SMBs Know They’re At Risk, but Most Aren’t Embracing AI
A survey by CrowdStrike finds the gap between SMB awareness of cyber threats and efforts by them to protect themselves is widening, with not enough of them spending the money needed on AI and other tools to defend against ransomware and other attacks ... Read More
Trump Proposes Cutting CISA Budget by $491 Million
President Trump wants to cut CISA's budget by $491 million, or 17%, to refocus it on its "core mission" and end what he said is censorship of him and his supporters. Critics of the cuts accusing the administration of politicizing cybersecurity and opening the door wider to adversaries like China ... Read More
Spyware Maker NSO Ordered to Pay WhatsApp $168 Million for 2019 Hack
Meta, which owns WhatsApp, became the first company to sue and win against NSO Group, the maker of the notorious Pegasus spyware, when a U.S. ruled in December that the vendor hacked into 1,400 mobile devices in 2019. A jury ordered NSO Group to pay Meta and WhatsApp almost $168 ... Read More
U.S. Wins One, Maybe Two, Extradition Petitions in Unrelated Cases
In short order, U.S. prosecutors won an extradition case to bring a suspect in multiple ransomware cases to the United States and had another in England move in their favor when the British judge paved the way for an alleged hacker hired by a lobbyist firm to target climate change ... Read More
California Man Will Plead Guilty to Last Year’s Disney Hack
A 25-year-old California man will plead guilty to hacking into a Disney's personal computer and using stolen credentials to break into thousands of Disney Slack channels. Ryan Mitchell Kramer, who claimed to be a member of the Russian group NullBulge, then leaked the data when the victim didn't respond to ... Read More
Treasury Moves to Ban Huione Group for Laundering $4 Billion
The Treasury Department is moving to cut off Huione Group, a Cambodian conglomerate, from the U.S. financial system, saying the firm and its multiple entities laundered billions of dollars for North Korea's Lazarus Group and criminal gangs running pig-butchering scams from Southeast Asia ... Read More
Anthropic Outlines How Bad Actors Abuse Its Claude AI Models
Anthropic shows how bad actors are using its Claude AI models for a range of campaigns that include influence-as-a-service, credential stuffing, and recruitment scams and becomes the latest AI company to push back at threat groups using their tools for malicious projects ... Read More
Cybersecurity CEO Charged With Installing Malware on Hospital Computers
Jeffrey Bowie, the CEO of cybersecurity company Veritaco, was seen on security camera footage walking into St. Anthony Hospital in Oklahoma City last year and installing malware on an employee computer. He was arrested this month for violating the state's cybercrime statute ... Read More
North Korean Group Creates Fake Crypto Firms in Job Complex Scam
The North Korean hackers behind the Contagious Interview worker scam, which threat intelligence analysts have followed since late 2023, are now hiding behind three bogus crypto companies they created as fronts for their info- and crypto-stealing operations ... Read More
ARMO: io_uring Interface Creates Security ‘Blind Spot’ in Linux
Researchers from security firm ARMO developed a POC rootkit called Curing that showed how the io_uring interface in Linux could be exploited by bad actors to bypass system calls, creating what they calle a "massive security loophole" in the operating system's runtime security ... Read More
