"AWS Certified AI Practitioner (AIF-C01) Practice Test."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 22 May 2025, 1403 UTC.

Content and Source:  Email subscription via https://feedly.com.

 https://feedly.com/i/subscription/feed%2Fhttps%3A%2F%2Fthecyberwire.com%2Ffeeds%2Frss.xml

Please check email link or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

The CyberWire

11K followers26 articles per week

#security#ciso#tech

76

Most popular

AWS Certified AI Practitioner (AIF-C01) | Practice Test

2K2d

Pass the Amazon Web Services Certified AI Practitioner [AIF-C01] today using this N2K Practice Test and earn your certification.

Microsoft Azure Administrator (AZ-104) | Practice Test

2K2d

Prep for the Microsoft Azure Administrator (MC: Azure Admin Associate) [AZ-104] certification with this CyberVista Now N2K Cyber Practice Test.

Microsoft Azure AI Fundamentals (AI-900) | Practice Test

2K5d

Prep for the Microsoft Azure AI Fundamentals (AI-900) certification with this CyberVista Now N2K Practice Test.

Yesterday

Securing AI in the Enterprise

8h

In this episode of Threat Vector, host ⁠David Moulton⁠ speaks with ⁠Tanya Shastri⁠, SVP of Product Management, and ⁠Navneet Singh⁠ , VP of Marketing - Network Security, at Palo Alto Networks. They explore what it means to adopt a secure AI by design strategy, giving employees the freedom to innovate with generative AI while maintaining control and reducing risk. From identifying shadow AI in the e

Scam me once.

9h

This week, our three hosts ⁠⁠Dave Bittner⁠⁠, ⁠⁠Joe Carrigan⁠⁠, and ⁠⁠Maria Varmazis⁠⁠ (also host of the ⁠⁠T-Minus⁠⁠ Space Daily show) are sharing the latest in social engineering scams, phishing schemes, and criminal exploits that are making headlines. Listener Jim notes that money launderers and couriers mentioned in recent episodes are often scam victims themselves, unknowingly processing fraudu

Take it down or shut it down?

9h

This week on Caveat, Ben covers growing backlash to a federal proposal that would block states from enforcing their own AI laws for the next decade—a move critics call unconstitutional and a gift to Big Tech. Meanwhile, Dave unpacks the newly signed Take It Down Act, which criminalizes the distribution of nonconsensual intimate images, including AI deepfakes, and requires platforms to remove them

Bear in the network.

17h

A joint advisory warns of Fancy Bear targeting Western logistics and technology firms. A nonprofit hospital network in Ohio suffers a disruptive ransomware attack. The Consumer Financial Protection Bureau (CFPB) drops plans to subject data brokers to tighter regulations. KrebsOnSecurity and Google block a record breaking DDoS attack. A phishing campaign rerouted employee paychecks. Atlassian patch

Proofpoint acquires Hornetsecurity. Theom raises $20 million.

Proofpoint acquires Hornetsecurity Group

•

18h

Keyfactor acquires InfoSec Global and CipherInsights.

The power of simplicity in Zero Trust with Rob Allen, ThreatLocker.

18h

Rob Allen, Chief Product Officer at ThreatLocker, joins Dave Bittner on the CyberWire Daily podcast for a sponsored Industry Voices conversation to discuss the deliberate simplicity of fundamental controls around zero trust. Token theft and phishing attacks bypass traditional MFA protections, letting attackers impersonate users and access critical SaaS platforms — without needing passwords. Rob sh

PowerSchool hacker will plead guilty to extortion attempt.

Teen hacker pleads guilty extortion

•

22h

Western intelligence agencies warn of APT28 espionage campaign. Atlassian patches eight high-severity vulnerabilities.

May 20, 2025

Brian Goldfarb on Rebuilding a Legacy Brand…Without Losing Your Mind

1d

This week, Gianna and Maria are joined by Brian Goldfarb, CMO at SolarWinds and a veteran of some of the biggest names in tech, including Okta, Tenable, and Salesforce. But this isn’t your typical “lessons from the top” chat. Brian gets real about what it takes to lead modern marketing orgs: how to decide what’s worth fixing, why marketers need to think more like operators, and what it’s like stee

The Take It Down Act walks a fine line.

