5 email threats to watch as identity and AI attacks evolve
Attacks on email that exploit OAuth consent, lateral phishing, and AI payroll fraud top the list.
SC Media
20 articles
LinkedIn accused of covert browser extension scanning in 'BrowserGate' report
The "BrowserGate" report claims LinkedIn injects JavaScript that identifies thousands of browser extensions, linking this information to user profiles.
N-able report highlights shift to proactive risk management in SOC operations
The report identifies six key metrics for moving from reactive to proactive security.
SparkCat malware returns on app stores, targeting cryptocurrency users
The malware, identified by cybersecurity firm Kaspersky, has appeared in apps on both iOS and Android platforms, primarily targeting cryptocurrency users in ...
Malicious Chrome extension steals ChatGPT conversations
The ChatGPT Ad Blocker extension employed a DOM cloning technique to copy and filter conversations, focusing on text longer than 150 characters.
Former engineer pleads guilty to server extortion plot
The engineer, Daniel Rhyne, used administrator credentials to access the company's network and schedule tasks to delete admin accounts and change passwords.
Qilin ransomware group targets German political party Die Linke, threatens data leak
The cyberattack occurred on March 27, with the party confirming a network compromise shortly after. While Die Linke stated that its membership database was n...
Battling payment fraud with tokenization and executive interviews from RSAC 2026 - Brian Oh, Mickey Bresman, Ashish Jain, Thyaga Vasudevan, Jimmy White - ESW #453
Breaking the trade-off: Full email security without deployment friction
How API-based security is redefining email protection in the face of escalating human risk.
DexterBot, Darksword, Eviltokens, Tubular Bells, Claude, Drift, Gmail, Josh Marpet... - SWN #569
Stryker back online after cyberattack
BleepingComputer reports that major U.S.
Over 257K compromised in Texas hospital hack
Texas-based Nacogdoches Memorial Hospital had personal and medical information from 257,073 patients stolen following a cyberattack in January, Cybernews rep...
Brokk purportedly hacked by Play ransomware, data leaked
Brokk, a leading Swedish global remote-controlled demolition machinery manufacturer, had a 4 GB dataset allegedly stolen from its systems exposed by the Russ...
Malicious LNK files, GitHub leveraged in South Korea-targeted malware campaign
Infosecurity Magazine reports that Windows users across South Korea have been subjected to attacks involving illicit LNK files that trigger multi-stage compr...
Bogus installers facilitate RAT, cryptominer spread in long-running operation
Threat operation REF1695 has been harnessing counterfeit installers to facilitate multiple attack campaigns delivering remote access trojans and cryptocurren...
Accelerated Akira ransomware intrusions examined
CyberScoop reports that increasingly efficient techniques have significantly reduced the Akira ransomware operation's attack times.
Multiple EU entities impacted by European Commission breach, CERT-EU says
At least 29 other European Union entities were disclosed by CERT-EU to have had their data compromised following the TeamPCP supply chain attack against the ...
Threat actors impersonate CERT-UA, distribute AGEWHEEZE malware
The campaign targeted approximately 1 million users across various sectors, including government, healthcare, education, and finance.
The complexity crisis in network security: Why policy governance matters
Only firm policy governance can tame the rampant growth of complexity across enterprise environments.
Axios maintainer’s post mortem confirms social engineering by UNC1069
Jason Saayman says he installed a remote access trojan disguised as a Teams update.