Cyber threats, Government and Risk - Cyber Security Informer

U.S. Lawmakers Push to Ban DeepSeek from Government Devices

SecureWorld News

FEBRUARY 6, 2025

Representatives Josh Gottheimer (D-NJ) and Darin LaHood (R-IL) introduced the bipartisan No DeepSeek on Government Devices Act, seeking to prohibit federal employees from using the AI-powered application DeepSeek on government-issued devices. Federal Communications Commission (FCC) for security concerns. For the U.S. For the U.S.

Government

Government Artificial Intelligence Data privacy Mobile

LW ROUNDTABLE: Wrist slap or cultural shift? SEC fines cyber firms for disclosure violations

The Last Watchdog

NOVEMBER 12, 2024

Unisys, for instance, was found to have framed cyber risks hypothetically even though its systems had already been breached, exfiltrating gigabytes of data. In a world of interconnected services, GenAI-driven tools, and continuously new and novel emerging threats, full disclosure is not always practical or even possible.

CISO

CISO CSO Risk Cyber threats

The Hidden Risk in Enterprise Security: Are Big Firms Too Reliant on the Wrong Providers?

Jane Frankland

JULY 22, 2025

Could this mean that large enterprises are actually more at risk than smaller ones? The irony is stark: choosing a partner based on who’s safest to blame—not who’s best at protection—can increase the risk of a breach in the first place. That’s what I’m exploring in this blog. Let’s dive in. ” The outcome?

Risk

Risk Cyber threats Cybersecurity CISO

AI-Powered GRC: Revolutionizing Risk Management and Compliance

SecureWorld News

JANUARY 14, 2025

In the rapidly evolving landscape of corporate governance, risk management, and compliance (GRC), artificial intelligence (AI) has emerged as a game-changing force. This technological leap allows organizations to identify patterns, predict potential risks, and automate routine compliance tasks with remarkable efficiency.

Risk

Risk Artificial Intelligence Data privacy Government

Elon Musk ’s DOGE team granted ‘full access’ to sensitive Treasury systems. What are the risks?

Security Affairs

FEBRUARY 3, 2025

Ron Wyden warns of national security risks after Elon Musk s DOGE was given full access to sensitive Treasury systems. Ron Wyden warned of national security risks after Elon Musk s team, Department of Government Efficiency (DOGE), was granted full access to a sensitive U.S. Treasury payments system poses significant risks.

Risk

Risk Surveillance Cyber threats Marketing

From Compliance to Confidence: How AI Is Reshaping Third-Party Risk

SecureWorld News

MAY 13, 2025

As geopolitical instability, supply chain disruption, and cyber threats continue to escalate, third-party risk management (TPRM) is evolving from a compliance function to a strategic business imperative. According to the EY survey , 87% of organizations have experienced a third-party risk incident in the past three years.

Risk

Risk Cyber Risk Artificial Intelligence Technology

Federal Contractor Cybersecurity Vulnerability Reduction Act Passes in U.S. House

SecureWorld News

MARCH 6, 2025

government. Aligning federal contractors with security best practices Federal contractors often handle sensitive data and operate critical infrastructure, making them prime targets for cyber threats. government and among the many contractors and vendors that support federal agencies."

Cybersecurity

Cybersecurity Government Marketing Cyber threats

LW ROUNDTABLE: Predictive analytics, full-stack visualization to solidify cyber defenses in 2025

The Last Watchdog

DECEMBER 18, 2024

Madhu Shashanka , Chief Data Scientist, Concentric AI Generative AI in 2025 will bring transformative opportunities but heightened cybersecurity risks, including data exposure, AI misuse, and novel threats like prompt injection attacks. Organizations face rising risks of AI-driven social engineering and personal device breaches.

