CyberScoop | Breaking Cybersecurity News, Public Sector Threats

PARIS, FRANCE – JUNE 04: In this photo illustration the GitHub logo is seen on the screen of an iPhone in front of a computer screen showing a Microsoft logo on June 04, 2018 in Paris, France. (Photo Illustration by Chesnot/Getty Images)

GitHub says internal repositories were impacted in poisoned VS Code extension attack

GitHub said late Tuesday that internal repositories were exfiltrated after an employee device was compromised through a poisoned Visual Studio Code extension, an incident that underscores the…

By Greg Otto

(Getty Images)

Attackers hit vulnerabilities hard last year, making exploits the top entry point for breaches

Cybercrime

By Matt Kapko

Rep. Bennie Thompson, D-Miss., talks with reporters outside the U.S. Capitol after the last vote of the week on Friday, Jan. 9, 2026. (Tom Williams/CQ Roll Call)

CISA credential leak raises alarms, and Capitol Hill demands answers

Government

By Tim Starks

Featured on CyberScoop

Popular Stories

(Getty Images)

Security leaders say the next two years are going to be ‘insane’

Kevin Mandia, Morgan Adamski, and Alex Stamos tell CyberScoop that AI is finding bugs faster than anyone can fix them, exploit development is accelerating, and most organizations…

By Greg Otto

(Graphic by Shanima Parker / Scoop News Group)

Across party lines and industry, the verdict is the same: CISA is in trouble

The agency lost a third of its people in a year. Now industry and lawmakers on both sides say it's unprepared for a potential crisis.

By Tim Starks

AI-powered health apps are flooding the market. But their data security policy is more of a pinky promise than a legal mandate. (Source: Getty Images)

Your AI doctor doesn’t have to follow the same privacy rules as your real one

AI apps are making their way into healthcare. It’s not clear that rigorous data security or privacy practices will be part of the package.

By Derek B. Johnson

Nauval Wildani, iStock/Getty Images Plus

Cyber scholarship-for-service students say government has pulled rug on them, potentially burdening them with debt

Hiring freezes, budget cuts and more are raising questions about the future of CyberCorps.

By Tim Starks

A house full of open windows: Why telecoms may never purge their networks of Salt Typhoon

By Derek B. Johnson

‘Whatever we did was not enough’: How Salt Typhoon slipped through the government’s blind spots

By Tim Starks

Prolific Russian ransomware operator living in California enjoys rare leniency awaiting trial

By Matt Kapko

Trump and others want to ramp up cyber offense, but there’s plenty of doubt about the idea

By Tim Starks Mark Pomerleau

Who is sending those scammy text messages about unpaid tolls?

By Matt Kapko

Insights

Call center agent viewing a monitor. — Getty Images

Weaponized AI: The new frontier of fraud and identity spoofing

By Fernanda Sottil

Abstract art of data security — Image: Giannina Vera, Scoop News Group

Why cyber modernization requires partners with technical plus acquisition expertise

By Katie Baxter

Image of US Capitol evoking data flow — Image: Scoop News Group

Why identity is the definitive cyber defense for federal agencies

By Daniel Wilbricht

Agencies push for digital transformation amid security challenges

By Scoop News Group

Videos

T-Mobile’s Eric Jensen on the challenge of securing vast supply chains

By CyberScoop Staff

Datadog’s Emilio Escobar on compliance-first AI

By Scoop News Group

Cohesity’s Marlin McFate on risks tied to growing cloud dependence

By Scoop News Group

ThreatLocker’s Rob Allen on the dual impact of AI

By Scoop News Group

Podcasts

Why access brokers have stubbornly remained successful

By CyberScoop Staff

Last year, Florida State University student Pheonix Ikner shot seven people on campus. Two died, including Tiru Chabba, a food service contractor for the university. Chabba’s family filed a lawsuit against the OpenAI Foundation, alleging negligence. (Image Source: Getty Images)

Family of FSU shooting victim sues OpenAI Foundation for negligence, lack of safety guardrails

By Derek B. Johnson

Can you prove which agent did what?

By CyberScoop Staff

How government and Industry can raise the cost of cybercrime

By CyberScoop Staff

The Latest

Sean Plankey, of Pennsylvania, responds to questioning during Senate Committee on Homeland Security and Governmental Affairs hearings to examine his nomination to be Director of the Cybersecurity and Infrastructure Security Agency, of the Department of Homeland Security, in the Dirksen Senate office building, in Washington, DC, on Wednesday July 24, 2025. (Mattie Neretin/CNP/Sipa USA)

Former CISA nominee Sean Plankey named US CEO of defense startup

SEDALIA, CO – JUNE 28: Mesa County Clerk and Colorado Republican candidate for secretary of state Tina Peters (C) follows election results with supporters during a primary night watch party at the Wide Open Saloon on June 28, 2022 in Sedalia, Colorado. Peters lost to former Jefferson County Clerk Pam Anderson, who will move on to face Democratic incumbent Jena Griswold. (Photo by Marc Piscotty/Getty Images)

Colorado governor commutes prison sentence for election denier Tina Peters

This week, FTC Chair Andrew Ferguson sent letters to private-sector companies detailing how the commission intends to police compliance once enforcement begins. (Getty Images)

Here’s how the FTC plans to enforce the Take It Down Act

Cisco zero-day under ongoing attack by persistent threat group

Paul Lyons, principal principal deputy assistant secretary for cyber policy, right. (Image Source: Maggie Callahan/Scoop News Group)

Pentagon cyber official calls advanced AI ‘revolutionary warfare’

Nick Polk, branch director for cybersecurity at the Executive Office of the President, said government agencies must pay more attention to identity security in the age of AI. (Image Source: Maggie Callahan/Scoop News Group)

White House cyber official: identity security matters more than ever in the age of AI

Foxconn campus in Mt. Pleasant, Wisconsin. (Taylor Glascock for The Washington Post via Getty Images)

Major tech manufacturer Foxconn confirms cyberattack hit North American factories

Researchers say AI just broke every benchmark for autonomous cyber capability

Steam from a vent obscures the U.S. Capitol in Washington, D.C. Photographer: Julia Nikhinson/Bloomberg; Getty Images

Closed briefing sets stage for House hearing on Anthropic’s Mythos and cyber risks

Acting Attorney General Todd Blanche speaks as FBI Director Kash Patel listens at a press conference at the Department of Justice on April 27, 2026 in Washington, DC. The officials took questions from the press and gave updates about the case against Cole Tomas Allen, the suspect in the shooting at the White House Correspondents Dinner. (Photo by Tasos Katopodis/Getty Images)

DOJ releases legal rationale for nationwide voter data collection

(Getty Images)

Daybreak is OpenAI’s answer to the AI arms race in cybersecurity

(Getty Images)

‘Mini Shai-Hulud’ malware compromises hundreds of open-source packages in sprawling supply-chain attack

The concept of such a list, known as a “software bill of materials (SBOM),” is to know everything that goes into a particular piece of software so that any supply chain risks are easier to identify. (Getty Images)

Major world economies spell out key elements of AI ‘ingredients list’

Upcoming Events

Jun 2 2026

EMERGE: Battlespace of the Future

Waldorf Astoria, Washington, D.C.

Nov 17 2026

FedTalks

Washington, D.C.