6 TTPs

•

1d

President Trump signs the Take It Down Act into law. A UK grocer logistics firm gets hit by ransomware. Researchers discover trojanized versions of the KeePass password manager. Researchers from CISA and NIST promote a new metric to better predict actively exploited software flaws. A new campaign uses SEO poisoning to deliver Bumblebee malware. A sophisticated phishing campaign is impersonating Zo

Enhancing cybersecurity through effective collaboration with Ian Tien, Mattermost.

1d

Ian Tien, CEO of Mattermost, joins Dave Bitter on the CyberWire Daily podcast for a sponsored Industry Voices conversation recorded at RSAC 2025. They discuss how the company is pioneering a new category of mission-critical collaboration platforms designed for defense, government, and critical infrastructure—going beyond the casual use cases of Slack and Teams.

President Trump signs the Take It Down Act into law.

1d

Arla Foods says cyberattack affected production operations. Another ransomware attack disrupts the UK grocery sector.

May 19, 2025

Hugh Thompson on Building the RSA Conference

2d

Dr. Hugh Thompson⁠, Executive Chairman of RSA Conference and Managing Partner at Crosspoint Capital joins Ann on this week's episode of Afternoon Cyber Tea. They discuss what goes into planning the world’s largest cybersecurity conference—from theme selection to llama-related surprises on the expo floor—and how the RSA community continues to evolve. Hugh also shares how his background in applied m

Do certifications matter?

2d

A constant question in cybersecurity revolves around the value of certifications. However, despite the criticisms of many certifications, there is evidence that not only supports their value to the individual but to organizations.

Do certifications matter?

2d

As the cybersecurity industry has grown, the field has struggled to answer the question: do certifications matter? In this episode of CISO Perspectives, host ⁠Kim Jones⁠ sits down with N2K's own, ⁠Simone Petrella, to answer this question and discuss why the value of certifications continue to be debated. Throughout the conversation, Simone and Kim will discuss the challenges associated with certif

Redacted realities: Inside the MoJ hack.

2d

The UK’s Ministry of Justice suffers a major breach. Mozilla patches two critical JavaScript engine flaws in Firefox. Over 200,000 patients of a Georgia-based health clinic see their sensitive data exposed. Researchers track increased malicious targeting of iOS devices. A popular printer brand serves up malware. PupkinStealer targets Windows systems. An Alabama man gets 14 months in prison for a s

UK’s Ministry of Justice discloses major breach.

2d

Healthcare data breaches affect hundreds of thousands. SEC X account hacker sentenced to fourteen months in prison.

CompTIA Tech+ (FC0-U71) | Practice Test

2d

Prep for the CompTIA Tech+ [FC0-U71] certification with this N2K Practice Test.

May 16, 2025

Leveling up their credential phishing tactics.

5d

This week, Dave speaks with ⁠Max Gannon⁠ of ⁠Cofense Intelligence⁠ to dive into his team's research on "The Rise of Precision-Validated Credential Theft: A New Challenge for Defenders." Threat actors continuously develop new tactics, techniques, and procedures (TTPs) to bypass existing defenses. When defenders identify these methods and implement countermeasures, attackers adapt or create more sop

Coinbase offers $20 million bounty for arrest of extortionists.

5d

US steel manufacturer hit by cyberattack. Marks and Spencer confirms customer data was stolen during cyberattack. Co-op continues recovery from cyberattack.

Preparing for the cyber battlespace.

2 TTPs

•

5d

NATO hosts the world’s largest cyber defense exercise. The DOJ charges a dozen people in a racketeering conspiracy involving the theft of over $230 million in cryptocurrency. Japan has enacted a new Active Cyberdefense Law. Lawmakers push to reauthorize the Cybersecurity Information Sharing Act. Two critical Ivanti Endpoint Manager Mobile vulnerabilities are under active exploitation. Hackers use

The battlespace of the future is here with Christopher Cleary, ManTech

5d

Christopher Cleary, Vice President of Global Cyber Practice at ManTech, joins Dave Bittner, host of the CyberWire Daily podcast, for a sponsored Industry Voices conversation recorded at RSAC 2025. They explore the escalating cyber threats facing the U.S., highlighting the vulnerabilities in critical infrastructure, the sophisticated tactics of foreign adversaries, and the urgent need for greater p

Co-op continues recovery from cyberattack.

