Cybersecurity News

Daily Briefing
N2K logo
2 hours ago
Ingram Micro confirms ransomware attack. Spanish police shut down investment scam operation.
Brazil arrests suspect in $140 million bank hack.
Week that Was
N2K logo
Jul 5, 2025
Scattered Spider hits airlines.
Critical sudo flaw allows Linux users to gain root privileges. US Justice Department shutters suspected North Korean laptop farms.
The FAIK Files
N2K logo
Jul 4, 2025
Cognitive Inoculation: Winn Schwartau and the Metawar
This week, we're sharing our interview with Winn Schwartau! Winn Schwartau ⁠is a respected authority in information security and one of the earliest voices to warn about the risks of cyberwarfare. With a career spanning decades, he’s written extensively on topics like critical infrastructure vulnerabilities, time-based security, and the human factors behind digital threats. His work has shaped the way governments and organizations think about cybersecurity today. You should check out his book ⁠The Art & Science of Metawar: How to Coexist With AI-Driven Reality Distortion, Disinformation, & Addiction in the Metaverse⁠!
CyberWire Daily
N2K logo
Jul 3, 2025
The bug that let anyone in.
Sudo patch your Linux systems. Cisco has removed a critical backdoor account that gave remote attackers root privileges.The Hunters International ransomware group rebrands and closes up shop. The Centers for Medicare and Medicaid Services (CMS) notifies 103,000 people that their personal data was compromised. NimDoor is a sophisticated North Korean cyber campaign targeting macOS. Researchers uncover a massive phishing campaign using thousands of fake retail websites. The FBI’s top cyber official says Salt Typhoon is largely contained. Microsoft tells customers to ignore Windows Firewall error warnings. A California jury orders Google to pay $314 million for collecting Android user data without consent. Ben Yelin shares insights from this year’s Supreme Court session. Ransomware negotiations with a side of side hustle.
Caveat
N2K logo
Jul 3, 2025
Supreme Court upholds $8 billion internet and phone service fund.
Supreme Court upholds Texas age-check law.
Daily Briefing
N2K logo
Jul 3, 2025
Critical sudo flaw allows Linux users to gain root privileges.
Cisco patches maximum-severity flaw in Unified Communications Manager. Hunters International shuts down operations.
Threat Vector
N2K logo
Jul 3, 2025
Hunting Threats in Developer Environments
Cyber attackers are increasingly targeting the very tools developers trust—integrated development environments (IDEs), low-code platforms, and public code repositories. In this episode of Threat Vector, host ⁠David Moulton⁠ speaks with ⁠Daniel Frank⁠ and ⁠Tom Fakterman⁠ from Palo Alto Networks' threat research team. They uncover how nation-state actors and cybercriminals are using trusted development tools like Visual Studio Code to run malware, exfiltrate data, and stay undetected. Listeners will learn about real-world APT campaigns, why dev tools are high-value targets, and how organizations can secure their software supply chain without slowing down developers.
Caveat
N2K logo
Jul 3, 2025
A nation divided can’t stand secure.
This week, we are joined by ⁠Gary Barlet⁠, former Federal CIO and Air Force Cyber Operations Officer and current Public Sector CTO at ⁠Illumio⁠, to discuss how this approach to cybersecurity leaves some states much more at risk than others. Ben discusses some major Supreme Court decisions from the just concluded 2025 term. Dave's got the story of a license plate reader company dialing back access after media reports reveal potential oversharing.
Hacking Humans
N2K logo
Jul 3, 2025
Brushed aside: The subtle scam you didn't order.
This week, our hosts⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ ⁠⁠⁠Dave Bittner⁠⁠⁠, ⁠⁠⁠⁠⁠⁠⁠⁠Joe Carrigan⁠⁠⁠⁠⁠⁠⁠⁠, and ⁠⁠⁠⁠⁠⁠⁠⁠Maria Varmazis⁠⁠⁠⁠⁠⁠⁠⁠ (also host of the ⁠⁠⁠⁠⁠⁠⁠⁠T-Minus⁠⁠⁠⁠⁠⁠⁠⁠ Space Daily show) are back sharing the latest in social engineering scams, phishing schemes, and criminal exploits that are making headlines. We start with some follow up, as Joe shares with us a complaint he has with Vanguard. Maria’s story is on McAfee’s latest research revealing that one in five Americans has fallen for a travel scam—often losing hundreds of dollars—despite many trying to stay vigilant, as scammers use fake websites, AI-altered photos, and phishing links to exploit deal-seeking travelers. Joe’s got two stories this week: the first one is from Rachel Tobac on LinkedIn, breaking down how attackers like Scattered Spider are using phone-based impersonation, fake domains, and social engineering to breach insurance companies, and the second is on Aflac confirming it was hit in a cyberattack believed to be part of a broader campaign targeting the insurance sector, likely tied to the same threat group. Dave’s story is on brushing scams, a scheme the United States Postal Service is warning about, where scammers send unordered packages—often low-cost items—to people’s addresses so they can fraudulently post fake “verified” reviews online using the recipient’s name and address to boost product rankings. Our catch of the day is from the scams sub-Reddit, where someone shared text messages from a scammer asking for only a small favor.
CyberWire Daily
N2K logo
Jul 2, 2025
Houken blends stealth and chaos.
French authorities report multiple entities targeted by access brokers. A ransomware group extorts a German hunger charity. AT&T combats SIM swapping and account takeover attacks. A Missouri physician group suffers a cyber attack. Qantas doesn’t crash, but their computers do. Researchers uncover multiple critical vulnerabilities in Agorum Core Open. A student loan administrator in Virginia gets hit by the Akira ransomware group. The Feds sanction a Russian bulletproof hosting service. Johnson Controls notifies individuals of a major ransomware attack dating back to 2023. Will Markow, CEO of FourOne Insights and N2K CyberWire Senior Workforce Analyst shares the latest technology workforce trends. The ICEBlock app warms up to users.
Business
N2K logo
Jul 2, 2025
LevelBlue to acquire Trustwave. Cato Networks raises $359 million in Series G round.
Bret Arsenault retires from his full-time role at Microsoft.
Daily Briefing
N2K logo
Jul 2, 2025
Qantas discloses breach affecting up to 6 million customers.
France describes hacking campaign targeting Ivanti appliances. US sanctions bulletproof hosting provider.
Load More
Gain instant access to our exclusive podcast and briefing content, the Pro Academy, live events and more by subscribing to N2K Pro.
Subscribe Now