SC Media
20 articles
AI coding tools must not propagate vulnerabilities, says NCSC head
UK National Cyber Security Centre CEO Richard Horne has called on security professionals at RSA Conference 2026 to harness the explosive growth of AI-assiste...
TeamPCP supply chain attack hits LiteLLM PyPI package
Widely used open-source Python package LiteLLM has been targeted by the TeamPCP threat operation to facilitate extensive data compromise as part of its Trivy...
Widespread cloud environment compromise facilitated by Trivy supply chain hack
More than 1,000 software-as-a-service environments were reported by Mandiant Consulting Chief Technology Officer Charles Carmakal to have already been compro...
Illicit npm packages leverage bogus install logs for covert malware infections
Infosecurity Magazine reports that multiple malicious npm packages with downloader capability have shown bogus installation logs to stealthily inject cryptoc...
Trojanized ConnectWise ScreenConnect installers deployed in tax-themed malvertising campaign
Intrusions weaponizing searches for illicit tax-related documents to spread trojanized ConnectWise ScreenConnect installers that facilitate a bring your own ...
US healthcare provider reportedly struck by Iranian ransomware gang
Iran-nexus ransomware gang Pay2Key has reportedly targeted a U.S.
HackerOne employees compromised in Navia Benefit Solutions hack
Bug bounty platform HackerOne had information from nearly 300 of its employees breached as a result of a cyberattack against its third-party benefits provide...
Infinite Campus reports hack after ShinyHunters extortion attempt
BleepingComputer reports that U.S.
Trends Revealed in Fortinet’s FortiGuard Labs 2026 Global Threat Landscape Report - Aamir Lakhani - RSAC26 #3
Additional details on Stryker hack emerge
Major U.S.
Dutch Ministry of Finance takes down systems affected by breach
Officials at the Dutch Ministry of Finance disclosed that the ministry's primary internal systems have been taken offline as an investigation continues to de...
Over 3M affected by QualDerm Partners attack
Security Affairs reports that U.S.
FCC bans foreign-made routers in bid to secure supply chain
Security pros OK with FCC’s move to ban foreign routers, but say the real risk lies with unmanaged identities.
Critical PTC Windchill, FlexPLM vulnerability poses RCE risk
U.S.
AI, funding concerns threaten future of CVE program
The Common Vulnerabilities and Exposures program was noted by Intel Product Security Incident Response Team Director Katie Noble, who is a board member for t...
Beyond the Audit: Making Cyber Risk Continuous, Quantified, and Actionable - Travis Wong - RSAC26 #3
US jails Russian ransomware access broker
CyberScoop reports that Russian national Aleksei Volkov is facing 81 months in prison for helping major ransomware groups carry out dozens of attacks that re...
Intel chiefs push clean 702 extension as deadline looms
CIA Director John Ratcliffe and FBI Director Kash Patel testified Thursday before the House Intelligence Committee in support of an 18-month "clean" extensio...
North Korean hacker caught within days by geography slip
Hackread reports that a suspected North Korean operative managed to slip through hiring checks for a Western company last year, only to be caught within 10 d...