Tag: usa

The cybercrime industry continues to challenge CISOs in 2026

Jan 23, 2026 8:30 PM

Tags: access, ai, attack, automation, backup, best-practice, breach, business, ciso, compliance, control, credentials, crime, crowdstrike, cyber, cybercrime, cybersecurity, data, data-breach, deep-fake, defense, detection, disinformation, espionage, exploit, extortion, fortinet, framework, fraud, governance, group, hacker, hacking, identity, incident response, infection, infrastructure, insurance, intelligence, malware, metric, network, phishing, ransom, ransomware, resilience, risk, saas, service, soar, social-engineering, sophos, strategy, supply-chain, technology, theft, threat, tool, training, update, usa, vpn, vulnerability

Evolution of the security strategy: Alessandro Armenia, global head of cybersecurity at ReeVo, believes that three key aspects are emerging in the current landscape: “First, attacks are no longer isolated events, but coordinated, in some cases automated, operations that often originate within the organizations themselves, for example, due to human error or exposed credentials. Second,…
The cybercrime industry continues to challenge CISOs in 2026

Jan 23, 2026 8:30 PM

Tags: access, ai, attack, automation, backup, best-practice, breach, business, ciso, compliance, control, credentials, crime, crowdstrike, cyber, cybercrime, cybersecurity, data, data-breach, deep-fake, defense, detection, disinformation, espionage, exploit, extortion, fortinet, framework, fraud, governance, group, hacker, hacking, identity, incident response, infection, infrastructure, insurance, intelligence, malware, metric, network, phishing, ransom, ransomware, resilience, risk, saas, service, soar, social-engineering, sophos, strategy, supply-chain, technology, theft, threat, tool, training, update, usa, vpn, vulnerability

Evolution of the security strategy: Alessandro Armenia, global head of cybersecurity at ReeVo, believes that three key aspects are emerging in the current landscape: “First, attacks are no longer isolated events, but coordinated, in some cases automated, operations that often originate within the organizations themselves, for example, due to human error or exposed credentials. Second,…
Gesellschaft für Informatik: Europa soll USA bei kritischer Infrastruktur ausschließen

Jan 23, 2026 12:30 AM

Tags: infrastructure, usa

Unterwürfigkeit gegenüber dem US-Tech-Imperialismus sei fatal, sagt die Gesellschaft für Informatik. First seen on golem.de Jump to article: www.golem.de/news/beschaffungsmarkt-europa-soll-usa-bei-kritischer-infrastruktur-ausschliessen-2601-204525.html
Beschaffungsmarkt: Europa soll USA bei kritischer Infrastruktur ausschließen

Jan 22, 2026 11:30 PM

Tags: infrastructure, usa

Die Gesellschaft für Informatik hat eine weitgehende Position zum neuen Kolonialismus durch Technologie entwickelt. Unterwürfigkeit gegenüber dem US-Tech-Imperialismus sei fatal. First seen on golem.de Jump to article: www.golem.de/news/beschaffungsmarkt-europa-soll-usa-bei-kritischer-infrastruktur-ausschliessen-2601-204525.html
Latin American Orgs Lack Confidence in Cyber Defenses, Skills

Jan 22, 2026 6:46 PM

Tags: cyber, cyberattack, cybersecurity, defense, infrastructure, skills, usa

Cybersecurity professionals in Latin America are least likely to have faith in their countries’ preparedness for cyberattacks on critical infrastructure, the World Economic Forum says. First seen on darkreading.com Jump to article: www.darkreading.com/cyber-risk/latin-american-confidence-cyber-defenses-skills
China-Linked APT Exploited Sitecore Zero-Day in Critical Infrastructure Intrusion

Jan 22, 2026 10:30 AM

Tags: apt, china, exploit, infrastructure, threat, usa, zero-day

A threat actor likely aligned with China has been observed targeting critical infrastructure sectors in North America since at least last year.Cisco Talos, which is tracking the activity under the name UAT-8837, assessed it to be a China-nexus advanced persistent threat (APT) actor with medium confidence based on tactical overlaps with other campaigns mounted by…
New Research Exposes Critical Gap: 64% of Third-Party Applications Access Sensitive Data Without Authorization

