SC Staff

ESET’s Tony Anscombe on managing cyber risk as financially motivated attacks grow

• ransomware
• rsac

ESET’s Tony Anscombe on managing cyber risk as financially motivated attacks grow

SC Staff March 25, 2026

ESET's Tony Anscombe discusses how ransomware gangs use EDR Killers to disable cybersecurity tools.

Read More Read more about ESET’s Tony Anscombe on managing cyber risk as financially motivated attacks grow

Novee’s Ido Geffen on why AI pentesting is becoming essential

• penetration-testing
• rsac
• vulnerability-management

Novee’s Ido Geffen on why AI pentesting is becoming essential

SC Staff March 25, 2026

Novee's Ido Geffen explains what “AI penetration testing” means.

Read More Read more about Novee’s Ido Geffen on why AI pentesting is becoming essential

AI coding tools must not propagate vulnerabilities, says NCSC head

• Uncategorized

AI coding tools must not propagate vulnerabilities, says NCSC head

SC Staff March 25, 2026

UK National Cyber Security Centre CEO Richard Horne has called on security professionals at RSA Conference 2026...

Read More Read more about AI coding tools must not propagate vulnerabilities, says NCSC head

TeamPCP supply chain attack hits LiteLLM PyPI package

• threat-intelligence
• threat-management

TeamPCP supply chain attack hits LiteLLM PyPI package

SC Staff March 25, 2026

Widely used open-source Python package LiteLLM has been targeted by the TeamPCP threat operation to facilitate extensive...

Read More Read more about TeamPCP supply chain attack hits LiteLLM PyPI package

Widespread cloud environment compromise facilitated by Trivy supply chain hack

• identity
• third-party-code

Widespread cloud environment compromise facilitated by Trivy supply chain hack

SC Staff March 25, 2026

More than 1,000 software-as-a-service environments were reported by Mandiant Consulting Chief Technology Officer Charles Carmakal to have...

Read More Read more about Widespread cloud environment compromise facilitated by Trivy supply chain hack

Illicit npm packages leverage bogus install logs for covert malware infections

• malware
• ransomware

Illicit npm packages leverage bogus install logs for covert malware infections

SC Staff March 25, 2026

Infosecurity Magazine reports that multiple malicious npm packages with downloader capability have shown bogus installation logs to...

Read More Read more about Illicit npm packages leverage bogus install logs for covert malware infections

Dutch Ministry of Finance takes down systems affected by breach

• threat-intelligence
• threat-management

Dutch Ministry of Finance takes down systems affected by breach

SC Staff March 25, 2026

Officials at the Dutch Ministry of Finance disclosed that the ministry's primary internal systems have been taken...

Read More Read more about Dutch Ministry of Finance takes down systems affected by breach

Over 3M affected by QualDerm Partners attack

• identity
• Privacy

Over 3M affected by QualDerm Partners attack

SC Staff March 25, 2026

Security Affairs reports that U.S.-based healthcare management services firm QualDerm Partners was noted by the Department of...

Read More Read more about Over 3M affected by QualDerm Partners attack

Critical PTC Windchill, FlexPLM vulnerability poses RCE risk

• patchconfiguration-management
• threat-intelligence
• threat-management
• vulnerability-management

Critical PTC Windchill, FlexPLM vulnerability poses RCE risk

SC Staff March 25, 2026

U.S. computer software and services provider PTC has alerted that potential exploitation of a critical flaw in...

Read More Read more about Critical PTC Windchill, FlexPLM vulnerability poses RCE risk

AI, funding concerns threaten future of CVE program

• threat-intelligence
• threat-management

AI, funding concerns threaten future of CVE program

SC Staff March 25, 2026

The Common Vulnerabilities and Exposures program was noted by Intel Product Security Incident Response Team Director Katie...

Read More Read more about AI, funding concerns threaten future of CVE program