Ransomware DataBreachToday.com

Researcher: If Exploited, Bug Could Crash Hospital Medical Imaging Systems
The Cybersecurity Infrastructure and Security Agency is warning of a high severity in Grassroots DICOM, an open-source library commonly used for medical imaging products, that if exploited could allow an attacker to send a specially crafted file resulting in a denial-of-service situation.

Google's Accelerated PQC Timeline Demands Enterprise Action Now
Google set a public deadline for migrating to post-quantum cryptography, setting a strong signal for IT and security leaders that they too should transition their encryption into more robust algorithms. Enterprises need a migration strategy now before the window closes.

Federal Review Questions Whether Private Insurers Can Absorb Cyber Losses
A Department of the Treasury review of cyber risk under the Terrorism Risk Insurance Program comes amid concern that nation-state attacks and systemic cyber events may overwhelm private insurers, raising the prospect of a federal backstop to protect critical infrastructure and economic stability.

European Commission Publishes Draft Guidance for Cyber Resilience Act
Key implementation deadlines loom for one of Europe's most consequential cybersecurity laws and draft guidance from the European Union may help manufacturers comply - up to a point.

The Mission: Hack High Value Targets' Devices, Apps and Transmit His Location
A team of cybersecurity students from the University of North Georgia vanquished seven opposing teams from other senior military colleges and elite service academies in an upset victory to win a capture the flag hacking contest staged this week at the National Defense University here.

Incidents Are Unrelated, Says NYC Health + Hospitals
Hackers had access to New York City's municipal healthcare system for nearly three months before being detected, stealing data of an undisclosed number of patients. The incident is the second hacking-related data breach within weeks involving a third-party firm hired by NYC Health + Hospitals.

Also, Russian Signal Phishing, Iran-Linked Malware, Breaches in Spain and France
This week, Tycoon 2FA, Trio-Tech, messaging app spying and a ransomware broker sentenced. Iran-linked hackers. Mazda disclosed a breach. Oracle patched a flaw. North Korean actors weaponized VS Code, a Spanish port ransomware attack, a French teacher data breach and a healthcare firm victim surge.

Proponents Favor Performance Tests Over Certs
The U.S. Department of Defense is for the first time piloting new skills-based assessments for its cyber hiring as an alternative to checking paper qualifications. Many certificates, officials say, don't reflect the skills their cyber teams need in the real world.

AI is compressing cyberattack timelines from months to minutes. While segmentation has been a gold standard security practice for years, many organizations are still operating with outdated, static approaches.

Cisco's Jeetu Patel: Everyone Will Be a 'Manager of Agents'
Coding agents that once struggled below the surface level of basic web development can now refactor decades-old enterprise code at a speed and scale far beyond traditional teams, says Cisco's Jeetu Patel. He explains how AI-built software and machine-scale defense redefine competitive advantage.

Google Threat Intelligence's Sandra Joyce on AI Threats and Active Defense
Sharing threat intelligence is no longer enough - the cybersecurity industry must operationalize it through coordinated takedowns and active disruption, says Sandra Joyce, vice president at Google Threat Intelligence.

Phil Venables of Ballistic Ventures on the Second-Order Consequences of AI
AI is not just transforming how organizations operate, it's fundamentally altering the cybersecurity landscape, said Phil Venables, partner at Ballistic Ventures. The consequences, he warned, are only beginning to emerge.

USC Study Finds Persona-Based Prompts Lower Factual Accuracy
A coder tells its chatbot: You're an expert. A full stack developer. It's machine massaging technique that's a cornerstone of persona-based artificial intelligence prompting - and it backfires, find academics in a studying showing the practice produces worst results, when the goal is accuracy.

Roadmap Focuses on OT Security, Grid Hardening and Incident Response
A new Department of Energy strategy defines its role as sector risk manager for grid security, prioritizing OT defense, resilience and response - but analysts say it faces execution challenges tied to reduced funding, workforce constraints and reliance on weakened federal partners.

IT Worker Scheme, Laptop Farm Siphon Funds Back to North Korea
A U.S. federal judge sentenced a now-former Army soldier to one year in prison Friday for renting his identity to North Korean IT workers who used it to collect more than $193,000 in salaries from American companies. Also sentenced were two California men who facilitated $1.28M in fraudulent salaries.

J.P. Morgan’s Brian Essex on Why Valuations Drop as Fundamentals Hold Steady
Investor anxiety over AI's long-term impact is dragging down stock valuations despite steady growth and profitability, while companies focus on long-term valuation assumptions and secure business models, said Brian Essex, executive director of U.S. software equity research at J.P. Morgan.

Visa CISO Subra Kumaraswamy on Securing Agents, Fighting Fraud, Protecting Commerce
AI is transforming trust in global payments as attackers scale faster and agents automate decisions. CISO Subra Kumaraswamy explains how Visa uses AI to combat fraud, secure transactions and build trust across consumers, merchants and a rapidly evolving digital ecosystem.

No Arrests, But Virtual Servers, IP Addresses Seized and Residencies Searched
U.S. authorities seized KimWolf - the attack infrastructure responsible for the largest distributed denial of service attack yet recorded in an international police operation that swept up servers underpinning four botnets.

Contec and Epsimed Monitors Containing 'Backdoors' Are at the Center of Order
Texas Gov. Abbott has ordered agencies to review foreign-made connected medical devices - especially those from Chinese manufacturers - used in state-owned facilities for cybersecurity issues that could pose security and privacy risks to patients and healthcare infrastructure.

Also: CISA Protocol Concerns, AI Agents Push Past Cybersecurity Controls
In this week's panel, four ISMG editors unpacked the cyber dimensions of the Stryker attack amid the escalating Iran-Israel-U.S. tensions, the growing controversy around CISA leadership and alleged protocol breaches, and a new set of concerns related to AI agents bypassing security controls.