Huntress and Acrisure launch simplified cyber insurance program
The program provides eligible organizations with access to unique Cyber or Tech Errors and Omissions (Tech E&O) insurance policies.
SC Media
20 articles
West Pharmaceutical Services hit by ransomware attack
The pharmaceutical packaging and delivery systems manufacturer experienced a ransomware attack on May 4, prompting the company to proactively shut down and i...
Instructure reaches agreement with hackers after Canvas data breach
ShinyHunters claimed responsibility for stealing more than 3.6 terabytes of data by exploiting security vulnerabilities in Instructure's Free-for-Teacher env...
Škoda Auto discloses data breach after online shop hack
Attackers exploited an unspecified vulnerability in the software of Škoda's e-commerce portal to gain unauthorized access.
Community Bank customer data exposed via unauthorized AI software
The bank, which serves customers in Pennsylvania, Ohio, and West Virginia, filed an 8-K with the U.S.
Fortinet addresses critical vulnerabilities in FortiSandbox and FortiAuthenticator
The first vulnerability, CVE-2026-44277, affects FortiAuthenticator's Identity and Access Management solution and was patched in versions 6.5.
Optimize Legal Operations as the CISO Role Changes to Address Skills Gaps and AI - Walter Scott Wilkens - BSW #447
Patch Tuesday: No zero days among 137 Microsoft CVEs, 4 Word RCEs
The May 2026 Microsoft security update included no zero days for the first time since June 2024.
Fighting fire with fire: Defending against Mythos-powered cyberattacks
How AI-powered exposure management reduces the opportunities AI-powered attackers depend on.
Tomato, JDownloader, TempPCP, Bad Vibes, Dirty Frag, Giedi Prime, Aaran Leyland... - SWN #580
‘Mini’ Shai-Hulud attack compromises hundreds of npm, PyPI packages
Teams warn the latest Shai-Hulud wave weaponizes trusted OIDC tokens to bypass package integrity checks.
Incident Response Tabletop Exercises: How CISOs Build Cyber Resilience Before Breach - WC #1
5 ways to defend against vibe hacking
Vibe hacking has arrived – here’s what to do about it.
Apple and Google roll out end-to-end encrypted RCS messaging
The E2EE RCS messaging feature is now available to iPhone users running iOS 26.5 with supported carriers and Android users on the latest Google Messages vers...
New GhostLock tool abuses Windows API to block file access
The GhostLock tool abuses the dwShareMode parameter within the Windows CreateFileW API.
Frame Security launches with $50 million to combat AI-driven social engineering
Frame Security's platform leverages AI to create realistic attack simulations and provide tailored, on-the-spot guidance to employees.
Linux maintainer proposes runtime killswitch for vulnerabilities
Linux kernel co-maintainer Sasha Levin has proposed a runtime killswitch mechanism, accessible via securityfs, to temporarily disable vulnerable kernel funct...
Threat actor Mr_Rot13 exploits critical cPanel flaw to deploy Filemanager backdoor
The exploitation of CVE-2026-41940, which affects cPanel and WebHost Manager, has been observed shortly after its public disclosure.
Google reports first known AI-assisted zero-day exploit in the wild
Attackers used AI to create an exploit script for a 2FA bypass flaw in an open-source project.