ZCyberNews
中文

Articles

432 articles

U.S. Coast Guard Mandate Offers Blueprint for OT SecurityINFORMATIONAL
Industry News

U.S. Coast Guard Mandate Offers Blueprint for OT Security

New U.S. Coast Guard cybersecurity rules under the Maritime Transportation Security Act mandate third-party audits, OT-specific security plans, and dedicated personnel, providing a regulatory model for critical infrastructure.

3 min read
WordPress Supply Chain Attack Infects 30+ Plugins Planted Malicous Backdoor CRITICAL
Threat Intel

WordPress Supply Chain Attack Infects 30+ Plugins Planted Malicous Backdoor

A malicious buyer used the Flippa marketplace to acquire a plugin developer, injecting a backdoor into over 30 WordPress plugins with hundreds of thousands of installations to deploy hidden SEO spam.

6 min read
Workplace Stress Remains Elevated, Posing Persistent Insider Threat RiskMEDIUM
Industry News

Workplace Stress Remains Elevated, Posing Persistent Insider Threat Risk

Global workforce stress, anger, and sadness remain significantly above pre-pandemic levels, creating a sustained environment conducive to insider threats and security lapses, according to Gallup's 2026 report.

3 min read
AI SOC Tools Criticized for Automating Triage, Not Reducing Analyst WorkloadINFORMATIONAL
Industry News

AI SOC Tools Criticized for Automating Triage, Not Reducing Analyst Workload

A new analysis argues most AI-powered security operations center tools merely accelerate alert triage without reducing the underlying workload for analysts, failing to deliver on promises of true automation.

4 min read
Anthropic Releases Claude Opus 4.7 with Automated Cybersecurity SafeguardsINFORMATIONAL
AI Security

Anthropic Releases Claude Opus 4.7 with Automated Cybersecurity Safeguards

Anthropic releases Claude Opus 4.7, a frontier AI model with new automated safeguards designed to detect and halt potentially harmful cybersecurity tasks during long, unsupervised agentic workflows.

4 min read
ETSI Warns EU Cybersecurity Act 2 Risks Fragmenting Global StandardsINFORMATIONAL
Industry News

ETSI Warns EU Cybersecurity Act 2 Risks Fragmenting Global Standards

The European standards body ETSI warns that proposed EU legislation could ban its experts from developing global cybersecurity standards, risking fragmentation and weakening EU influence in international security governance.

3 min read
Fake Adobe Reader Downloads Deploy ScreenConnect via In-Memory LoaderHIGH
Malware

Fake Adobe Reader Downloads Deploy ScreenConnect via In-Memory Loader

A new campaign delivers ConnectWise ScreenConnect by masquerading malware as an Adobe Acrobat Reader installer, using advanced in-memory execution and defense evasion to avoid detection.

4 min read
JanaWare Ransomware Campaign Targets Turkish Homes and SMBs for Six YearsHIGH
Malware

JanaWare Ransomware Campaign Targets Turkish Homes and SMBs for Six Years

A ransomware campaign dubbed 'JanaWare' has been targeting Turkish homes and small-to-medium businesses since at least 2018, deploying a custom variant of the Adwind RAT to steal credentials before encryption.

4 min read
NIST Overhauls National Vulnerability Database, Prioritizes High-Risk CVEINFORMATIONAL
Industry News

NIST Overhauls National Vulnerability Database, Prioritizes High-Risk CVE

NIST will cease comprehensive analysis for all CVEs, shifting to enrich only the highest-risk vulnerabilities due to a 263% surge in submissions, fundamentally altering how the security community uses the NVD.

3 min read
OpenAI Expands Access to GPT-5.4-Cyber for Defensive Security TasksINFORMATIONAL
AI Security

OpenAI Expands Access to GPT-5.4-Cyber for Defensive Security Tasks

OpenAI is expanding access to its GPT-5.4-Cyber model, a specialized AI for reverse engineering and malware analysis, following the reveal of Anthropic's offensive-capable 'Mythos' model. The move aims to lower barriers for legitimate security research.

3 min read
Pentera Report Warns of Critical Security Gaps in Agentic AI ArchitecturesHIGH
AI Security

Pentera Report Warns of Critical Security Gaps in Agentic AI Architectures

Pentera's 2026 AI Security and Exposure Report finds that 100% of surveyed organizations have AI security gaps, with agentic AI architectures introducing novel risks like prompt injection and data exfiltration through deterministic workflows.

4 min read
PowMix Botnet Targets Czech Workforce with Randomized C2 TrafficHIGH
Malware

PowMix Botnet Targets Czech Workforce with Randomized C2 Traffic

Cisco Talos researchers identify the PowMix botnet, active since December 2025, targeting Czech workers with randomized C2 beaconing to evade detection and deploy additional payloads.

3 min read
← PrevPage 31 of 36Next →