Critical Ivanti Security Flaw Exploited by Chinese Hackers in Wild
CISA reveals severe remote code execution vulnerability affecting multiple Ivanti products, including Connect Secure and Policy Secure gateways. Security researchers link active exploitation to Chinese cyber espionage group UNC5221 using sophisticated malware tools.
CISA's Cybersecurity Force Crippled by Mass Layoffs of Elite Recruits
Over 130 top cybersecurity specialists at CISA, including threat hunters and infrastructure analysts, were terminated in what staff called the 'Valentine's Day Massacre.' The controversial cuts eliminated 4% of the agency's workforce, raising grave concerns about America's cyber defense capabilities.
Ransomware Attack Disrupts Anne Arundel County Services, Joins Growing List of Maryland Cyber Incidents
A ransomware attack by the INC group has crippled Anne Arundel County government systems, forcing critical services offline and potentially exposing sensitive data. The incident adds to Maryland's mounting cybersecurity challenges, following recent attacks on Frederick Health and Baltimore City.
Trump Administration Dismantles Critical Election Security Programs
Federal election security initiatives face dramatic cuts as the Trump administration halts CISA activities and disbands key FBI task forces. The changes come amid growing evidence of foreign threats to election systems, leaving state and local officials scrambling to protect voting infrastructure.
Massive Botnet Deploys 2.8M IPs in Global VPN Infrastructure Attack
A massive cyber attack campaign utilizing 2.8 million compromised IP addresses is targeting major VPN and security devices worldwide through automated brute force attempts. The attack, largely originating from US-based IPs, employs a botnet of hijacked consumer routers to route malicious traffic through organizational networks.
CISA Under Fire: Homeland Security Nominee Calls for Major Agency Overhaul
South Dakota Governor Kristi Noem, nominee for Secretary of Homeland Security, advocates for a streamlined CISA focused solely on cybersecurity threats. During Senate confirmation hearings, she criticized the agency's disinformation work while facing questions about her own cybersecurity record as governor.
Chinese Hackers Breach US Treasury Through Third-Party Security Provider
The US Treasury Department revealed a major cybersecurity breach by Chinese state-sponsored hackers who gained access through BeyondTrust, a third-party security provider. The incident, classified as 'major,' prompted immediate response from federal agencies including the FBI and CISA.
Chinese State Hackers Breach U.S. Treasury Using Stolen Security Key
The U.S. Treasury Department revealed a major cybersecurity breach in December by Chinese government-backed hackers who gained unauthorized access using a stolen vendor security key. While unclassified documents were compromised, officials report the threat has been contained with help from CISA.
CISA Sets 2025 Deadline for Federal Agencies to Secure Microsoft Cloud Services
CISA has issued a new directive requiring federal agencies to implement enhanced security measures for Microsoft cloud environments by mid-2025. The directive establishes key deadlines for cloud tenant inventory, security assessment tools deployment, and implementation of secure baselines.
U.S. Government Urges Nationwide Adoption of Encrypted Messaging After Major Cyber Attack
Following a massive Chinese hack of major U.S. telecom companies, federal agencies are taking the unprecedented step of encouraging all Americans to use end-to-end encrypted messaging platforms. The initiative represents a significant shift in government stance on encryption technology amid rising cybersecurity threats.