Attackers Exploit Zero-Day Flaws in On-Premises SharePoint

Prajeet Nair • July 21, 2025

Hackers have been exploiting two zero-day vulnerabilities in on-premises installations of Microsoft SharePoint to gain remote access, and steal cryptographic keys and data. As Microsoft rolls out patches against "ToolShell," experts warn administrators to also rotate keys, to help eject attackers.

Cybercrime

Securing US Nuclear Critical Infrastructure: What Next?

Latest

Application Security

Botnet Abuses GitHub Repositories to Spread Malware

Prajeet Nair • July 18, 2025

Threat actors are using public GitHub repositories to host and distribute malware through the Amadey botnet in an ongoing campaign linked to a broader malware-as-a-service operation, Cisco Talos said in a report published Thursday.

Artificial Intelligence & Machine Learning

Security, AI Oversight Are Flashpoints in Draft Defense Bill

Chris Riotta • July 18, 2025

Washington is wagering that future conflicts will unfold as much in cyberspace as on the battlefield, with House and Senate lawmakers unveiling dueling drafts of a nearly $900 billion defense bill that spotlights needs for cybersecurity and artificial intelligence technology.

Data Breach Notification

Texas Drug, Alcohol Testing Firm Hack Affects Nearly 750,000

Marianne Kolbasuk McGee • July 18, 2025

A Texas-based firm that conducts workplace drug and alcohol testing for private employers and for compliance with state and federal agencies, including the Department of Transportation, disclosed to regulators that a July 2024 hacking incident affected nearly 750,000 people.

Artificial Intelligence & Machine Learning

ISMG Editors: Seychelles Bank Breach Echoes 'Panama Papers'

Anna Delaney • July 18, 2025

In this week's update, four ISMG editors discussed the potential global implications of the Seychelles Commercial Bank data breach; the real-world threat of train hacks following an alert about a critical railway vulnerability; and growing concerns around AI's "comprehension problem."

Artificial Intelligence & Machine Learning

Why the ROI of Enterprise AI Still Eludes Many Firms

Rashmi Ramesh • July 18, 2025

As enterprises pour billions into generative AI, many struggle to translate hype into measurable returns on investment. From data prep costs and hallucination risk to poor implementation and organizational inertia, experts say the real payoff may still be years away.

Anti-Phishing, DMARC

China-Backed Hackers Intensify Attacks on Taiwan Chipmakers

Prajeet Nair • July 17, 2025

Chinese state-aligned hackers have ramped up espionage efforts against Taiwan's semiconductor ecosystem through spear-phishing campaigns. Three distinct threat actors targeted chipmakers, packaging and testing firms, equipment suppliers and financial analysts.

Active Directory

Golden dMSA Flaw Exposes Firms to Major Credential Theft

Prajeet Nair • July 17, 2025

A critical cryptographic flaw in Windows Server 2025's delegated Managed Service Accounts, or dMSAs, allows attackers to generate passwords for every managed service account across an Active Directory forest and create a backdoor, Semperis researchers found.

Cyberwarfare / Nation-State Attacks

Salt Typhoon Hit National Guard Network in 'Extensive' Hack

Chris Riotta • July 17, 2025

A newly released Department of Homeland Security memo revealed the Chinese cyberespionage group Salt Typhoon infiltrated a state Army National Guard network for nine months in 2024, stealing sensitive military data that could support future targeting of Guard units and cyber defense personnel.

Security Operations

Coro's New CEO Prioritizes Channel-Driven Global Expansion

Michael Novinson • July 17, 2025

As Coro's new CEO, Joe Sykora is steering the SMB cybersecurity platform provider toward rapid international growth with a 100% partner-focused strategy, revamped operations and new tools for MSPs in an effort to dominate the underserved small and midsize business cybersecurity market.

Data Breach Notification

Dermatology, Imaging Hacks Expose 3.3 Million Patients' PHI

Marianne Kolbasuk McGee • July 17, 2025

A Maryland dermatology practice and a Virginia radiology organization have each reported to regulators separate hacking incidents that in total affected the information of more than 3.3 million patients. The incidents rank among the five largest health data breaches reported in 2025 so far.

Cloud Security

Wiz Deal Highlights Google's Multi-Cloud Security Strategy

Michael Novinson • July 17, 2025

COO Francis deSouza shares insights into Google Cloud’s security priorities as it pursues the $32 billion acquisition of Wiz. He explains the need for seamless multi-cloud protection, the value of Mandiant's threat intelligence, and how AI is changing threat detection and response at scale.

Cryptocurrency Fraud

Cryptohack Roundup: Abacus Market's Suspected Exit Scam

Rashmi Ramesh • July 17, 2025

Abacus Market's suspected exit scam, crypto scammer gets 12 years for dodging restitution, GMX exploiter returns funds, BigOne's $27M hack, Arcadia Finance's $3.5M theft, NZ woman's trial for alleged murder and a DOJ crypto fraud filing's potential unmasking of MoonPay victims.