CyberScoop | Breaking Cybersecurity News, Public Sector Threats

The concept of such a list, known as a “software bill of materials (SBOM),” is to know everything that goes into a particular piece of software so that any supply chain risks are easier to identify. (Getty Images)

Major world economies spell out key elements of AI ‘ingredients list’

Experts on the topic say the G7 guidance is good, but could still use some improvements.

By Tim Starks

Google has been ramping up the new feature, Intrusion Logging, since last year, and has now begun rolling it out on Pixel devices. (Getty Images)

Google and Amnesty International teamed up to make it harder for spyware vendors to hide

Privacy

By Tim Starks

(Getty Images)

‘Mini Shai-Hulud’ malware compromises hundreds of open-source packages in sprawling supply-chain attack

AI

By Greg Otto

Featured on CyberScoop

Microsoft addresses 137 vulnerabilities in May’s Patch Tuesday, including 13 rated critical

By Matt Kapko
AI is separating the companies built to scale from the ones built to sell

By Dave DeWalt Katie Gray Mark Hatfield Yoav Leitersdorf Amir Zilberstein
Instructure claims hackers returned stolen Canvas data after an extortion standoff

By Matt Kapko
Google spotted an AI-developed zero-day before attackers could use it

By Matt Kapko
The missing cybersecurity leader in small business

By Georgianna Shea Cason Smith

Popular Stories

(Getty Images)

Security leaders say the next two years are going to be ‘insane’

Kevin Mandia, Morgan Adamski, and Alex Stamos tell CyberScoop that AI is finding bugs faster than anyone can fix them, exploit development is accelerating, and most organizations…

By Greg Otto

(Graphic by Shanima Parker / Scoop News Group)

Across party lines and industry, the verdict is the same: CISA is in trouble

The agency lost a third of its people in a year. Now industry and lawmakers on both sides say it's unprepared for a potential crisis.

By Tim Starks

AI-powered health apps are flooding the market. But their data security policy is more of a pinky promise than a legal mandate. (Source: Getty Images)

Your AI doctor doesn’t have to follow the same privacy rules as your real one

AI apps are making their way into healthcare. It’s not clear that rigorous data security or privacy practices will be part of the package.

By Derek B. Johnson

Nauval Wildani, iStock/Getty Images Plus

Cyber scholarship-for-service students say government has pulled rug on them, potentially burdening them with debt

Hiring freezes, budget cuts and more are raising questions about the future of CyberCorps.

By Tim Starks

A house full of open windows: Why telecoms may never purge their networks of Salt Typhoon

By Derek B. Johnson

‘Whatever we did was not enough’: How Salt Typhoon slipped through the government’s blind spots

By Tim Starks

Prolific Russian ransomware operator living in California enjoys rare leniency awaiting trial

By Matt Kapko

Trump and others want to ramp up cyber offense, but there’s plenty of doubt about the idea

By Tim Starks Mark Pomerleau

Who is sending those scammy text messages about unpaid tolls?

By Matt Kapko

Insights

Abstract art of data security — Image: Giannina Vera, Scoop News Group

Why cyber modernization requires partners with technical plus acquisition expertise

By Katie Baxter

Image of US Capitol evoking data flow — Image: Scoop News Group

Why identity is the definitive cyber defense for federal agencies

By Daniel Wilbricht

Agencies push for digital transformation amid security challenges

By Scoop News Group

Photo illustration of AI and security.

Want to scale cyber defenders? Focus on AI-enabled security and organization-wide training

By Jay Bhalodia

Videos

T-Mobile’s Eric Jensen on the challenge of securing vast supply chains

By CyberScoop Staff

Datadog’s Emilio Escobar on compliance-first AI

By Scoop News Group

Cohesity’s Marlin McFate on risks tied to growing cloud dependence

By Scoop News Group

ThreatLocker’s Rob Allen on the dual impact of AI

By Scoop News Group

Podcasts

Last year, Florida State University student Pheonix Ikner shot seven people on campus. Two died, including Tiru Chabba, a food service contractor for the university. Chabba’s family filed a lawsuit against the OpenAI Foundation, alleging negligence. (Image Source: Getty Images)

Family of FSU shooting victim sues OpenAI Foundation for negligence, lack of safety guardrails

By Derek B. Johnson

Can you prove which agent did what?

By CyberScoop Staff

How government and Industry can raise the cost of cybercrime

By CyberScoop Staff

Proving Identity in the age of agents

By CyberScoop Staff

The Latest

U.S. Senate Minority Leader Sen. Chuck Schumer, D-N.Y., leaves after a meeting on AI at the Kennedy Caucus Room at Russell Senate Office Building on Nov. 1, 2023 on Capitol Hill. (Photo by Alex Wong/Getty Images)

Sen. Schumer seeks DHS plan on AI cyber coordination with state, local governments

ShinyHunters claims nearly 9,000 schools affected by Canvas data breach

The Claude AI logo is displayed on the screen of a smartphone placed on a reflective surface onto which lines of computer code are projected. Following the release of Claude Opus 4.6 on February 5, Anthropic continues to challenge its main competitors in the generative AI market in Creteil, France, on February 6, 2026. (Photo by Samuel Boivin/NurPhoto via Getty Images)

Flaw in Claude’s Chrome extension allowed ‘any’ other plugin to hijack victims’ AI

A logo sign outside of the headquarters of Ivanti in South Jordan, Utah. (Kristoffer Tripplaar / Alamy Stock Photo)

Ivanti customers confront yet another actively exploited zero-day

Yutthana Gaetgeaw, iStock/Getty Images Plus

Trump officials are steering a cybersecurity scholarship program toward AI

American duo sentenced for hosting laptop farms for North Korean IT workers

Rep. Summer Lee, D-Pa., arrives to the U.S. Capitol for the last votes of the week on Friday, Jan. 12, 2024. (Tom Williams/CQ Roll Call)

One House Democrat is pressing Commerce on the government’s spyware use

(Getty Images)

A DOD contractor’s API flaw exposed military course data and service member records

Palo Alto Networks headquarters in Silicon Valley; Palo Alto Networks, Inc. is an American multinational cyber security company. (Getty Images)

A critical Palo Alto PAN-OS zero-day is being exploited in the wild

A pipe carrying potable water is seen in a water purification plant. (Getty Images)

CISA wants critical infrastructure to operate ‘weeks to months’ in isolation during conflict

Tammy Barbour, acting chief of application management at CISA, left, and Lauren Wind, acting deputy chief technology officer at CISA, speak at the UiPath FUSION Public Sector event hosted by Scoop News Group, on Tuesday, May 5 2026. (Photo by Sergey Kolupaev/EPNAC)

CISA boasts AI automation improvements to threat analysis, mission support

The U.S. Department of Justice. (bpperry/Getty Images)

Latvian national sentenced for ransomware attacks run by former Conti leaders

(Getty Images)

‘Copy Fail’ is a real Linux security crisis wrapped in AI slop

Upcoming Events

May 14 2026

Federal Cyber Resilience Breakfast

Hotel Washington

May 19 2026

Cybersecurity Modernization Summit

Virtual Event

Jun 2 2026

EMERGE: Battlespace of the Future

Waldorf Astoria, Washington, D.C.

Nov 17 2026

FedTalks

Washington, D.C.