Hackers Target Zero-Day Vulnerability to Exploit CrushFTP

Mathew J. Schwartz • July 21, 2025

Managed file-transfer software developer CrushFTP said a zero-day vulnerability in its tool's web interface is being actively exploited to gain admin-level access to servers. The company urged immediate updating, saying all versions of its software released since July 1 are patched.

Governance & Risk Management

Topsy-Turvy Data Breach Reality: Incidents Up, Victims Down

Latest

Access Management

Identity and Access Management (IAM) Market Guide 2025

Dan Verton • July 21, 2025

The Identity and Access Management (IAM) Market Guide 2025 provides an essential industry briefing on the evolving identity security ecosystem - offering unparalleled insights into the trends, technologies and market forces reshaping IAM this year.

Application Security

Botnet Abuses GitHub Repositories to Spread Malware

Prajeet Nair • July 18, 2025

Threat actors are using public GitHub repositories to host and distribute malware through the Amadey botnet in an ongoing campaign linked to a broader malware-as-a-service operation, Cisco Talos said in a report published Thursday.

Artificial Intelligence & Machine Learning

Security, AI Oversight Are Flashpoints in Draft Defense Bill

Chris Riotta • July 18, 2025

Washington is wagering that future conflicts will unfold as much in cyberspace as on the battlefield, with House and Senate lawmakers unveiling dueling drafts of a nearly $900 billion defense bill that spotlights needs for cybersecurity and artificial intelligence technology.

Data Breach Notification

Texas Drug, Alcohol Testing Firm Hack Affects Nearly 750,000

Marianne Kolbasuk McGee • July 18, 2025

A Texas-based firm that conducts workplace drug and alcohol testing for private employers and for compliance with state and federal agencies, including the Department of Transportation, disclosed to regulators that a July 2024 hacking incident affected nearly 750,000 people.

Artificial Intelligence & Machine Learning

ISMG Editors: Seychelles Bank Breach Echoes 'Panama Papers'

Anna Delaney • July 18, 2025

In this week's update, four ISMG editors discussed the potential global implications of the Seychelles Commercial Bank data breach; the real-world threat of train hacks following an alert about a critical railway vulnerability; and growing concerns around AI's "comprehension problem."

Artificial Intelligence & Machine Learning

Why the ROI of Enterprise AI Still Eludes Many Firms

Rashmi Ramesh • July 18, 2025

As enterprises pour billions into generative AI, many struggle to translate hype into measurable returns on investment. From data prep costs and hallucination risk to poor implementation and organizational inertia, experts say the real payoff may still be years away.

Anti-Phishing, DMARC

China-Backed Hackers Intensify Attacks on Taiwan Chipmakers

Prajeet Nair • July 17, 2025

Chinese state-aligned hackers have ramped up espionage efforts against Taiwan's semiconductor ecosystem through spear-phishing campaigns. Three distinct threat actors targeted chipmakers, packaging and testing firms, equipment suppliers and financial analysts.

Active Directory

Golden dMSA Flaw Exposes Firms to Major Credential Theft

Prajeet Nair • July 17, 2025

A critical cryptographic flaw in Windows Server 2025's delegated Managed Service Accounts, or dMSAs, allows attackers to generate passwords for every managed service account across an Active Directory forest and create a backdoor, Semperis researchers found.

Cyberwarfare / Nation-State Attacks

Salt Typhoon Hit National Guard Network in 'Extensive' Hack

Chris Riotta • July 17, 2025

A newly released Department of Homeland Security memo revealed the Chinese cyberespionage group Salt Typhoon infiltrated a state Army National Guard network for nine months in 2024, stealing sensitive military data that could support future targeting of Guard units and cyber defense personnel.

Security Operations

Coro's New CEO Prioritizes Channel-Driven Global Expansion

Michael Novinson • July 17, 2025

As Coro's new CEO, Joe Sykora is steering the SMB cybersecurity platform provider toward rapid international growth with a 100% partner-focused strategy, revamped operations and new tools for MSPs in an effort to dominate the underserved small and midsize business cybersecurity market.

Data Breach Notification

Dermatology, Imaging Hacks Expose 3.3 Million Patients' PHI

Marianne Kolbasuk McGee • July 17, 2025

A Maryland dermatology practice and a Virginia radiology organization have each reported to regulators separate hacking incidents that in total affected the information of more than 3.3 million patients. The incidents rank among the five largest health data breaches reported in 2025 so far.

Cloud Security

Wiz Deal Highlights Google's Multi-Cloud Security Strategy

Michael Novinson • July 17, 2025

COO Francis deSouza shares insights into Google Cloud’s security priorities as it pursues the $32 billion acquisition of Wiz. He explains the need for seamless multi-cloud protection, the value of Mandiant's threat intelligence, and how AI is changing threat detection and response at scale.