This week’s Department of Know is hosted by Rich Stroffolinowith guests Gary ChanCISO, SSM Health and Peter LiebertCISO, Salesloft. Missed…
Ravie LakshmananMay 11, 2026Supply Chain Attack / DevSecOps Checkmarx has confirmed that a modified version of the Jenkins AST plugin…
Threat actors are abusing AI tools in increasingly sophisticated ways, including exploit development and attack orchestration.Google today published new research…
The ShinyHunters gang has claimed a second successive breach of Instructure, the supplier of the Canvas learning management system (LMS),…
The Iranian state-sponsored hacking group known as MuddyWater (aka Mango Sandstorm, Seedworm, and Static Kitten) has been attributed to a…
TeamPCP's extensive supply chain campaign continued this week, as the cybercriminal group compromised several SAP npm packages in a "Mini…
Every organization wants to be able to recover from a ransomware attack. So why does no one seem to test…
Ravie LakshmananApr 29, 2026Supply Chain Attack / Malware Cybersecurity researchers are sounding the alarm about a new supply chain attack…
An analysis of software artifacts from a malicious cyberattack targeting the energy and utilities sector in Venezuela late last year…
North Korea's BlueNoroff state-sponsored hacking group is targeting cryptocurrency executives in an audacious, financially motivated campaign that uses fake Zoom…