Collaborate Disseminate
The National Vulnerability Database will now only analyze vulnerabilities in critical software, systems used in the federal government and those under active exploitation.
The post NIST narrows scope of CVE analysis to keep up with rising tide of vulnerabilities appeared first on CyberScoop.
Continue reading NIST narrows scope of CVE analysis to keep up with rising tide of vulnerabilities
The vendor disclosed one actively exploited zero-day vulnerability in Microsoft Office SharePoint that allows attackers to view information and make changes to disclosed information.
The post Microsoft drops its second-largest monthly batch of defects on record appeared first on CyberScoop.
Continue reading Microsoft drops its second-largest monthly batch of defects on record
The social engineering campaign spiked last month and has targeted dozens of organizations since May 2025, according to ReliaQuest.
The post Black Basta’s playbook lives on as former affiliates launch fast-scale intrusion campaign appeared first on CyberScoop.
The company said a developer tool automatically retrieved a malicious version of the popular open-source library, but insists the integrity of its systems and software were not impacted.
The post OpenAI’s Mac apps needs an update thanks to the Axios hack appeared first on CyberScoop.
Continue reading OpenAI’s Mac apps needs an update thanks to the Axios hack
Censys researchers warned that thousands of devices are exposed to the Iranian government’s campaign targeting energy, water, and U.S. government services and facilities.
The post Iranian attacks on US critical infrastructure puts 3,900 devices in crosshairs appeared first on CyberScoop.
Continue reading Iranian attacks on US critical infrastructure puts 3,900 devices in crosshairs
Forest Blizzard, a threat group attributed to Russia’s GRU, hijacked network traffic to steal credentials and tokens for Microsoft accounts and other services.
The post Feds quash widespread Russia-backed espionage network spanning 18,000 devices appeared first on CyberScoop.
Continue reading Feds quash widespread Russia-backed espionage network spanning 18,000 devices
The FBI’s annual report on digital crimes exposes a worsening environment. Yet, an unknown number of victims still suffer in the shadows never reporting the crimes they endure.
The post Cybercrime losses jumped 26% to $20.9 billion in 2025 appeared first on CyberScoop.
Continue reading Cybercrime losses jumped 26% to $20.9 billion in 2025
Two critical defects in FortiClient EMS have been exploited in the past couple weeks. Experts push for users to apply an immediate hotfix.
The post Fortinet customers confront actively exploited zero-day, with a full patch still pending appeared first on CyberScoop.
A systemic numbness to cyberattacks has exposed the U.S. economy and its institutions to ever-widening threats. Retired four-star military officials worry the worst day in cyber is yet to come.
The post Former NSA chiefs worry American offensive edge in cybersecurity is slipping appeared first on CyberScoop.
Continue reading Former NSA chiefs worry American offensive edge in cybersecurity is slipping
Attackers compromised the open-source security tool and published malicious versions of the software. Mandiant warns the fallout could impact up to 10,000 downstream victims.
The post Experts warn of a ‘loud and aggressive’ extortion wave following Trivy hack appeared first on CyberScoop.
Continue reading Experts warn of a ‘loud and aggressive’ extortion wave following Trivy hack