CyberScoop | Breaking Cybersecurity News, Public Sector Threats

(Photo by Win McNamee/Getty Images)

The long-awaited Trump cyber strategy has arrived

The administration also released an executive order on cybercrime and fraud.

By Tim Starks

DHS CISO, deputy CISO exit amid reported IT leadership overhaul

Government

By Derek B. Johnson Lindsey Wilkinson

Pyongyang, North Korea — (Getty Images)

Microsoft warns North Korean threat groups are scaling up fake worker schemes with generative AI

Cybersecurity

By Matt Kapko

Featured on CyberScoop

Congress looks to revive critical cyber program for rural electric utilities

By Derek B. Johnson
FBI targeted with ‘suspicious’ activity on its networks

By Tim Starks
HHS updates a free risk tool to help hospitals size up their cybersecurity exposure

By Tim Starks
Phobos ransomware leader pleads guilty, faces up to 20 years in prison

By Matt Kapko
Cisco reveals 2 max-severity defects in firewall management software

By Matt Kapko

Popular Stories

(Graphic by Shanima Parker / Scoop News Group)

Across party lines and industry, the verdict is the same: CISA is in trouble

The agency lost a third of its people in a year. Now industry and lawmakers on both sides say it's unprepared for a potential crisis.

By Tim Starks

AI-powered health apps are flooding the market. But their data security policy is more of a pinky promise than a legal mandate. (Source: Getty Images)

Your AI doctor doesn’t have to follow the same privacy rules as your real one

AI apps are making their way into healthcare. It’s not clear that rigorous data security or privacy practices will be part of the package.

By Derek B. Johnson

Nauval Wildani, iStock/Getty Images Plus

Cyber scholarship-for-service students say government has pulled rug on them, potentially burdening them with debt

Hiring freezes, budget cuts and more are raising questions about the future of CyberCorps.

By Tim Starks

(Scoop News Group graphic)

A house full of open windows: Why telecoms may never purge their networks of Salt Typhoon

Experts tell CyberScoop that the U.S. telecom system is just too technologically fragmented to gather a clear picture of threats, and too big to ever fully eject…

By Derek B. Johnson

‘Whatever we did was not enough’: How Salt Typhoon slipped through the government’s blind spots

By Tim Starks

Prolific Russian ransomware operator living in California enjoys rare leniency awaiting trial

By Matt Kapko

Trump and others want to ramp up cyber offense, but there’s plenty of doubt about the idea

By Tim Starks Mark Pomerleau

Who is sending those scammy text messages about unpaid tolls?

By Matt Kapko

Despite challenges, the CVE program is a public-private partnership that has shown resilience

By Cynthia Brumfield

Insights

Abstract art of data security — Image: Giannina Vera, Scoop News Group

Why cyber modernization requires partners with technical plus acquisition expertise

By Katie Baxter

Image of US Capitol evoking data flow — Image: Scoop News Group

Why identity is the definitive cyber defense for federal agencies

By Daniel Wilbricht

Agencies push for digital transformation amid security challenges

By Scoop News Group

Photo illustration of AI and security.

Want to scale cyber defenders? Focus on AI-enabled security and organization-wide training

By Jay Bhalodia

Videos

T-Mobile’s Eric Jensen on the challenge of securing vast supply chains

By CyberScoop Staff

Datadog’s Emilio Escobar on compliance-first AI

By Scoop News Group

Cohesity’s Marlin McFate on risks tied to growing cloud dependence

By Scoop News Group

ThreatLocker’s Rob Allen on the dual impact of AI

By Scoop News Group

Podcasts

A plea to improve quantum security in the federal government

By CyberScoop Staff

Is the ‘Shields Up’ era of CISA over?

By CyberScoop Staff

Should you still trust your password manager?

By CyberScoop Staff

No exceptions: How Amazon killed the password and unified security

By CyberScoop Staff

The Latest

Microsoft and authorities dismantled Tycoon 2FA's infrastructure. A seizure notice is displayed on of the phishing platform's domains March 4, 2026. (Microsoft) — Microsoft and authorities dismantled Tycoon 2FA’s infrastructure. A seizure notice is displayed on of the phishing platform’s domains March 4, 2026. (Microsoft)

Global coalition dismantles Tycoon 2FA phishing kit

The author of a new study told CyberScoop “I’m very worried” as he described deanonymization capabilities of AI as a “large scale invasion of privacy.”

LLMs are getting better at unmasking people online

Authorities shut down LeakBase and seized its database and domains. A seizure notice is displayed on the site March 4, 2026. (Department of Justice)

Authorities from 14 countries shut down major cybercrime forum LeakBase

Cloudflare headquarters in San Francisco. (Getty Images)

Attackers are using your network against you, according to Cloudflare

The Apple logo appears on a mobile phone screen in this photo illustration in Brussels, Belgium, on Feb. 26, 2026. (Photo by Jonathan Raa/NurPhoto)

Possible U.S.-developed exploits linked to first known ‘mass’ iOS attack

Researchers at Zenity Labs discovered flaws affecting multiple AI browsers, including Perplexity’s Comet. Before being patched, an attacker could exploit them via a legitimate calendar invite, using a prompt injection to force the AI browser to act against its user. (Image via Getty)

Researchers discover suite of agentic AI browser vulnerabilities

(Scoop News Group)

CISA CIO Robert Costello exits agency

(Getty Images)

Google addresses actively exploited Qualcomm zero-day in fresh batch of 129 Android vulnerabilities

(Getty Images)

The FBI’s cyber chief is using Winter SHIELD to accelerate China prep, threat intelligence sharing

In an aerial view, artist Gustavo Zermeño Jr. hangs from a ladder as he paints a mural of Olympic figure-skating gold medalist Alysa Liu on February 26, 2026 in Gardena, California. (Photo by Justin Sullivan/Getty Images)

From fake nudes to fake quotes: AI deepfakes plagued Olympic athletes

(Getty Images)

How ‘silent probing’ can make your security playbook a liability

Madhu Gottumukkala, acting director of the Cybersecurity and Infrastructure Security Agency, testifies during the DHS oversight hearing in the Cannon House office building on Jan. 21, 2026. (Photo by Heather Diehl/Getty Images)

Gottumukkala out, Andersen in as acting CISA director

Europol, the European Union’s law enforcement agency, is pictured at its headquarters building on June 24, 2020 in The Hague, Netherlands. (Photo by Yuriko Nakao/Getty Images)

Project Compass is Europol’s new playbook for taking on The Com

Upcoming Events

Mar 19 2026

Elastic Public Sector Summit

Waldorf Astoria, Washington, D.C.

Apr 2 2026

MongoDB Public Sector Summit: Innovating Government Applications for AI

International Spy Museum, Washington, D.C.

Apr 13 2026

AI Week

Washington, D.C.

Apr 14 2026

AITalks

Waldorf Astoria, Washington, D.C.

Apr 23 2026

Box Federal Summit

Ritz-Carlton, Pentagon City