DarkReading Daily

May. 1, 2025

Signup

Daily Edition

Today’s news and insights for cybersecurity professionals

- Today's News and Features -

TOP STORY

DHS Boss Noem Vows to Get CISA Back 'On Mission'‎‎‎

Secretary Noem asks the cybersecurity community to get in touch with CISA to help reshape the agency to focus on finding efficiencies.‎‎‎

Keep Reading →

Phishers Take Advantage of Iberian Blackout Before It's Even Over‎‎‎

Opportunistic threat actors targeted Portuguese and Spanish speakers by spoofing Portugal's national airline in a campaign offering compensation for delayed or disrupted flights.‎‎‎

Adversaries Are Toying With US Networks & DC Is Short on Answers‎‎‎

While nation-state actors are demonstrating how easily they can infiltrate US networks, government officials don't seem to have a clear vision for what comes next.‎‎‎

DARPA Highlights Critical Infrastructure Security Challenges‎‎‎

Leaders at federal research organizations DARPA, ARPA-I, and ARPA-H discussed the myriad obstacles in addressing critical infrastructure security at RSAC Conference 2025.‎‎‎

Former CISA Head Slams Trump Admin Over 'Loyalty Mandate'‎‎‎

Jen Easterly, former director of CISA, discussed the first 100 days of the second Trump administration and criticized the president's "mandate for loyalty" during a panel at RSAC 2025.‎‎‎

Prolific RansomHub Operation Goes Dark‎‎‎

The chat infrastructure and data-leak site of the notorious ransomware-as-a-service group has been inactive since March 31, according to security vendors.‎‎‎

DR GLOBAL

TheWizards APT Casts a Spell on Asian Gamblers With Novel Attack‎‎

A SLAAC-spoofing, adversary-in-the-middle campaign is hiding the WizardNet backdoor malware inside updates for legitimate software and popular applications.‎‎

DR GLOBAL

Billbug Expands Cyber-Espionage Campaign in Southeast Asia‎‎

The China-linked cyber-operations group, better known as Lotus Panda, uses its own custom malware to focus on government agencies and private companies in Hong Kong, the Philippines, Taiwan, and Vietnam.‎‎

THE EDGE

Debunking Security 'Myths' to Address Common Gaps‎‎

Dan Gorecki and Scott Brammer's interactive session during RSAC Conference 2025 encourages security professionals to rethink their security postures and address evolving and emerging risks.‎‎

DR TECHNOLOGY

Cisco Boosts XDR Platform, Splunk With Agentic AI‎‎

Cisco joins the agentic AI wave with the introduction of advanced LLMs to autonomously verify and investigate attacks.‎‎

SPONSORED ARTICLE

Why We Need Proactive Security in the Age of AI‎‎‎

New study shows that artificial intelligence creates bigger threats to credential security, making traditional migration tools less effective.‎‎‎

- Commentary -

Opinions from thought leaders around the cybersecurity industry

How Organizations Can Leverage Cyber Insurance Effectively‎‎‎

By focusing on prevention, education, and risk transfer through insurance, organizations — especially SMEs — can protect themselves from the rapidly escalating threats of cyberattacks.‎‎‎

DeepSeek Breach Opens Floodgates to Dark Web‎‎‎

The incident should serve as a critical wake-up call. The stakes are simply too high to treat AI security as an afterthought — especially when the Dark Web stands ready to capitalize on every vulnerability.‎‎‎

More Commentary →