Cyber Discovery and Cybersecurity

Filter posts by category

Cyber Discovery and Cybersecurity

The negotiator was the leak: insider who betrayed ransomware victims gets 70 months

Federal prosecutors called Angelo Martino a double agent: hired to negotiate with BlackCat, he armed the attackers with his clients’ insurance limits while five victims paid $75.3 million, court records show. His 70-month sentence puts the breach-response supply chain on notice.

The negotiator was the leak: insider who betrayed ransomware victims gets 70 months Read More »

Cyber Discovery and Cybersecurity

When the worm targets the assistant: Miasma turns AI coding agents into the trigger

GitHub disabled 73 Microsoft repositories after the Miasma campaign re-compromised Azure’s durabletask project, while researchers separately documented Miasma payloads that can detonate when developers open affected repositories in AI coding agents such as Claude Code and Cursor. Here is how the campaign spreads and what security, compliance and eDiscovery teams should do now.

When the worm targets the assistant: Miasma turns AI coding agents into the trigger Read More »

Cyber Discovery and Cybersecurity

Glasswing widens: Anthropic puts Mythos inside power, water and hospital operators across more than 15 countries

Anthropic expanded Project Glasswing beyond its roughly 50 initial partners to a new cohort of approximately 150 organizations in more than 15 countries, pushing its restricted Claude Mythos Preview model into power utilities, hospitals, telecoms and hardware vendors, and into the records-retention and cyber-insurance questions facing every CISO, general counsel and information governance lead.

Glasswing widens: Anthropic puts Mythos inside power, water and hospital operators across more than 15 countries Read More »

Cyber Discovery and Cybersecurity Must Read

A 48-Month Federal Benchmark Resets the Incident-Response Insider Question

Two former cybersecurity professionals, one from Sygnia and one from DigitalMint, were sentenced April 30 to four years each for running BlackCat ransomware against U.S. companies — the first federal prison term in this country for an incident-response and ransomware-negotiation insider conspiracy.

A 48-Month Federal Benchmark Resets the Incident-Response Insider Question Read More »

Cyber Discovery and Cybersecurity Must Read

The DOJ’s Cyber FCA Playbook Is Working as Enforcement Triples and Shows No Signs of Slowing

: The DOJ secured $52 million across nine cybersecurity-related False Claims Act settlements in FY 2025, tripling the prior pace and establishing cyber FCA enforcement as an operational program — with private equity firms, medical device makers, and defense subcontractors now in the crosshairs.

The DOJ’s Cyber FCA Playbook Is Working as Enforcement Triples and Shows No Signs of Slowing Read More »

Cyber Discovery and Cybersecurity

Twenty-Two Seconds to Hand-Off: Inside Mandiant’s M-Trends 2026 Findings

Mandiant’s latest M-Trends report describes a threat landscape where access can change hands inside a compromised network in just 22 seconds and where ransomware crews now begin by targeting the systems that govern recovery. As AI reshapes both attack and defense, cybersecurity, information governance, and eDiscovery professionals are being forced to rethink how they detect intrusions, preserve evidence, and explain their decisions under scrutiny.

Twenty-Two Seconds to Hand-Off: Inside Mandiant’s M-Trends 2026 Findings Read More »

Cyber Discovery and Cybersecurity

The Algorithmic Guardrail: National Defense in the Age of Autonomous Risk

Autonomous code is quietly taking a seat at the national security table. The 3rd Edition of the Guide to Developing a National Cybersecurity Strategy is an attempt to build guardrails around this machine-driven reality—and to spell out what “acceptable” risk looks like

The Algorithmic Guardrail: National Defense in the Age of Autonomous Risk Read More »

Cyber Discovery and Cybersecurity Editors Pick

ESA Breach: Collaborative Networks Expose Critical Development Infrastructure

The ESA breach reveals a critical disconnect between system labeling and risk exposure. What were termed “collaboration servers” were actually integral to software development, housing source code, API tokens, and CI/CD pipelines. This article unpacks the governance, security, and operational oversight lessons for organizations managing external development environments.

ESA Breach: Collaborative Networks Expose Critical Development Infrastructure Read More »

Cyber Discovery and Cybersecurity Editors Pick

Jaguar Land Rover Shutdown Shows How Cyber Incidents Cascade Through UK Supply Chains

Jaguar Land Rover’s 2025 cyber incident triggered a production pause, a £559 million quarterly loss, and a UK government-backed £1.5 billion loan guarantee. Weeks later, payroll data exposure for thousands of employees added a long-tail identity risk dimension.

Jaguar Land Rover Shutdown Shows How Cyber Incidents Cascade Through UK Supply Chains Read More »

Cyber Discovery and Cybersecurity Must Read

Kinetic Cybercrime: The Terrifying Shift from Hacking Code to Hacking People

A brutal home invasion at the San Francisco residence of tech investor Lachy Groom has resulted in the theft of $11 million in cryptocurrency, highlighting a deadly new trend of “wrench attacks.” As organized crime shifts focus from digital hacking to physical coercion, executives and investors must urgently rethink their personal security strategies to protect against this hybrid threat.

Kinetic Cybercrime: The Terrifying Shift from Hacking Code to Hacking People Read More »