Risk

Risk Threat Detection Technology Phishing

Cybersecurity Snapshot: U.S. Gov’t Urges Adoption of Memory-Safe Languages and Warns About Iran Cyber Threat

Security Boulevard

JUNE 27, 2025

government’s latest call for developers to use memory-safe programming languages, as well as its warning for cybersecurity teams regarding cyber risk from hackers tied to Iran. Plus, get the latest on ransomware trends, the quantum computing cyber threat and more! Low-level cyber attacks against U.S.

Cyber threats

Cyber threats Cybersecurity Computers and Electronics Password Management

Google's AI Trends Report: Key Insights and Cybersecurity Implications

SecureWorld News

FEBRUARY 25, 2025

AI-powered threat detection is enabling organizations to identify and neutralize attacks faster, but adversarial AI is also supercharging cyber threats. According to the report: "AI can analyze vast amounts of security data in real time, identifying anomalies and potential threats faster than traditional methods.

Cybersecurity

Cybersecurity Social Engineering Artificial Intelligence Cyber threats

Australia, Canada, New Zealand, and the U.S. warn of PRC-linked cyber espionage targeting telecom networks

Security Affairs

DECEMBER 4, 2024

The government agencies released a guide that advises telecom and critical infrastructure defenders on best practices to strengthen network security against PRC-linked and other cyber threats. The agencies recommend robust measures to protect enterprise networks against cyber threats. broadband providers.

Telecommunications

Telecommunications Government Mobile Cyber threats

News alert: CyTwist launches threat detection engine tuned to identify AI-driven malware in minutes

The Last Watchdog

JANUARY 7, 2025

For example, in a recent attack on French corporates and government agencies, an AI-engineered malware exploited advanced techniques like COM hijacking and encrypted payloads, enabling attackers to remain undetected for extended periods, exfiltrate sensitive data, and establish long-term persistence within the network.

Threat Detection

Threat Detection Engineering Malware Artificial Intelligence

MY TAKE: RSAC 2025 – Conversing with vendors hanging out in the Marriott Marquis mezzanine

The Last Watchdog

MAY 1, 2025

Approov: Securing cloud-mobile APIs Ted Miracco, CEO of Approov, painted a vivid picture of modern mobile risk: Your mobile app is under attack the moment it talks to the cloud especially over public Wi-Fi. But without automation, he added, threat teams are drowning. Theyre totally different tech and governance models.

Mobile

Mobile Government CISO Technology

The Real Cost of Decentralising Cybersecurity in a Fragmented Regulatory World

Jane Frankland

JULY 17, 2025

That rugby-box insight wasn’t just banter—it reflected a deeper truth that’s reshaping the cyber landscape. Around the world, governments are weaponising regulation—using cyber laws to block foreign firms, force data localisation, and demand access to proprietary systems under the guise of compliance.

Cybersecurity

Cybersecurity Risk Marketing Government

How threat actors can use generative artificial intelligence?

Security Affairs

DECEMBER 1, 2024

From generating deepfakes to enhancing phishing campaigns, GAI is evolving into a tool for large-scale cyber offenses GAI has captured the attention of researchers and investors for its transformative potential across industries. Unfortunately, its misuse by malicious actors is altering the cyber threat landscape.

Artificial Intelligence

Artificial Intelligence Phishing Cybercrime Media

Ghost Ransomware a Persistent Global Threat to Critical Infrastructure

SecureWorld News

FEBRUARY 20, 2025

The FBI, CISA, and MS-ISAC have issued a joint cybersecurity advisory warning organizations about Ghost (Cring) ransomware, a sophisticated cyber threat that has been compromising critical infrastructure, businesses, and government entities worldwide.

Ransomware

Ransomware IoT Encryption Social Engineering

Report Unveils Cybersecurity Leaks in U.S. Drinking Water Systems

SecureWorld News

NOVEMBER 18, 2024

Among the key findings: Widespread vulnerabilities: The OIG's passive assessment revealed critical or high-risk vulnerabilities in 97 drinking water systems serving more than 26.6 Neglecting security measures for ICS can indeed pose a significant threat. "OT/ICS million people. Water is no exception."