5d

US DOJ charges twelve more suspects in theft of $263 million in cryptocurrency. APT28 exploits webmail vulnerabilities to target government agencies.

Cisco Certified Network Associate (CCNA 200-301) | Practice Test

2K5d

Pass the Cisco Certified Network Associate (CCNA) [200-301] today using this premium N2K Practice Test and earn your certification.

CompTIA Network+ N10-009 | Practice Test

2K5d

Prepare for the CompTIA Network+ (N10-009) certification with this CyberVista now N2K Practice Test.

May 15, 2025

Strategic Ghosts, Synthetic Hosts

6d

In this week's episode: An Australian radio station created a fake Asian female host using AI The BBC resurrects Agatha Christie while a family member brings a murder victim to court We break down "Strategic Text Strings" - sequences of gibberish that can jailbreak AI systems AI recruitment tools might be making hiring worse, not better

RSAC 2025: Devin Ertel of Menlo Security

6d

Devin Ertel, CISO at Menlo Security sits down with Dave Bittner for a conversation at RSAC 2025. They explore the future of secure browsing, the challenges of modern workspaces, the role of AI in shaping access and attack surfaces, and how enterprise browsers support Zero Trust strategies.

Senators aim to limit airport face scanning practice.

6d

NSO ordered to pay $170 million for hacking WhatsApp accounts.

Bypassing Bitlocker encryption.

6d

Google issues an emergency patch for a high-severity Chrome browser flaw. Researchers bypass BitLocker encryption in minutes. A massive Chinese-language black market has shut down. The CFPB cancels plans to curb the sale of personal information by data brokers. A cyberespionage campaign called Operation RoundPress targets vulnerable webmail servers. Google warns that Scattered Spider is now target

Google patches Chrome vulnerability with public exploit.

6d

Coinbase offers $20 million bounty for arrest of extortionists. US steel manufacturer hit by cyberattack.

May 14, 2025

Can you supercharge security with a browser?

7d

In this episode of Threat Vector, ⁠Ofer Ben‑Noon⁠ steps in as guest host to interview cybersecurity strategist ⁠Kirsten Davies⁠. They explore why browsers now handle 85 percent of work and how that shift makes them the prime attack surface. Learn how phishing and session hijacks exploit low‑friction paths, why Zero Trust and enterprise browsers must work hand in glove, and how AI can spot anomalie

Policy Deep Dive: Critical Infrastructure

7d

In this special policy series, the Caveat team is taking a deep dive into key topic areas that are likely to generate notable conversations and political actions throughout the next administration.

The band is finally back together.

7d

And....we're back! This week, our three hosts ⁠Dave Bittner⁠, ⁠Joe Carrigan⁠, and ⁠Maria Varmazis⁠ (also host of the ⁠T-Minus⁠ Space Daily show) are all back to share the latest in social engineering scams, phishing schemes, and criminal exploits that are making headlines. The team shares three bits of follow-up and then breaks into their stories. Joe starts off sharing some stories about influenc

Diving deep into critical infrastructure.

7d

In this Caveat Policy Deep Dive, our conversation and analysis revolve around critical infrastructure policy. Throughout this conversation, we break down how critical infrastructure policy has evolved over the past fifteen years and what policies have been behind some of these advancements. Some key topics focused on during this conversation center on some of the centralization of infrastructure m

Orca Security acquires Opus. Valarian emerges from stealth with $20 million in seed funding.

7d

Get to patching: Patch Tuesday updates.

7d

A busy Patch Tuesday. Investigators discover undocumented communications devices inside Chinese-made power inverters. A newly discovered Branch Privilege Injection flaw affects Intel CPUs. A UK retailer may claim up to £100mn from its cyber insurers after a major cyberattack. A Kosovo national has been extradited to the U.S. for allegedly running an illegal online marketplace. CISA will continue a

Microsoft patches five actively exploited zero-days.

7d

DarkCloud Stealer has a new attack chain. US charges alleged cybercrime market operator.