warned of severe consequences if Iran does not reach a deal with the US.