Cybersecurity

Cybersecurity Risk Penetration Testing Technology

Amazon's Latest Data Breach a Ripple Effect of MOVEit

SecureWorld News

NOVEMBER 13, 2024

The threat actor responsible for the breach, known as "Nam3L3ss," has been actively exploiting the MOVEit vulnerability to target numerous organizations. The group has been observed leaking stolen data, potentially putting individuals and businesses at risk. The third-party vendor breached in the attack was not identified.

Data breaches

Data breaches Identity Theft Education Software

World Backup Day: A Clarion Call for Cyber Resilience

SecureWorld News

MARCH 31, 2025

But in the face of modern cyber threats, including ransomware that specifically seeks out and deletes backups, that mindset can be catastrophic. According to Ken Dunham, Director of Cyber Threat at Qualys Threat Research Unit (TRU): "Ransomware continues to rage, using tactics to discover and delete backups to force a payout.

Backups

Backups Encryption Mobile CISO

Report Shows Ransomware Has Grown 41% for Construction Industry

Digital Shadows

NOVEMBER 12, 2024

This marks a staggering 83% increase from the previous year , making credential exposure the top threat type. These factors, exacerbated by inherent weaknesses such as inadequate government regulations and underinvestment in cybersecurity, make the sector particularly vulnerable to ransomware attacks.

Ransomware

Ransomware Phishing Cyber threats Malware

CISA Cuts: What They Mean for Cyber Defense for All

SecureWorld News

APRIL 10, 2025

Operational readiness: Reducing the workforce means fewer hands on deck to monitor, detect, and respond to cyber threats in real-time. Resource allocation: With less staffing, CISA may struggle to keep up with the increasingly complex cyber threats and vulnerabilities that target critical sectors. Public, if you will.

Energy and Utilities

Energy and Utilities Backups Healthcare Cyber threats

The C-Suite Power Shift: Why CIOs, CTOs, and CISOs Must Realign to Survive

Jane Frankland

JUNE 8, 2025

However, the lines are blurring and if these executive roles don’t realign—clearly and deliberately—the result will be friction, inefficiency, and exposure to security and reputational risks that no organisation can afford. The CIO: At Risk of Being Sidelined Historically, the CIO oversaw enterprise-wide IT. Projects stall.

CISO

CISO Digital transformation Technology Risk

Canada Releases 2025 National Cyber Security Strategy

SecureWorld News

FEBRUARY 12, 2025

The Honourable David McGuinty, Minister of Public Safety, on February 6th unveiled Canada's National Cyber Security Strategy (NCSS), a long-term plan to protect Canadians, businesses, and critical infrastructure from an increasingly complex cyber threat landscape. The immediate knee jerk reaction to this is, FINALLY!"

Cyber threats

Cyber threats Cybercrime Cybersecurity Government

Top 10 Cybersecurity Trends to Expect in 2025

Hacker's King

DECEMBER 24, 2024

As the digital landscape evolves, cybersecurity remains a critical concern for businesses, governments, and individuals alike. With the advent of new technologies and rising cyber threats , 2025 promises significant shifts in the cybersecurity domain.

Cybersecurity

Cybersecurity Cyber Insurance IoT Insurance

GUEST ESSAY: Four essential strategies to bolster cyber resilience in critical infrastructure

The Last Watchdog

MARCH 10, 2025

While any business is a potential target for hackers, critical infrastructure organizations including defense, healthcare, energy, utilities, and financial services companies are perhaps most at risk due to their financial resources. I-Cross-functional collaboration Cyber resilience isnt possible when teams operate in silos.

Energy and Utilities

Energy and Utilities Cyber threats Financial Services Government

UK Cybersecurity Weekly News Roundup – 31 March 2025

Security Boulevard

MARCH 30, 2025

UK Warned of Inadequate Readiness Against State-Backed Cyberattacks Cybersecurity experts have sounded the alarm over the UK's growing vulnerability to state-sponsored cyber threats. A recent report by the National Cyber Security Centre (NCSC) shows a 16% increase in severe cyber incidents affecting national infrastructure in 2024.