Jan 21, 2026 3:13 PM

Tags: access, data, usa

Boston, MA, USA, 21st January 2026, CyberNewsWire First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/01/new-research-exposes-critical-gap-64-of-third-party-applications-access-sensitive-data-without-authorization/
New Research Exposes Critical Gap: 64% of Third-Party Applications Access Sensitive Data Without Authorization

Jan 21, 2026 3:13 PM

Tags: access, data, usa

Boston, MA, USA, 21st January 2026, CyberNewsWire First seen on hackread.com Jump to article: hackread.com/new-research-exposes-critical-gap-64-of-third-party-applications-access-sensitive-data-without-authorization/
Hacker erbeuten rund 42.000 Datensätze von Ingram Micro

Jan 21, 2026 1:13 PM

Tags: cyberattack, hacker, ransomware, usa

Bei Ingram Micro wurden rund 42.000 Datensätze mit sensiblen Informationen von Mitarbeitern gestohlen.Im Juli 2025 sorgte ein Ransomware-Angriff für verheerende Folgen bei Ingram Micro: Die Logistik des IT-Distributors wurde eine Woche lahmgelegt davon betroffen war nicht nur der Hauptsitz in den USA, sondern auch der Standort in Deutschland.Nun hat sich herausgestellt, dass dabei auch sensible…
EU-Kommission will Huawei und ZTE aus Netzen verbannen

Jan 21, 2026 11:13 AM

Tags: 5G, china, cyberattack, cyersecurity, germany, infrastructure, ransomware, risk, usa, vulnerability

Die EU-Kommission will chinesische Hersteller wie Huawei und ZTE aus europäischen Mobilfunknetzen verbannen, um die Cybersicherheit zu verbessern.Die EU-Kommission will umstrittene Anbieter von Netzwerktechnik künftig in Deutschland und anderen EU-Staaten verbieten können. Bei dem Vorschlag dürfte es insbesondere um chinesische Technologiefirmen wie Huawei und ZTE gehen. Hintergrund ist die Sorge vor Sabotage und Spionage durch…
China-linked APT UAT-8837 targets North American critical infrastructure

Jan 17, 2026 6:14 PM

Tags: apt, china, cisco, group, infrastructure, tactics, threat, usa

Cisco Talos says a China-linked group, tracked as UAT-8837, has targeted North American critical infrastructure since last year. Cisco Talos reports that threat group UAT-8837, likely linked to China, has targeted critical infrastructure in North America since at least last year. The activity shows tactics overlapping with known China-linked clusters. >>Cisco Talos is closely tracking…
China-Linked APT Exploits Sitecore Zero-Day in Attacks on American Critical Infrastructure

Jan 16, 2026 10:51 AM

Tags: apt, attack, china, exploit, infrastructure, threat, usa, zero-day

A threat actor likely aligned with China has been observed targeting critical infrastructure sectors in North America since at least last year.Cisco Talos, which is tracking the activity under the name UAT-8837, assessed it to be a China-nexus advanced persistent threat (APT) actor with medium confidence based on tactical overlaps with other campaigns mounted by…
Chinese hackers targeting ‘high value’ North American critical infrastructure, Cisco says

Jan 15, 2026 10:52 PM

Tags: china, cisco, credentials, hacker, infrastructure, usa

Chinese hackers successfully breached multiple critical infrastructure organizations in North America over the last year using a combination of compromised credentials and exploitable servers, researchers at Cisco Talos found. First seen on therecord.media Jump to article: therecord.media/china-hackers-apt-cisco-talos
UAT-8837 targets critical infrastructure sectors in North America

Jan 15, 2026 1:12 PM

Tags: china, cisco, infrastructure, threat, usa

Cisco Talos is closely tracking UAT-8837, a threat actor we assess with medium confidence is a China-nexus advanced persistent threat (APT) actor. First seen on blog.talosintelligence.com Jump to article: blog.talosintelligence.com/uat-8837/
Schlag gegen Cyberkriminelle in Deutschland

Jan 15, 2026 10:11 AM

Tags: cybercrime, germany, infrastructure, Internet, mail, microsoft, phishing, software, usa, windows

