External News

Krebs On Security

• ‘CanisterWorm’ Springs Wiper Attack Targeting Iran
  March 23, 2026
  A financially motivated data theft and extortion group is attempting to inject itself into the Iran war, unleashing a worm that spreads through poorly secured […]
• Feds Disrupt IoT Botnets Behind Huge DDoS Attacks
  March 20, 2026
  The U.S. Justice Department joined authorities in Canada and Germany in dismantling the online infrastructure behind four highly disruptive botnets that compromised more than three […]
• Iran-Backed Hackers Claim Wiper Attack on Medtech Firm Stryker
  March 11, 2026
  A hacktivist group with links to Iran's intelligence agencies is claiming responsibility for a data-wiping attack against Stryker, a global medical technology company based in […]
• Microsoft Patch Tuesday, March 2026 Edition
  March 11, 2026
  Microsoft Corp. today pushed security updates to fix at least 77 vulnerabilities in its Windows operating systems and other software. There are no pressing "zero-day" […]
• How AI Assistants are Moving the Security Goalposts
  March 8, 2026
  AI-based assistants or "agents" — autonomous programs that have access to the user's computer, files, online services and can automate virtually any task — are […]
• Who is the Kimwolf Botmaster “Dort”?
  February 28, 2026
  In early January 2026, KrebsOnSecurity revealed how a security researcher disclosed a vulnerability that was used to assemble Kimwolf, the world's largest and most disruptive […]

Secure World

• The Skeleton Key Era: Attackers Are Logging In, Not Breaking In
  March 30, 2026
  The traditional image of a hooded figure exploiting a zero-day vulnerability to break into a server is becoming a historical relic. […]
• Power, Control, and the Life You Lose Trying to Hold On
  March 29, 2026
  One of my favorite Steven Pressfield quotes doesn't come from some of his best-known works, "The War of Art" and […]
• RSA Conference 2026 Recap: It's About Time for 'Power of Community'
  March 27, 2026
  Confession: While I've worked and attended tech events at the Moscone Center, when it comes to RSA Conference takes, I'm […]
• The Rise of the Agentic Enterprise: Navigating the Latest Cyber Risk
  March 27, 2026
  The conversation around AI is shifting from "chatbots" to "agents." According to the recent McKinsey & Company analysis, "Securing the […]
• Bridging the Governance Gap in the AI-Driven Enterprise
  March 26, 2026
  The transition from "AI curiosity" to "AI dependency" has happened faster than almost any other technological shift in recent history. […]
• 'Security Through Obscurity' Days Are Over for Manufacturing Sector
  March 25, 2026
  For years, the manufacturing sector operated under the "security through obscurity" model—relying on air-gapped systems and proprietary protocols to stay […]

Dark Reading

• Black Hat USA
  August 1, 2026
• AI-Powered 'DeepLoad' Malware Steals Credentials, Evades Detection
  March 30, 2026
  The massive amount of junk code that hides the malware's logic from security scans was almost certainly generated by AI, […]
• F5 BIG-IP Vulnerability Reclassified as RCE, Under Exploitation
  March 30, 2026
  CVE-2025-53521 was initially disclosed in October as a high-severity denial-of-service (DoS) flaw, but new information has revealed the bug is […]
• Manufacturing and Healthcare Share Struggles with Passwords
  March 30, 2026
  The two key economic sectors struggle with security for a reason: Many insiders view access management as a roadblock, while […]
• Storm Brews Over Critical, No-Click Telegram Flaw
  March 30, 2026
  The vulnerability, which is allegedly triggered by a corrupted sticker in the messaging app, received a 9.8 CVSS score, but […]
• China Upgrades the Backdoor It Uses to Spy on Telcos Globally
  March 27, 2026
  Chinese APT Red Menshen's super-advanced BPFdoor malware defeats traditional cybersecurity protections. All telcos can do, really, is try hunting it […]