Cybersecurity

Cybersecurity Digital transformation Healthcare Ransomware

State of Cybersecurity in Canada 2025: Key Insights for InfoSec Leaders

SecureWorld News

FEBRUARY 5, 2025

The State of Cybersecurity in Canada 2025 report, published by the Canadian Cybersecurity Network (CCN) and the Security Architecture Podcast , delivers an in-depth analysis of the evolving threat landscape, emerging risks, and strategic recommendations for Canadian organizations. Key findings: the cyber threat landscape in 2025 1.

InfoSec

InfoSec Cybersecurity Energy and Utilities Cyber Insurance

MasterCard Buys Recorded Future for $2.6B: What It Means for AI Cybersecurity

SecureWorld News

DECEMBER 5, 2024

In total, they work with 45 national governments and 1500+ clients in 75 countries , making them the world's largest threat intelligence company. This automation enables their cybersecurity teams to focus on high-value risks rather than getting bogged down in mundane alert management.

Cybersecurity

Cybersecurity Threat Detection Financial Services Cyber threats

EU Pumps €1.3 Billion into Cybersecurity, AI, and Digital Skills to Fortify Europe’s Tech Future

eSecurity Planet

APRIL 3, 2025

The funding, part of the Digital Europe Programme (DIGITAL) for 2025-2027, aims to strengthen Europes tech sovereignty and protect critical infrastructure from growing cyber threats. Another significant effort is developing a Cyber Resilience Act single reporting platform. The European Commission is making a massive 1.3

Cybersecurity

Cybersecurity Artificial Intelligence Government Technology

Healthcare Cybersecurity Market Soars: Key Trends and Insights

SecureWorld News

MAY 2, 2025

The healthcare sector faces an unprecedented wave of cyber threats, which in turn is fueling record growth in cybersecurity spending. Breaches can disrupt care delivery and put lives at risk, not to mention lead to hefty compliance fines. The market's expected ris e to $82.9

Healthcare

Healthcare Marketing Cybersecurity CISO

WHEN IS CYBERSECURITY IS WEEK

Hacker's King

OCTOBER 26, 2024

Cybersecurity Week is a global initiative that brings together various stakeholders—government agencies, educational institutions, and private companies—to promote understanding and awareness of cybersecurity issues. Stay Informed: Cyber threats are constantly evolving.

Cybersecurity

Cybersecurity Cyber threats Education Passwords

Empowering Boards for Cybersecurity Incidents

SecureWorld News

JANUARY 12, 2025

A 2022 PwC study found that 59% of directors admitted their board is not very effective in understanding the drivers and impacts of cyber risks for their organization, emphasizing the critical role of board members in these moments. Only a select group of properly trained individuals should escalate cyber incidents to the board.

Cybersecurity

Cybersecurity Data breaches Ransomware Government

Low-Cost Security for Small Businesses

Approachable Cyber Threats

MARCH 25, 2025

Category Awareness, Cybersecurity Fundamentals Risk Level Cybersecurity doesnt have to be expensiveaffordable training and free government resources can go a long way in protecting your business from human error, the root of most cyber incidents. Why is training so important?

Small Business

Small Business Cybersecurity Risk Government

Silk Typhoon: Unmasking the Cyber Espionage Threat Targeting the U.S. Supply Chain

Approachable Cyber Threats

MARCH 18, 2025

Category News, Vulnerabilities Risk Level Hackers are setting their sights on the IT supply chain, and your data is the prize. Meet Silk Typhoonthe latest cyber threat you need to know about. Lets dive into one of the more recently active threats - Silk Typhoon. Who is Silk Typhoon? Not sure where to start?

Cyber threats

Cyber threats Scams Software Phishing

News alert: INE Security spotlights healthcare companies facing rising exposure to costly breaches

The Last Watchdog

MARCH 24, 2025

24, 2025, CyberNewswire – – INE Security , a global provider of cybersecurity training and certification, today announced its initiative to spotlight the increasing cyber threats targeting healthcare institutions. Cary, NC, Mar.

