The software defects, which have a maximum-severity rating, do not require authentication and allow remote attackers to execute code arbitrarily on the underlying system.
The post Cisco network access security platform vulnerabilities under active exploitation appeared first on CyberScoop.
A program manager at Lawrence Livermore National Laboratory told lawmakers Tuesday that the recent contract expiration puts OT security at risk.
The post Contract lapse leaves critical infrastructure cybersecurity sensor data unanalyzed at national lab appeared first on CyberScoop.
GOP lawmakers say they’re committed to altering national voting laws to make it easier for states to purge potentially eligible voters.
The post House Republicans endorse stricter state and federal-led voter roll purges despite dearth of evidence on fraud appeared first on CyberScoop.
Linen Typhoon, Violet Typhoon and Storm-2603 are behind the initial attack spree that erupted over the weekend. Other threat groups are now following suit.
The post Microsoft SharePoint zero-day attacks pinned on China-linked ‘Typhoon’ threat groups appeared first on CyberScoop.
Private companies would also have to report to the government if they plan to pay off cybercriminals.
The post UK moves to ban public sector organizations from making ransom payments appeared first on CyberScoop.
As the state responded to a pro-Iranian attack, officials tell CyberScoop that it avoided reaching out to the federal agency, partly because it has been “politicized and weakened” under the president.
The post After website hack, Arizona election officials unload on Trump’s CISA appeared first on CyberScoop.
Attackers have already used the exploit dubbed “ToolShell” to intrude hundreds of organizations globally, including private companies and government agencies.
The post Mass attack spree hits Microsoft SharePoint zero-day defect appeared first on CyberScoop.
The U.S. is stepping into a new cyber era, and it comes not a moment too soon. With the Trump administration’s sweeping $1 billion cyber initiative in the “Big Beautiful Bill” and growing congressional momentum under the 2026 National Defense Authorization Act (NDAA) to strengthen cyber deterrence, we’re seeing a shift in posture that many […]
The post Why it’s time for the US to go on offense in cyberspace appeared first on CyberScoop.
The hackers were allegedly involved in operations against Ukraine and a Russian on U.K. soil, the latter with malware tied to U.S. 2016 election interference.
The post UK sanctions Russian hackers, spies as US weighs its own punishments for Russia appeared first on CyberScoop.
The food distributor and wholesaler completely shut down its systems upon discovering the attack last month, yet core systems were restored and normal operating capacity returned within three weeks.
The post United Natural Foods loses up to $400M in sales after cyberattack appeared first on CyberScoop.
Karen Vardanyan and his co-conspirators allegedly deployed ransomware on hundreds of machines in 2019 and 2020, extorting more than $15 million from victims at the time.
The post Ryuk ransomware operator extradited to US, faces five years in federal prison appeared first on CyberScoop.
The House Homeland Committee will revisit the malware to use the knowledge from the spy effort to explore the domestic threats facing the U.S. in 2025.
The post House hearing will use Stuxnet to search for novel ways to confront OT cyberthreats appeared first on CyberScoop.
Google Threat Intelligence Group said a financially motivated threat group is abusing the outdated remote access VPN devices, underscoring a continued pattern of threats confronting SonicWall customers.
The post SonicWall customers hit by fresh, ongoing attacks targeting fully patched SMA 100 devices appeared first on CyberScoop.
The lawmakers say the potential is high for such a system to return false positives, blocking citizens from voting.
The post Senate Democrats seek answers on Trump overhaul of immigrant database to find noncitizen voters appeared first on CyberScoop.
Over a dozen law enforcement agencies took action earlier this week, resulting in multiple arrests.
The post Pro-Russian DDoS group NoName057(16) disrupted by international law enforcement operation appeared first on CyberScoop.
Cameron Wagenius faces a maximum of 27 years in prison. A researcher that helped with the investigation called this ‘one of the most significant wins in the fight against cybercrime.'
The post Former Army soldier pleads guilty to widespread attack spree linked to AT&T, Snowflake and others appeared first on CyberScoop.
In congressional testimony, President Trump’s former national security adviser said his use of Signal to coordinate military operations was “driven by” cybersecurity guidance from CISA.
The post Waltz brushes off SignalGate questions, points finger at CISA appeared first on CyberScoop.
ESET researchers observed tens of thousands of machines infected with AsyncRAT and its variants over the past year. The open-source malware is a popular tool among cybercriminals.
The post AsyncRAT seeds family of more than 30 remote access trojans appeared first on CyberScoop.
The bipartisan legislation would codify the agency’s position as the one in charge of coordinating responses to incidents like the breach on U.S. telecoms.
The post House passes bill to formalize NTIA’s cyber role following Salt Typhoon attacks appeared first on CyberScoop.
The number of Citrix customers impacted by CVE-2025-5777 remains unknown, but researchers have already observed more than 11.5 million attack attempts, targeting thousands of sites.
The post CitrixBleed 2 beckons sweeping alarm as exploits spread across the globe appeared first on CyberScoop.
