Tag: defense
-
Half the defense base still builds security around compliance
CMMC requirements are appearing in defense contracts and moving down through supplier networks to thousands of companies new to this kind of compliance work. Many run on … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/30/federal-cybersecurity-compliance-report/
-
DHS Eyes 600 New Cybersecurity Hires, New Director for CISA
DHS Secretary Says Agency Has Funding But Lacks Skilled Cybersecurity Personnel. Homeland Security Secretary Markwayne Mullin told lawmakers CISA has adequate funding but must hire roughly 600 cybersecurity professionals under new leadership to restore its workforce, rebuild public-private threat sharing and strengthen U.S. defenses against nation-state cyberthreats. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/dhs-eyes-600-new-cybersecurity-hires-new-director-for-cisa-a-32105
-
Straiker Raises $64M to Safeguard Autonomous AI Agents
Series A Funding Supports Pre-Training, Reinforcement Learning for Security Models. AI security startup Straiker closed a $64 million Series A funding round to expand GPU infrastructure, develop specialized security models and strengthen defenses against increasingly autonomous enterprise AI agents capable of operating with minimal human oversight. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/straiker-raises-64m-to-safeguard-autonomous-ai-agents-a-32093
-
Webinar: Why business email compromise attacks keep succeeding
Business email compromise attacks increasingly rely on convincing impersonation rather than malware, making them harder for employees and traditional email defenses to detect. This webinar explores how behavioral AI can help identify sophisticated email threats and automate response workflows. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/webinar-why-business-email-compromise-attacks-keep-succeeding/
-
Once, cyber-attacks required great skill. AI is changing that | Bruce Schneier
Modern AI systems are, in effect, a universal adviser to help people do harmful things. We’ll need to harness AI for defense, tooEarlier this week, national security agencies from the Five Eyes that’s the rich, English-language-speaking countries club jointly released a <a href=”https://www.nsa.gov/Press-Room/News-Highlights/Article/Article/4523810/five-eyes-cyber-security-agencies-statement/”>statement warning of the increasing cyber risks of AI models: in particular, their…
-
From mythos to reality: Why the 2026 state of pentesting report proves the need for programmatic defenses
AI can find zero-days in minutes. Your defense strategy must evolve now. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/spons/from-mythos-to-reality-why-the-2026-state-of-pentesting-report-proves-the/823726/
-
Third-Party Breaches Teach Education Sector a Costly Lesson in Vendor Risk
Rising threats from third-party actors are forcing institutions to play defense to protect student data from ransomware and other attacks. First seen on darkreading.com Jump to article: www.darkreading.com/cyber-risk/third-party-breaches-teaches-education-lesson-vendor-risk
-
Claude Mythos 5 Redeployed to Help U.S. Organizations Strengthen Cyber Defense
Anthropic has officially restored access to its Claude Mythos 5 artificial intelligence model for a select group of U.S. organizations tasked with defending critical national infrastructure. This reinstatement ends a two-week suspension that began on June 12, 2026, which prompted direct, high-level engagement between the AI developer and federal authorities. Access to both Claude Mythos…
-
Water and Wastewater Systems Become Strategic Targets for Russia, China, and Iran
Water and wastewater systems have become strategic gray”‘zone targets for Russia, China, and Iran, driven by chronic underinvestment and weak operational”‘technology (OT) defenses that make these utilities easy to probe and exploit. Internet”‘facing human”‘machine interfaces (HMIs), exposed programmable logic controllers (PLCs), default credentials, and poor IT/OT segmentation create low”‘cost access paths whose impact is disproportionately…
-
China-Linked Malware Found in Counterfeit USB Drives Used on Japan Defense Force Classified Networks
Japan’s defense infrastructure has faced scrutiny following an investigation that revealed members of the Japan Self-Defense Forces (JSDF) used counterfeit USB drives embedded with malware linked to China on systems handling classified information. According to findings reported by Nikkei, these compromised USB devices were acquired at significantly lower costs through unofficial channels. They were subsequently…
-
Russian APT ‘Gamaredon’ Upgrades Its Arsenal, Requiring New Defenses
The FSB state-sponsored operation has gotten a lot better at loading its malware and hiding its servers. First seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/russia-apt-gamaredon-arsenal-defense
-
The 2026 MSSP Blueprint: Frontier AI Defense
First seen on scworld.com Jump to article: www.scworld.com/native/the-2026-mssp-blueprint-frontier-ai-defense
-
New GhostShell Hacking Group Targets Ukraine’s Drone Defense Sector
Researchers warn GhostShell is using fake drone documents to target Ukrainian defence teams, stealing passwords and sensitive data in a new cyber campaign. First seen on hackread.com Jump to article: hackread.com/ghostshell-hacking-group-ukraine-drone-defense-sector/
-
AWS Urges Organizations to Turn Outbound Blind Spots Into Monitored Checkpoints
When securing an Amazon Web Services (AWS) estate, teams naturally concentrate on inbound protections firewalls, WAFs, and IAM policies because those defenses stop the most visible attacks. Yet outbound traffic often remains under-monitored, left permissive to avoid breaking dependencies or to simplify operations. That default laxity creates a blind spot: without egress visibility and controls,…
-
Cybercriminals Abuse TDS Infrastructure to Bypass Firewalls and Hide Malicious Destinations