Healthcare

Healthcare Penetration Testing Education Cyber threats

How Website Localization Strengthens Cybersecurity in Global Markets

SecureWorld News

FEBRUARY 4, 2025

officials began seriously discussing the creation of a military Cyber Force dedicated to thwarting cyberattacks. However, the answer to cyber threats is proactivity. Although some of the risks of localization for cybersecurity are unpredictable emergent occurrences, most of them can be tackled preemptively. EU, and China.

Marketing

Marketing Cybersecurity eCommerce Data breaches

City of Columbus breach affects around half a million citizens

Malwarebytes

NOVEMBER 4, 2024

A ransomware attack against the City of Columbus, Ohio—which drew public scrutiny following the city government’s attempt to silence a researcher who told the public about the attack—has received a little more detail from an unexpected source: The Attorney General for the state of Maine.

Data breaches

Data breaches Passwords Phishing Ransomware

Cybersecurity Snapshot: Tenable Highlights Risks of AI Use in the Cloud, as UK’s NCSC Offers Tips for Post-Quantum Cryptography Adoption

Security Boulevard

MARCH 21, 2025

Check out key findings and insights from the Tenable Cloud AI Risk Report 2025. In addition, find out how AI is radically transforming cyber crime. And get the latest on open source software security; cyber scams; and IoT security. Plus, get fresh guidance on how to transition to quantum-resistant cryptography.

Risk

Risk IoT Cybersecurity Manufacturing

Funding Crisis Averted: US Extends CVE Program Support Amid Outcry and Rising Concerns

eSecurity Planet

APRIL 16, 2025

The panic was triggered earlier this week when MITRE Vice President Yosry Barsoum warned in a letter to the CVE Board that government funding for the CVE and Common Weakness Enumeration (CWE) programs would expire on April 16. Cyber threats don’t stop at bordersand neither does defense. What was at stake?

Government

Government Cybersecurity Software Backups

News alert: SpyCloud operationalizes darknet data, pioneers shift to holistic identity threat protection

The Last Watchdog

FEBRUARY 4, 2025

SpyClouds holistic identity threat protection addresses these challenges by encompassing the full spectrum of an individuals online presence. This allows security teams to neutralize threats in less than 15 minutes of discovery, reducing risk without straining resources or operational bandwidth.

Cybercrime

Cybercrime Phishing Accountability Malware

FDA Playbook Engineers Safety Into Medical Device Manufacturing

SecureWorld News

JUNE 25, 2025

As connected healthcare devices become more pervasive and critical to patient outcomes, the cyber risks tied to their design, production, and deployment grow exponentially. According to the report, "Cybersecurity risk management should begin during product concept and continue throughout the total product lifecycle (TPLC)."

Manufacturing

Manufacturing Engineering Healthcare Risk

The Ultimate Guide to Establishing a Strong Cybersecurity Baseline: Key Steps and Best Practices

Centraleyes

DECEMBER 23, 2024

What To Consider When Setting Up a Security Baseline Understanding Your Risk Landscape: Before implementing any controls, evaluate your organizations risk tolerance and potential vulnerabilities. How To Get Started Risk Assessment and Threat Modeling: Begin by conducting a comprehensive risk assessment.

Cybersecurity

Cybersecurity Risk Backups Encryption

Marco Rubio Impersonation Reveals Growing Threat of AI-Powered Attacks

SecureWorld News

JULY 9, 2025

While this particular attempt was unsuccessful, the incident highlights the growing risk of AI-driven impersonation—a danger that can no longer be ignored. The use of generative AI, which enabled the impersonator to craft highly realistic voice and text communications, signals a dangerous evolution in the tactics of cyber adversaries.