Internationalen Ermittlern und Microsoft ist ein Schlag gegen die Infrastruktur des Cybercrime-Dienst RedVDS gelungen. Die Server standen auch in Deutschland.In einer konzertierten Aktion haben Strafverfolgungsbehörden in Deutschland, den USA und Großbritannien zusammen mit Microsoft den globalen Cyberkriminalitätsdienst RedVDS zerschlagen. Das bestätigten die Zentralstelle für Internet- und Computerkriminalität (ZIT) bei der Generalstaatsanwaltschaft in Frankfurt sowie das Landeskriminalamt…
What is AI fuzzing? And what tools, threats and challenges generative AI brings

Jan 15, 2026 9:11 AM

Tags: ai, attack, breach, ceo, chatgpt, china, cisco, cve, cyber, cyberattack, cybercrime, cybersecurity, data, finance, gartner, google, government, group, hacker, injection, intelligence, LLM, malicious, mitre, open-source, RedTeam, russia, service, social-engineering, software, sql, technology, threat, tool, usa, vulnerability

How fuzzing works: In 2019, AI meant machine learning, and it was emerging as a new technique for generating test cases. The way traditional fuzzing works is you generate a lot of different inputs to an application in an attempt to crash it. Since every application accepts inputs in different ways, that requires a lot…
SpyCloud Launches Supply Chain Solution to Combat Rising Third-Party Identity Threats

Jan 14, 2026 7:11 PM

Tags: cyber, government, identity, monitoring, risk, supply-chain, threat, usa

Austin, TX / USA, January 14th, 2026, CyberNewsWire New monitoring capability delivers unprecedented visibility into vendor identity exposures, moving enterprises and government agencies from static risk scoring to protecting against actual identity threats. SpyCloud, the leader in identity threat protection, today announced the launch of its Supply Chain Threat Protection solution, an advanced layer of…
SpyCloud Launches Supply Chain Solution to Combat Rising Third-Party Identity Threats

Jan 14, 2026 7:11 PM

Tags: identity, supply-chain, threat, usa

Austin, TX / USA, 14th January 2026, CyberNewsWire First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/01/spycloud-launches-supply-chain-solution-to-combat-rising-third-party-identity-threats/
SpyCloud Launches Supply Chain Solution to Combat Rising Third-Party Identity Threats

Jan 14, 2026 7:11 PM

Tags: identity, supply-chain, threat, usa

Austin, TX / USA, 14th January 2026, CyberNewsWire First seen on hackread.com Jump to article: hackread.com/spycloud-launches-supply-chain-solution-to-combat-rising-third-party-identity-threats/
Hexaware Partners with AccuKnox for Cloud Security Services

Jan 13, 2026 8:02 PM

Tags: ai, cloud, cyber, infrastructure, service, usa, zero-trust

Menlo Park, USA, January 13th, 2026, CyberNewsWire AccuKnox has entered into a partnership with Hexaware Technologies to expand its Zero Trust cloud security platform into enterprise accounts managing hybrid and multi-cloud infrastructure. With rising complexity across hybrid, multi-cloud, and agentic-AI environments, organizations are prioritizing robust cloud security infrastructure that can scale. The AccuKnox and Hexaware partnership…
Hexaware Partners with AccuKnox for Cloud Security Services

Jan 13, 2026 12:01 PM

Tags: cloud, service, usa

Menlo Park, USA, 13th January 2026, CyberNewsWire First seen on hackread.com Jump to article: hackread.com/hexaware-partners-with-accuknox-for-cloud-security-services/
How GenAI Is Aiding a Rise in Identity-Based Threats

Jan 12, 2026 11:01 PM

Tags: ai, attack, ciso, defense, identity, monitoring, phishing, threat, training, usa

Thales CISO Eric Liebowitz Outlines Urgent Defenses for AI-Driven Phishing Threats. The shift from brute-force attacks to AI-powered phishing is creating tougher challenges for defenders. Thales CISO, Americas, Eric Liebowitz says combining employee training with behavioral monitoring and AI guardrails is essential to mitigate identity risk. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/how-genai-aiding-rise-in-identity-based-threats-a-30493
Entscheidungsfrist bis Ende 2026 – EU plant, den USA Zugriff auf biometrische Daten zu gewähren

Jan 12, 2026 11:01 AM

Tags: access, usa

First seen on security-insider.de Jump to article: www.security-insider.de/usa-fordert-zugriff-auf-fingerabdruecke-und-gesichtsscans-eu-buerger-a-0814fa085f985ec6de45baae90af5c75/
JumpCloud Grows Presence in Brazil With MSP MacSolution Buy

