Paul Shread

Baltimore

International Editor, The Cyber Express at The Cyber Express by Cyble

Featured in: Favicon

technologyadvice.com Favicon

channelinsider.com Favicon

time.com

bostonglobe.com Favicon

serverwatch.com Favicon

webopedia.com Favicon

internetnews.com Favicon

esecurityplanet.com Favicon

enterprisenetworkingplanet.com Favicon

thecyberexpress.com + 2 more

Articles

Take It Down Act Expected To Become Law Despite Concerns

1 week ago | thecyberexpress.com | Paul Shread

U.S. legislation to criminalize non-consensual intimate images, videos and deepfakes has passed Congress with the overwhelming support of both parties, and even social media companies have voiced support for the bill.
Threat Groups Aren’t Developing New Attack Vectors with GenAI: RSAC Presentation

2 weeks ago | thecyberexpress.com | Paul Shread

Nation-state threat actors are using generative AI tools to refine their attack techniques, but they aren’t yet using GenAI to create new attack vectors, according to a presentation at this week’s RSAC Conference that offered insight into how hackers are using GenAI tools.
Microsoft Recall Returns: Security Improves but Issues Remain

2 weeks ago | thecyberexpress.com | Paul Shread

Nearly a year after its troubled initial rollout, Microsoft Recall is back. Microsoft announced in an April 25 blog post that it will begin rolling out the Windows Recall feature on Copilot+ PCs, claiming much-improved security for the screen recording tool. Security and privacy issues do seem to have improved markedly over early versions of Recall, which had resulted in a backlash that caused Microsoft to delay the product for further testing and development.
Japan Warns of Hacked Trading Accounts and Unauthorized Trades

3 weeks ago | thecyberexpress.com | Paul Shread

Japan’s Financial Services Agency (FSA) warned last week of the growing threat of hacked trading accounts that has resulted in nearly US $700 million in unauthorized trades since March. The FSA documented a sharp increase in the number of such fraudulent trades, from 33 in February to 685 in March and 736 through the first 16 days of April. Accounts in at least six securities firms have been targeted in the attacks.
MITRE CVE Contract Extended Just Before Expiration

4 weeks ago | thecyberexpress.com | Paul Shread

The Common Vulnerabilities and Exposures (CVE) Program is one of the most central programs in cybersecurity, so news that MITRE’s contract to run the program was expiring sent shock waves through the cybersecurity community. But fears for the future of the globally recognized program underpinning vulnerability management were assuaged when CISA announced today that it was extending the MITRE CVE contract. The extension apparently is for 11 months, sources told The Cyber Express.
LLMs Create a New Supply Chain Threat: Code Package Hallucinations

4 weeks ago | thecyberexpress.com | Paul Shread

Code-generating large language models (LLMs) have introduced a new security issue into software development: Code package hallucinations. Package hallucinations occur when an LLM generates code that references a package that doesn’t actually exist, creating an opportunity for threat actors to exploit that GenAI hallucination by creating a malicious repository with the same name as the hallucinated package.
Hackers Had Access to 150,000 Emails in U.S. Treasury Email Breach

1 month ago | thecyberexpress.com | Paul Shread

The U.S. Treasury Department’s Office of the Comptroller of the Currency (OCC) has notified Congress of “a major information security incident” involving threat actor access to about 150,000 department emails.
Microsoft Patch Tuesday April 2025: One Zero-Day, 11 High-Risk Flaws

1 month ago | thecyberexpress.com | Paul Shread

Microsoft Patch Tuesday for April 2025 included fixes for 135 vulnerabilities in all, including one actively exploited zero-day and an additional 11 high-risk vulnerabilities. In all, Patch Tuesday April 2025 included 126 Microsoft vulnerabilities and nine Chrome/Microsoft Edge vulnerabilities.
DragonForce Claims To Be Taking Over RansomHub

1 month ago | thecyberexpress.com | Paul Shread

The DragonForce ransomware group claims to be taking over the infrastructure of RansomHub, the biggest ransomware group in the last year, Cyble threat intelligence researchers reported in an advisory to clients today. Cyble said the moniker behind the operators of DragonForce announced a new “project” on RAMP forum and subsequently posted the same information on their onion-based data leak site (DLS).
CISA Details New RESURGE Malware Used In Ivanti Attacks

1 month ago | thecyberexpress.com | Paul Shread

The U.S. Cybersecurity and Information Security Agency (CISA) has issued an advisory detailing a new malware variant detected in attacks on an Ivanti vulnerability. The CISA advisory says the agency recovered three files from a critical infrastructure environment’s Ivanti Connect Secure device after threat actors exploited Ivanti vulnerability CVE-2025-0282 for initial access.