Matt Kapko

Long Beach, United States

Reporter at CyberScoop

Senior reporter @CyberSecDive • dad • lumberjack • grateful lifelong Californian

Featured in: Favicon

cybersecuritydive.com Favicon

adweek.com Favicon

itmedia.co.jp Favicon

nikkeibp.co.jp Favicon

pcworld.com Favicon

macworld.com Favicon

computerworld.com Favicon

csoonline.com Favicon

networkworld.com + 44 more

Articles

Feds seize 145 domains associated with BidenCash cybercrime platform

3 days ago | cyberscoop.com | Matt Kapko

Federal authorities on Wednesday announced the seizure of about 145 domains and cryptocurrency funds linked to BidenCash, a cybercrime marketplace for stolen credit cards, compromised credentials and other personal information. BidenCash was used by more than 117,000 customers, resulting in the trafficking of more than 15 million credit card numbers and personally identifiable information, the Justice Department said.
Salesforce customers duped by series of social-engineering attacks

3 days ago | cyberscoop.com | Matt Kapko

A financially motivated threat group posing as IT support has intruded the systems of about 20 organizations by duping employees into installing a malicious, illegitimate version of Salesforce’s Data Loader and granting broader access to cloud-based environments, Google Threat Intelligence Group said in a threat report released Wednesday.
Google addresses 34 high-severity vulnerabilities in June’s Android security update

4 days ago | cyberscoop.com | Matt Kapko

Google’s June security update for Android devices contains 34 vulnerabilities, all of which the company designates as high-severity defects. The company didn’t disclose any actively exploited vulnerabilities. Attackers could exploit the most serious flaw — CVE-2025-26443 affecting the Android system — to achieve local escalation of privilege with no additional privileges required. Google said exploitation of the vulnerability requires user interaction.
CrowdStrike, Microsoft aim to eliminate confusion in threat group attribution

4 days ago | cyberscoop.com | Matt Kapko

Voting is open for the 2025 CyberScoop 50 awards! CrowdStrike and Microsoft announced an agreement Monday to formally connect the different names each company uses for the same threat groups in their attribution analysis. The companies said the effort will clarify inconsistencies across the industry’s naming taxonomies and acknowledge when both companies identify the same threat groups. The alliance between the longstanding competitors doesn’t call for a universal naming standard or change...
Top counter antivirus service disrupted in global takedown

1 week ago | cyberscoop.com | Matt Kapko

AVCheck, a large-scale service that cybercriminals use to check if their malware can be detected by various antivirus tools, was seized and taken offline Tuesday by a globally coordinated law enforcement action. Officials on Thursday said they seized four domains and a server associated with the online software crypting syndicate.
US intelligence employee arrested for alleged double-dealing of classified info

1 week ago | cyberscoop.com | Matt Kapko

The FBI on Thursday arrested a Defense Intelligence Agency employee working in the Insider Threat Division unit with top secret security clearance for allegedly attempting to provide classified information to a foreign government, the Justice Department said. Nathan Vilas Laatsch, 28, of Alexandria, Va., was arrested after a monthslong investigation following a tip the FBI received in March, according to officials.
Treasury sanctions crypto scam facilitator that allegedly stole $200M from US victims

1 week ago | cyberscoop.com | Matt Kapko

The Treasury Department on Thursday sanctioned Philippines-based Funnull Technology and its administrator Liu Lizhi for allegedly providing infrastructure that supported thousands of cryptocurrency investment scams, also known as “pig butchering.” Funnull directly aided the majority of virtual currency investment scam sites reported to the FBI, resulting in more than $200 million in losses for U.S.-based victims, the Treasury Department said in a news release.
New Russian state-sponsored APT quickly gains global reach, hitting expansive targets

1 week ago | threatbeat.com | Matt Kapko

Skip to content NEW Security news and analysis brought to you by the McCrary Institute | READ MORE → By Matt Kapko • May 29, 2025 newly discovered Russian state-sponsored threat group has targeted a large swath of industries, especially in NATO member states and Ukraine, part of a global espionage campaign in support of Moscow’s interests, Microsoft Threat Intelligence said in a Tuesday blog post.
Questions mount as Ivanti tackles another round of zero-days

1 week ago | cyberscoop.com | Matt Kapko

Voting is open for the 2025 CyberScoop 50 awards! Multiple attackers are raiding Ivanti customers’ systems again by exploiting a pair of closely intertwined vulnerabilities in Ivanti Endpoint Manager Mobile (EPMM) to achieve unauthenticated remote code execution. The software defects — CVE-2025-4427 and CVE-2025-4428 — were exploited as zero-days before Ivanti disclosed and patched the flaws. “We are aware of a very limited number of customers whose solution has been exploited at the time of...
New Russian state-sponsored APT quickly gains global reach, hitting expansive targets

1 week ago | cyberscoop.com | Matt Kapko

A newly discovered Russian state-sponsored threat group has targeted a large swath of industries, especially in NATO member states and Ukraine, part of a global espionage campaign in support of Moscow’s interests, Microsoft Threat Intelligence said in a Tuesday blog post. Laundry Bear, a group Microsoft tracks as Void Blizzard, has attacked multiple governments and critical infrastructure providers since at least 2024.

Contact details

Emails

[email protected]

Socials & Sites

Try JournoFinder For Free

Search and contact over 1M+ journalist profiles, browse 100M+ articles, and unlock powerful PR tools.

Start Your 7-Day Free Trial →

X (formerly Twitter)

Followers: 3K
Tweets: 5K
DMs Open: Yes

No Tweets found.