Search the site
Industry Insights
Podcasts
Briefings
Stories
Events
Glossary
N2K Pro
CISO Perspectives
Podcasts
Briefings
Hash Table
1
st
Principles Course
About
Our Story
Press
Team
Testimonials
Sponsor
Partners
Dev
API
Account
Profile
Logout
Home
Search the site
Industry Insights
Podcasts
Briefings
Stories
Events
Glossary
N2K Pro
CISO Perspectives
Podcasts
Briefings
Hash Table
1
st
Principles Course
Dev
API
About
Our Story
Press
Team
Testimonials
Sponsor
Partners
July 18, 2026
Join Pro
LOGIN
14 hours ago
When trusted sites turn.
Lauren Fievisohn, Ph.D, Senior Threat Researcher from Silent Push, is sharing their work on "Meet DriveSurge: A New Threat Actor Using ClickFix and Fake Update Drive-By Attacks in Thousands of Compromised Sites." Silent Push researchers have identified a newly named threat actor, DriveSurge, which has compromised thousands of legitimate websites and uses ClickFix and fake browser update lures to distribute malware at scale through a pay-per-install operation. The group leverages a traffic distribution system called zTDS to silently redirect visitors from trusted websites to malicious payloads, while employing sophisticated infrastructure, obfuscation, and fingerprinting techniques to evade detection. The report also details how DriveSurge targets both Windows and macOS users and provides defenders with eight infrastructure fingerprints to help identify and disrupt the campaign.
Research Saturday
14 hours ago
When trusted sites turn.
Lauren Fievisohn, Ph.D, Senior Threat Researcher from Silent Push, is sharing their work on "Meet DriveSurge: A New Threat Actor Using ClickFix and Fake Update Drive-By Attacks in Thousands of Compromised Sites." Silent Push researchers have identified a newly named threat actor, DriveSurge, which has compromised thousands of legitimate websites and uses ClickFix and fake browser update lures to distribute malware at scale through a pay-per-install operation. The group leverages a traffic distribution system called zTDS to silently redirect visitors from trusted websites to malicious payloads, while employing sophisticated infrastructure, obfuscation, and fingerprinting techniques to evade detection. The report also details how DriveSurge targets both Windows and macOS users and provides defenders with eight infrastructure fingerprints to help identify and disrupt the campaign.
Research Saturday
Cybersecurity News
CyberWire Daily
22 hours ago
A nightmare on Windows street.
Nightmare Eclipse drops another Windows zero-day. The Gentlemen take the ransomware crown. CISA orders emergency Fortinet patching. Canada’s surveillance bill faces U.S. scrutiny. Meta’s Oversight Board flags AI censorship bias. Commerce tops the cyber target list. An active espionage campaign hits Bangladesh’s military. The Hewlett Foundation commits $100 million to emerging tech security. And U.S. prosecutors dismantle an alleged cyber-enabled money laundering network. Our guest is Nick Stohlman, Vice President of CJIS Strategy at Imprivata, talking about CJIS readiness and the identity security challenges facing public safety agencies. Leaked source code reveals an AI mixtape.
Daily Briefing
Jul 17, 2026
Nightmare Eclipse drops another Windows zero-day.
The Gentlemen topped the ransomware leaderboard in Q2 2026. Ransomware attack disrupts Fairlife dairy production.
Week that Was
Jul 17, 2026
The Pentagon suspends CMMC Phase II requirements.
Patch Tuesday notes: Microsoft fixes a record 570 flaws. Nightmare Eclipse drops another Windows zero-day.
CyberWire Daily
Jul 16, 2026
For hackers, sharing is caring.
CISA warns of active SharePoint attacks. The NSA pushes coordinated vulnerability disclosure. ClickLock Stealer targets macOS. Splunk and Zoom patch critical flaws. Spirals ransomware strikes in under 24 hours. New Windows evasion techniques emerge. LabubaRAT poses as NVIDIA software. 23andMe settles over its 2023 breach. Plus, a look back at one of the most audacious data center heists ever pulled off. Our guest is Ryan Kalember, Chief Strategy Officer at Proofpoint, discussing why agentic AI is creating a new insider threat. Near, far, wherever you are…the scam must go on.
Caveat
Jul 16, 2026
EU tells Meta to make major changes to its social media platforms.
Pentagon suspends CMMC program.
Daily Briefing
Jul 16, 2026
CISA warns of actively exploited SharePoint flaws.
A new stealthy ransomware family emerges. Law enforcement operation disrupts international fraud scheme.
AI Security Brief
Jul 16, 2026
Who governs your AI agents?
Your team spent a decade maturing privileged access management. Then AI agents arrived and they don’t log in like humans. Now your biggest insider threat is an AI agent that lacks the access it needs, and then it goes to get it. In this episode Sundari Parekh, VP of AI Security and Cyber Risk Advisory for TrendAI™, addresses a hard truth: PAM was never fully solved, and non-human identity and agentic AI are amplifying the gap. Her fix: stop building a separate AI team, upend your identity thinking, and shift from gatekeeping AI adoption to safely enabling it.
Caveat
Jul 16, 2026
The future of transatlantic data sharing.
This week, Dave and Ben look at how the Supreme Court's recent decision could impact data-sharing efforts with the European Union (EU). Additionally, they discuss how the LA Police Department has let its contract with Flock expire after reports emerged that the company was found to be investigating and surveilling innocent people.
Hacking Humans
Jul 16, 2026
Caught on ScamTok
This week, while Maria is out hosts Dave Bittner and Joe Carrigan are discussing the latest in social engineering scams, phishing schemes, and criminal exploits that are making headlines. Dave covers a phishing campaign using fake Facebook verification emails to trick users into handing over their account credentials. Joe highlights the Better Business Bureau's new Scam Tracker heat map for visualizing scam trends and discusses a global INTERPOL operation that led to thousands of arrests and hundreds of millions of dollars in seized fraudulent funds. Our Catch of the Day is on a scam-baiter who encounters a hilariously inept TikTok scam account, proving that not every scammer is a master criminal.
CyberWire Daily
Jul 15, 2026
Patchapalooza packs a punch.
Patch Tuesday. SonicWall urges immediate patching of actively exploited vulnerabilities. The White House launches an AI-backed vulnerability clearinghouse. The Air Force contends with widespread cybersecurity quarantines. The UK and EU blame Russia for last year’s cyberattack on Poland’s power grid. Meta faces accusations of AI-assisted layoffs. NATO allies collaborate in space. The Pentagon offers paid cyber apprenticeships. Spanish police dismantle a cybercrime and money-laundering network. Our guest is Clark Frogley, Global Head of Fraud at Quantexa and former FBI agent, discussing the fraud-as-a-service economy and what banks are missing. Grok Build users data is cloudy with a chance of uploads.
Business
Jul 15, 2026
Israeli identity management startup Oak emerges from stealth with $60 million in seed funding.
Barracuda Networks has acquired Austin, Texas-based identity and access management provider Evo Security.
Daily Briefing
Jul 15, 2026
Patch Tuesday notes: Microsoft fixes a record 570 flaws.
SonicWall warns of a maximum-severity zero-day. Business news: Valarian raises $50 million in Series A funding.
Load More
Gain instant access to our exclusive podcast and briefing content, the Pro Academy, live events and more by subscribing to N2K Pro.
Subscribe Now