Jan 8, 2026 4:01 PM

Tags: cloud, msp, service, usa

Acquisition of MSP MacSolution Boosts Global Services and Cloud Migration Expertise. JumpCloud has acquired MacSolution, a longtime partner and its largest MSP in the Americas, to enhance global service delivery and deepen its IT modernization capabilities. The move positions Sao Paulo, Brazil, as a strategic hub and strengthens support for partners and customers in Latin…
Top cyber threats to your AI systems and infrastructure

Jan 8, 2026 9:01 AM

Tags: ai, api, attack, best-practice, business, chatgpt, ciso, cloud, cyber, cybersecurity, data, defense, detection, exploit, framework, governance, hacker, infrastructure, injection, intelligence, LLM, malicious, mitre, monitoring, open-source, RedTeam, risk, sans, service, skills, software, strategy, supply-chain, tactics, theft, threat, tool, training, unauthorized, usa, vulnerability

Data poisoning Data poisoning is a type of attack in which bad actorsmanipulate, tamper with, and pollute the data used to develop or train AI systems, including machine learning models. By corrupting the data or introducing faulty data, attackers can alter, bias, or otherwise render inaccurate a model’s performance.Imagine an attack that tells a model…
Time to restore America’s cyberspace security system

Jan 5, 2026 12:52 PM

Tags: access, china, government, infrastructure, network, russia, tool, usa

China’s campaign to break into our critical infrastructure and federal government networks is persistent and growing. Beijing is stealing information while also planting tools and maintaining access in key systems, giving it the option to pressure the United States in the future. Russia also continues to test our critical infrastructure with increasingly sophisticated operations, support…
Was bei der Cloud-Konfiguration schiefläuft und wie es besser geht

Jan 5, 2026 5:52 AM

Tags: access, ai, authentication, breach, cloud, cyberattack, cybersecurity, cyersecurity, data-breach, infrastructure, Internet, least-privilege, mfa, monitoring, risk, saas, service, tool, usa, zero-trust

Fehlerhaft konfigurierte Cloud-Dienste sorgen regelmäßig für Datenlecks und schlimmeres.Konfigurationsfehler in der Cloud, die Unternehmensdaten gefährden, sind nicht unbedingt etwas Neues eher im Gegenteil. Umso schlimmer, dass Unternehmen ihre Cloud-Ressourcen immer noch nicht durchgängig absichern. Zumindest legt das ein aktueller Report nahe. Dafür hat der Cloud-Sicherheitsanbieter Qualys 101 Cybersecurity- und IT-Profis befragt, zu deren Aufgaben es…
Fingerabdrücke und Gesichtsbilder: USA wollen Zugriff auf Millionen europäischer Polizeidaten

Jan 4, 2026 3:52 PM

Tags: access, usa

Die USA fordern direkten Zugriff auf europäische Polizeidatenbanken mit Biometriedaten – nicht nur von Reisenden. Die EU-Kommission soll verhandeln. First seen on golem.de Jump to article: www.golem.de/news/fingerabdruecke-und-gesichtsbilder-usa-wollen-zugriff-auf-millionen-europaeischer-polizeidaten-2601-203764.html
A Happy, Prosperous Safe New Year 2026 Wish To You And Yours

Jan 1, 2026 1:52 PM

Tags: data, usa

via Photographer Marjory Collins in New York City, NY, USA, January 1943. Blowing Horns on Bleeker Street, New Year’s Day Permalink First seen on securityboulevard.com Jump to article: https://securityboulevard.com/2026/01/a-happy-prosperous-safe-new-year-2026-wish-to-you-and-yours/
Tipps für CISOs, die die Branche wechseln wollen

Dec 29, 2025 5:55 AM

Tags: ceo, ciso, cyber, defense, finance, healthcare, jobs, mobile, risk, switch, usa

Tipps für CISOs mit “Vertical-Switch-Ambitionen”.In der Außenperspektive sollte es für Menschen, die es zum Chief Information Security Officer gebracht haben, eigentlich kein Problem sein, die Branche zu wechseln. In der Realität stellen viele Sicherheitsentscheider allerdings regelmäßig fest, dass das Gegenteil der Fall ist: Wenn man einmal in einer bestimmten Branche tätig ist, gestaltet es sich…