Explore

Trendline Trendline
U.S. CISOs Divided on Ransomware Payments Despite Official Warnings

U.S. CISOs Divided on Ransomware Payments Despite Official Warnings

U.S. CISOs Divided on Ransomware Payments Despite Official Warnings
Rapid Read Rapid Read
FBI Warns of Silent Ransom Group's New Tactics Targeting Law Firms

FBI Warns of Silent Ransom Group's New Tactics Targeting Law Firms

The FBI has issued a warning about the Silent Ransom Group (SRG), an extortion gang that has been targeting U.S. law firms since at least 2023. The group employs sophisticated tactics, including impersonating IT support to gain access to sensitive data. SRG uses phishing emails and social engineering calls to trick employees into granting remote access to their systems. If these attempts fail, they send operatives in person to insert USB drives into computers, facilitating data exfiltration. The group then extorts victims by threatening to sell or publish the stolen data online. The FBI advises organizations to verify credentials, limit data access, and implement multi-factor authentication to prevent such attacks.
AP News AP News
Chief of communications intel agency says Russia is relentlessly targeting UK

Chief of communications intel agency says Russia is relentlessly targeting UK

A U.K. spy chief is warning that Britain and its allies risk losing a cyber conflict against adversaries like Russia unless cybersecurity is treated with greater urgency
Rapid Read Rapid Read
Iranian Hackers Blamed for Los Angeles Transit System Breach

Iranian Hackers Blamed for Los Angeles Transit System Breach

Security researchers have attributed a March cyberattack on the Los Angeles County Metropolitan Transportation Authority (LACMTA) to Iranian-backed hackers. The group, known as Ababil of Minab, claimed responsibility for the breach, which involved stealing and deleting data from the transit system's networks. The hackers are believed to be linked to Iran's Ministry of Intelligence and State Security. This incident is part of a broader pattern of increased cyber activities by Iranian-linked groups targeting U.S. infrastructure.
Rapid Read Rapid Read
Anthropic's Mythos AI Model Identifies Over 10,000 Software Flaws

Anthropic's Mythos AI Model Identifies Over 10,000 Software Flaws

Anthropic's Project Glasswing, utilizing the Mythos AI model, has identified over 10,000 high- or critical-severity software vulnerabilities in its first month. This initiative aims to shift the focus in cybersecurity from discovering flaws to verifying and patching them. The model has been tested by several partners, including Cloudflare and a major bank, with significant success in identifying vulnerabilities and preventing cyber threats. The United Kingdom's AI Security Institute and Mozilla have also reported positive results from using the model. Despite its success in finding vulnerabilities, the challenge remains in fixing them, as human capacity to triage and deploy patches is limited.
Trendline Trendline
Anthropic's Mythos AI Model Uncovers Over 10,000 Software Vulnerabilities, Highlighting Cybersecurity Challenges

Anthropic's Mythos AI Model Uncovers Over 10,000 Software Vulnerabilities, Highlighting Cybersecurity Challenges

Anthropic's Mythos AI Model Uncovers Over 10,000 Software Vulnerabilities, Highlighting Cybersecurity Challenges
Rapid Read Rapid Read
Dutch Government Blocks Kyndryl's Acquisition of Solvinity Over Data Sovereignty Concerns

Dutch Government Blocks Kyndryl's Acquisition of Solvinity Over Data Sovereignty Concerns

The Dutch government has blocked the acquisition of Solvinity, a Dutch cloud service provider, by the American IT company Kyndryl. The decision was made due to concerns that the acquisition could pose a risk to public interests, particularly regarding the control of sensitive data. Solvinity manages the DigiD platform, which is used by Dutch citizens for identity verification when accessing government services. The Dutch Minister of Digital Economy, Willemijn Aerdts, announced a full ban on the acquisition, citing fears that DigiD data could fall under foreign control and be subject to U.S. law enforcement demands. This move aligns with a broader European trend to reduce reliance on U.S. tech companies.
Trendline Trendline
Dragos Highlights Rising Operational Technology Risks in Industrial Cybersecurity

Dragos Highlights Rising Operational Technology Risks in Industrial Cybersecurity

Dragos Highlights Rising Operational Technology Risks in Industrial Cybersecurity
Trendline Trendline
Majority of CISOs Consider Paying Ransom Despite Official Warnings

Majority of CISOs Consider Paying Ransom Despite Official Warnings

Majority of CISOs Consider Paying Ransom Despite Official Warnings
Trendline Trendline
QuestingHound Technology Partners Recognized as Top Managed Service Provider in the U.S. for 2026 by Clutch

QuestingHound Technology Partners Recognized as Top Managed Service Provider in the U.S. for 2026 by Clutch

QuestingHound Technology Partners Recognized as Top Managed Service Provider in the U.S. for 2026 by Clutch
Rapid Read Rapid Read
U.S. Banks and Cybersecurity Firms Respond to AI Model Mythos' Threats

U.S. Banks and Cybersecurity Firms Respond to AI Model Mythos' Threats

The AI model Mythos, developed by Anthropic, has raised significant cybersecurity concerns due to its ability to identify and exploit software vulnerabilities rapidly. This has prompted U.S. banks and cybersecurity firms to take immediate action to address potential threats. The model's capabilities were demonstrated in tests by Palo Alto Networks, which issued numerous security alerts in response to Mythos' findings. The National Cyber Security Centre (NCSC) in New Zealand has also been monitoring these developments, although it is not directly involved in the testing. The AI model's potential to exploit 'zero-day' vulnerabilities has led to briefings with the U.S. Department of Homeland Security and other agencies. Despite the risks, some experts suggest that the model's abilities could be overhyped, while others warn of its potential to chain together minor vulnerabilities into significant threats.
Rapid Read Rapid Read
New Zealand's Cybersecurity Agency Prepares for AI-Driven Superhacking Threats

New Zealand's Cybersecurity Agency Prepares for AI-Driven Superhacking Threats

New Zealand's National Cyber Security Centre (NCSC) is preparing for a significant increase in cybersecurity vulnerabilities due to advancements in AI models capable of superhacking. These frontier AI models, such as Anthropic's Mythos, have demonstrated the ability to detect and exploit software vulnerabilities at unprecedented speeds. The NCSC is engaging with international partners and tech companies to understand the implications and provide guidance on mitigating these threats. The agency emphasizes the need for organizations to enhance their cybersecurity measures, including frequent patching and reducing attack surfaces.