Government

Government Authentication Risk Technology

Why SMS two-factor authentication codes aren't safe and what to use instead

Zero Day

JUNE 17, 2025

New reports from both Bloomberg and collaborative investigative newsroom Lighthouse Reports shed light on how and why text-based codes can put people at risk. Don't leave your old logins exposed in the cloud - do this next Though the practice of outsourcing such messages may be expedient, it does run risks.

Authentication

Authentication Password Management Small Business Passwords

U.S. Lawmakers Push to Ban DeepSeek from Government Devices

LW ROUNDTABLE: Wrist slap or cultural shift? SEC fines cyber firms for disclosure violations

Trending Sources

The Hidden Risk in Enterprise Security: Are Big Firms Too Reliant on the Wrong Providers?

AI-Powered GRC: Revolutionizing Risk Management and Compliance

Elon Musk ’s DOGE team granted ‘full access’ to sensitive Treasury systems. What are the risks?

From Compliance to Confidence: How AI Is Reshaping Third-Party Risk

Federal Contractor Cybersecurity Vulnerability Reduction Act Passes in U.S. House

LW ROUNDTABLE: Predictive analytics, full-stack visualization to solidify cyber defenses in 2025

Cybersecurity Snapshot: U.S. Gov’t Urges Adoption of Memory-Safe Languages and Warns About Iran Cyber Threat

Google's AI Trends Report: Key Insights and Cybersecurity Implications

Australia, Canada, New Zealand, and the U.S. warn of PRC-linked cyber espionage targeting telecom networks

News alert: CyTwist launches threat detection engine tuned to identify AI-driven malware in minutes

MY TAKE: RSAC 2025 – Conversing with vendors hanging out in the Marriott Marquis mezzanine

The Real Cost of Decentralising Cybersecurity in a Fragmented Regulatory World

How threat actors can use generative artificial intelligence?

Ghost Ransomware a Persistent Global Threat to Critical Infrastructure

Report Unveils Cybersecurity Leaks in U.S. Drinking Water Systems

Amazon's Latest Data Breach a Ripple Effect of MOVEit

World Backup Day: A Clarion Call for Cyber Resilience

Report Shows Ransomware Has Grown 41% for Construction Industry

CISA Cuts: What They Mean for Cyber Defense for All

The C-Suite Power Shift: Why CIOs, CTOs, and CISOs Must Realign to Survive

Canada Releases 2025 National Cyber Security Strategy

Top 10 Cybersecurity Trends to Expect in 2025

GUEST ESSAY: Four essential strategies to bolster cyber resilience in critical infrastructure

UK Cybersecurity Weekly News Roundup – 31 March 2025

State of Cybersecurity in Canada 2025: Key Insights for InfoSec Leaders

MasterCard Buys Recorded Future for $2.6B: What It Means for AI Cybersecurity

EU Pumps €1.3 Billion into Cybersecurity, AI, and Digital Skills to Fortify Europe’s Tech Future

Healthcare Cybersecurity Market Soars: Key Trends and Insights

WHEN IS CYBERSECURITY IS WEEK

Empowering Boards for Cybersecurity Incidents

Low-Cost Security for Small Businesses

Silk Typhoon: Unmasking the Cyber Espionage Threat Targeting the U.S. Supply Chain

News alert: INE Security spotlights healthcare companies facing rising exposure to costly breaches

How Website Localization Strengthens Cybersecurity in Global Markets

City of Columbus breach affects around half a million citizens

Cybersecurity Snapshot: Tenable Highlights Risks of AI Use in the Cloud, as UK’s NCSC Offers Tips for Post-Quantum Cryptography Adoption

Funding Crisis Averted: US Extends CVE Program Support Amid Outcry and Rising Concerns

News alert: SpyCloud operationalizes darknet data, pioneers shift to holistic identity threat protection

FDA Playbook Engineers Safety Into Medical Device Manufacturing

The Ultimate Guide to Establishing a Strong Cybersecurity Baseline: Key Steps and Best Practices

Marco Rubio Impersonation Reveals Growing Threat of AI-Powered Attacks

Why SMS two-factor authentication codes aren't safe and what to use instead

Stay Connected