Cybercriminals are increasingly abusing traffic distribution systems (TDSs) to evade defenses, conceal malicious destinations, and funnel victims into phishing, fraud, and malware campaigns. Once considered a legitimate marketing tool to route visitors to different content or offers, TDS infrastructure is now being repurposed as a stealthy redirection layer that complicates detection and response for network…
-
OpenAI Lets Cyber Vendors Embed GPT-5.5 in Defenses
Tags: cyber, cybersecurity, defense, detection, incident response, openai, resilience, service, threat, vulnerabilityDaybreak Cyber Partner Program Extends GPT-5.5 Beyond Internal Security Use. OpenAI’s new Daybreak Cyber Partner Program allows 29 cybersecurity vendors, service providers and integrators to embed GPT-5.5 capabilities into customer-facing products and services, aiming to accelerate vulnerability remediation, threat detection, incident response and cyber resilience at scale. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/openai-lets-cyber-vendors-embed-gpt-55-in-defenses-a-32040
-
Top 10 Best Cyber Insurance Providers For Businesses in 2026
Tags: breach, cyber, cyberattack, cybersecurity, data, defense, insurance, phishing, ransomware, threatIn the fast-paced digital world of 2026, cyberattacks are no longer a matter of if, but when. The increasing sophistication of threats like ransomware, phishing, and data breaches means that even businesses with robust cybersecurity defenses are at risk. As a result, cyber insurance has evolved from a niche product into a critical component of…
-
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 102
Tags: ai, android, attack, china, cyber, defense, intelligence, international, malware, supply-chain, threatSecurity Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Malware Newsletter OptinMonster supply chain attack hits 1.2 million sites Public and Private Medical Community Targeted by China-Nexus Threat Actor Pursuing Artificial Intelligence, Cyber, Medical, and National Defense Research Rokarolla : Android Banker with Complete Device…
-
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 102
Tags: ai, android, attack, china, cyber, defense, intelligence, international, malware, supply-chain, threatSecurity Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Malware Newsletter OptinMonster supply chain attack hits 1.2 million sites Public and Private Medical Community Targeted by China-Nexus Threat Actor Pursuing Artificial Intelligence, Cyber, Medical, and National Defense Research Rokarolla : Android Banker with Complete Device…
-
Gentlemen RaaS Unifies HexKiller, ThrottleBlood, and HavocKiller in New Evasion Suite
An analysis of the Gentlemen ransomware-as-a-service (RaaS) operation has revealed a sophisticated, centralized approach to neutralizing endpoint detection and response (EDR) solutions. This unified defense evasion framework sets the group apart in an increasingly crowded ransomware landscape, significantly lowering the technical barrier for affiliates and driving the gang into the top five most active operations…
-
Forget traffic lights, Google’s reCAPTCHA may ask for hand gestures
Google has introduced hand gesture verification for reCAPTCHA, a new method for verifying that a user is human. Google’s reCAPTCHA is part of Google Cloud Fraud Defense, … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/19/google-recaptcha-hand-gesture-verification/
-
The Gentlemen RaaS Uses GentleKiller EDR Framework Targeting 400 Security Processes
The Gentlemen ransomware-as-a-service (RaaS) operation is actively developing and maintaining a suite of endpoint detection and response (EDR) killers that it hands out to affiliates for impairing system defenses before deploying the encryptor.This mature portfolio of EDR-terminating tools is centered around a framework that’s known as GentleKiller.”They also incorporate third-party or First seen on thehackernews.com…
-
Gentlemen ransomware uses multiple EDR killers to disable defenses
The Gentlemen ransomware-as-a-service (RaaS) is actively developing and maintaining a suite of endpoint detection and response (EDR) killers to help affiliates evade detection in attacks. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/gentlemen-ransomware-uses-multiple-edr-killers-to-disable-defenses/
-
CISA Urges OT Resilience in Dark Remarks About Cyberattacks
Tags: banking, china, cisa, cyber, cyberattack, defense, infrastructure, Internet, military, resilience, russia, serviceVital Service Providers Need a Plan to Work Through Internet Outages, CISA Says. Critical U.S. infrastructure like water, power and even banking systems will be successfully hacked by enemy cyber warriors in the event of a military confrontation with a peer adversary like Russia or China, officials from the nation’s civilian cyber defense agency said.…
-
CISA Urges OT Resilience in Dark Remarks About Cyberattacks
Tags: banking, china, cisa, cyber, cyberattack, defense, infrastructure, Internet, military, resilience, russia, serviceVital Service Providers Need a Plan to Work Through Internet Outages, CISA Says. Critical U.S. infrastructure like water, power and even banking systems will be successfully hacked by enemy cyber warriors in the event of a military confrontation with a peer adversary like Russia or China, officials from the nation’s civilian cyber defense agency said.…
-
CISA Urges OT Resilience in Dark Remarks About Cyberattacks
Tags: banking, china, cisa, cyber, cyberattack, defense, infrastructure, Internet, military, resilience, russia, serviceVital Service Providers Need a Plan to Work Through Internet Outages, CISA Says. Critical U.S. infrastructure like water, power and even banking systems will be successfully hacked by enemy cyber warriors in the event of a military confrontation with a peer adversary like Russia or China, officials from the nation’s civilian cyber defense agency said.…
-
MSPs need to rethink backup defense
First seen on scworld.com Jump to article: www.scworld.com/perspective/msps-need-to-rethink-backup-defense