AI's potential to disrupt cyber operations highlighted by cyber leaders
AI was emphasized by multiple cybersecurity leaders at RSAC 2026 to possibly unsettle cybersecurity operations, which could result in a major industry upheav...
SC Media
20 articles
Widespread compromise possible with Smart Slider WordPress plugin flaw
BleepingComputer reports that at least 500,000 WordPress sites are vulnerable to attacks involving a medium-severity flaw in the Smart Slider 3 plugin, which...
Major services accessible via exposed API keys, report finds
Nearly 2,000 API credentials enabling access to AWS, OpenAI, GitHub, and Stripe have been observed by Stanford University researchers to be exposed across 10...
ShinyHunters marks BreachForums departure with user database leak
Infamous cybercrime marketplace BreachForums had its latest database impacting over 300,000 users exposed by the ShinyHunters threat operation as it exited t...
Sterling Seacrest Pritchard breach hits over 7K
Sterling Seacrest Pritchard, a leading U.S.
More than 447K compromised by Lloyds IT glitch
Major UK retail and commercial financial services provider had information from over 447,000 customers using its mobile banking apps inadvertently exposed by...
Apple: Spyware compromise prevented by Lockdown Mode
TechCrunch reports that Apple has touted that all of its devices with the Lockdown Mode activated have not been impacted by spyware intrusions.
Clandestine BlankGrabber malware examined
Windows systems have been more stealthily compromised by the BlankGrabber malware through the exploitation of a counterfeit certificate holder for multi-stag...
PwC: Identity compromise a supply chain for attackers
PwC's "Cyber threats in motion" report warns that AI is giving attackers added sophistication, speed, and scale, but identity remains the fulcrum of entry, a...
How to secure real‑time carbon tracking in factories
Time to start treating sustainability telemetry as OT data.
Oops, all Interviews: Switching to Cyber, CISO Reflections, and the State of TPCRM - Lenny Zeltser, Helen Patton, Alexandre Sieira - ESW #452
BSides SF: SaaS, cloud assets vulnerable to identity-based ransomware attacks
It's easy to mount ransomware attacks upon SaaS and cloud assets, a researcher said at the BSides SF 2026 hacker conference.
Wormsign, RSAC 2026: More auto-updating supply-chain attacks on the way
The Shai-Hulud worms that exploited automatic updates in open-source software repositories may be only the beginning, two researchers said at RSAC 2026.
RSAC 2026: Treat AI like a ‘junior developer’ to catch coding errors
OX Security found AI coding assistants make the same common mistakes as humans.
Scam Baiting, AI, and the New Grift Economy, Part 2 - Rinoa Poison - SWN #567
Critical Langflow AI bug exploited within 20 hours added to CISA list
Experts warn that the timeframe between disclosure and exploitation will continue to shrink, so teams must prepare.
IBM's Srinivas Tummalapenta: Building the cyber risk intelligence layer
Padraic O’Reilly and Srinivas Tummalapenta explore how cybersecurity is evolving from fragmented data collection to a unified cyber risk intelligence layer.
SC Awards Finalist: Best Professional Certification Program - ISACA - Mary Carmichael - SCA26 #1
IBM's Evelyn Anderson: Enabling autonomous cyber risk programs
Matt Alderman and Evelyn Anderson explore how autonomous security programs are reshaping cyber governance.
Hack the Box's Gibb Witham: Measuring cyber readiness in the age of AI
Gibb Witham explains why organizations must move beyond assumed AI capability toward measurable, validated cyber readiness for both humans and AI systems.