NEWS

Application security

Fake npm utilities remotely delete entire app directories

Laura FrenchJune 6, 2025

The malicious packages create backdoor endpoints and act as wipers when activated.

Google Chrome application icon on Apple iPhone X screen close-up. Google Chrome app icon. Google Chrome application.

Application security

Chrome extensions transmit sensitive data over HTTP, leak API keys

Steve ZurierJune 6, 2025

Security pros warn that the leaked data could be used to launch profiling, phishing, or other targeted attacks.

Threat Intelligence

0-click exploitation of iMessage nickname feature revealed

Laura FrenchJune 5, 2025

The now-resolved issue was potentially used to target high-profile individuals, researchers say.

I Agents Business Analyze Businesses Together with Al Assistants to Perform Tasks That Suit Their Goals, Such as Work, Education, Data Analysis, Sales, Content Creation, Payroll Processing, etc.

Identity

Securing AI agent identities crucial to enterprises, says research firm

Karen "Pepper" HoffmanJune 5, 2025

Agentic identity and security platforms (AISP) are quickly becoming the standard for security, says Aragon Research.

Illustration of a padlock on a cloud with a computer motherboard, symbolizing internet security, cloud computing data protection, digital privacy, and technology

Identity

Cisco patches Identity Services Engine flaw affecting AWS, Azure, OCI

Steve ZurierJune 5, 2025

Cloud deployments of the Cisco Identity Services Engine could let attackers access sensitive data.

Women in IT Security

Nominations open: SC Media’s 2025 Women in IT Security

Heidi MurphyJune 5, 2025

SC Media opens nominations for its 12th annual Women in IT Security program, spotlighting leadership, resilience, and impact across the cybersecurity industry.

Network Security

Open-source Chaos RAT used in recent attacks targeting Linux

Laura FrenchJune 4, 2025

The free remote administration tool enables reverse shell access, file management and command execution.

Man using laptop to chat with AI Chatbot Assistant or Artificial Intelligence Technology, Hologram Robot Application and Global Connectivity

Identity

Lumos touts ‘Albus’ as first AI agent for autonomous identity governance

Karen "Pepper" HoffmanJune 4, 2025

New AI multi-agent system to assist organizations in scaling up identity governance and administration.

3d illustration of Application software programming source code. Open source concept.

Identity

Open-source code repos open to supply chain attacks, researchers warn

Steve ZurierJune 4, 2025

Multiple malicious packages were discovered on npm, PyPI and RubyGems repositories.

Google Chrome icon featuring red, green, yellow, and blue elements placed at screen, used for secure browsing, online access, and efficient internet navigation tasks

Identity

Google to drop trust of Chunghwa and NetLock certificates from Chrome

Shaun NicholsJune 3, 2025

Google cites "patterns of concerning behavior" with China- and Hungary-based certificate authorities.

NEWS

Fake npm utilities remotely delete entire app directories

Chrome extensions transmit sensitive data over HTTP, leak API keys

0-click exploitation of iMessage nickname feature revealed

Securing AI agent identities crucial to enterprises, says research firm

Cisco patches Identity Services Engine flaw affecting AWS, Azure, OCI

Nominations open: SC Media’s 2025 Women in IT Security

Open-source Chaos RAT used in recent attacks targeting Linux

Lumos touts ‘Albus’ as first AI agent for autonomous identity governance

Open-source code repos open to supply chain attacks, researchers warn

Google to drop trust of Chunghwa and NetLock certificates from Chrome

Upcoming Webcasts

From fragmented to unified: Rethinking network security operations in the AI era

Beyond legacy defenses: How AI is reshaping security operations for the modern enterprise

Securing the Cloud in the AI Era: How Security Teams Can Reduce Risk, Gain Visibility, and Stay Compliant

How Hackers are trying to Attack AI Data Centers using Wireless Devices

Preparing for the Inevitable: Strengthening Incident Response in a Rapidly Evolving Threat Landscape

Perspectives

Why companies must solve the IT/OT challenge

Connected and exposed: Building a cyber future America can trust

Clientless ZTNA promises to take teams beyond the VPN

Cybersecurity News Articles | SC Media

NEWS

Fake npm utilities remotely delete entire app directories

Chrome extensions transmit sensitive data over HTTP, leak API keys

0-click exploitation of iMessage nickname feature revealed

Securing AI agent identities crucial to enterprises, says research firm

Cisco patches Identity Services Engine flaw affecting AWS, Azure, OCI

Nominations open: SC Media’s 2025 Women in IT Security

Open-source Chaos RAT used in recent attacks targeting Linux

Lumos touts ‘Albus’ as first AI agent for autonomous identity governance

Open-source code repos open to supply chain attacks, researchers warn

Google to drop trust of Chunghwa and NetLock certificates from Chrome

Upcoming Webcasts

From fragmented to unified: Rethinking network security operations in the AI era

Beyond legacy defenses: How AI is reshaping security operations for the modern enterprise

Securing the Cloud in the AI Era: How Security Teams Can Reduce Risk, Gain Visibility, and Stay Compliant

How Hackers are trying to Attack AI Data Centers using Wireless Devices

Preparing for the Inevitable: Strengthening Incident Response in a Rapidly Evolving Threat Landscape

Perspectives

Why companies must solve the IT/OT challenge

Connected and exposed: Building a cyber future America can trust

Clientless ZTNA promises to take teams beyond the VPN