SC Media

SC Media SC Media arms information security professionals with the in-depth, unbiased business and technical information they need.

The official page for all things IT security.

A powerful stack means nothing if you can’t see your whole environment. Unified asset inventory is the first step in rea...
11/27/2025

A powerful stack means nothing if you can’t see your whole environment. Unified asset inventory is the first step in real exposure management — turning blind spots into a connected risk story you can act on.

Before you can protect your systems, you need to find out exactly what you have.

Synced web calendars can pose an overlooked security risk as attackers use event notifications to spread malicious links...
11/26/2025

Synced web calendars can pose an overlooked security risk as attackers use event notifications to spread malicious links, Bitsight reported.

Expired or compromised domains could be used to push out malicious calendar files.

Nine in 10 non-executive directors (NEDs) — people who sit on boards but are not involved in day-to-day operations — lac...
11/26/2025

Nine in 10 non-executive directors (NEDs) — people who sit on boards but are not involved in day-to-day operations — lack a measure of confidence in cybersecurity’s value, according to a Nov. 24 study from Gartner.

Experts say CISOs have to find better ways to translate technical jargon into business value.

In the era, proving who you are matters more than ever. Verifiable digital credentials let users share cryptographic p...
11/25/2025

In the era, proving who you are matters more than ever. Verifiable digital credentials let users share cryptographic proof — not personal data — cutting fraud, stopping deepfakes, and keeping identity under user control.

Deepfakes and other trust-destroying innovations may mean it's finally time to adopt decentralized digital IDs.

An experimental new Windows feature called "Agent Workspace" that gives Microsoft Copilot access to local files comes wi...
11/25/2025

An experimental new Windows feature called "Agent Workspace" that gives Microsoft Copilot access to local files comes with a warning about potential security risks.

Microsoft warns that AI agents may be susceptible to attacks like prompt injection.

JPMorgan Chase, Citi, and Morgan Stanley are among the banks notified by residential loan mortgage origination and colle...
11/25/2025

JPMorgan Chase, Citi, and Morgan Stanley are among the banks notified by residential loan mortgage origination and collection company SitusAMC that some of their data may have been stolen.

FBI investigating breach into residential loan mortgage company SitusAMC.

Forget the trick plays. still runs on fundamentals: patching, access control, asset visibility, and human awareness, s...
11/25/2025

Forget the trick plays. still runs on fundamentals: patching, access control, asset visibility, and human awareness, says Abnormal AI's Mick Leach. can help teams move faster — but it can’t make the tackle for you. Master the basics to win.

Here’s five ways security pros can create winning teams that block the vast majority of attacks.

Agentic has erased borders in cyberspace. Anthropic’s disclosure shows attackers now run full attack lifecycles at mac...
11/25/2025

Agentic has erased borders in cyberspace. Anthropic’s disclosure shows attackers now run full attack lifecycles at machine speed — leaving static defenses behind, says the ICIT - Institute for Critical Infrastructure Technology's David Mussington.

The recent disclosure by Anthropic, involving an agentic AI-enabled cyberattack, is a defining signal for operational risk management in cyberspace.

Cyber teams can’t win the AI-era threat race alone. Cyber teams can’t win the AI-era threat race alone. With 30+ tools p...
11/24/2025

Cyber teams can’t win the AI-era threat race alone. Cyber teams can’t win the AI-era threat race alone. With 30+ tools per stack and data trapped in silos, exposure management only works when platforms — and teams — collaborate, says Vicarius' Roi Choen in this commentary. Open ecosystems turn detection into action. The future is integrated.

Here’s the case for more integrations and partnerships as AI expand.

Boards don’t want acronyms — they want risk, impact, and ROI. Exposure management gives CISOs the KPIs to tell that stor...
11/24/2025

Boards don’t want acronyms — they want risk, impact, and ROI. Exposure management gives CISOs the KPIs to tell that story clearly, track progress, and win support without the jargon.

Making the cybersecurity case to executives or board members requires plain language, clear narratives, and most importantly, solid risk numbers. Exposure management can deliver exactly the metrics you need.

With fraud emerging as a threat, biometrics are becoming a critical shield to verify real people, not just credentials...
11/24/2025

With fraud emerging as a threat, biometrics are becoming a critical shield to verify real people, not just credentials. The arms race is on.

Deepfakes fuel a surge in high-impact fraud, forcing orgs to adopt stronger biometric defenses.

Researchers published a technical analysis of a critical Oracle Identity Manager (OIM) vulnerability, which could allow ...
11/22/2025

Researchers published a technical analysis of a critical Oracle Identity Manager (OIM) vulnerability, which could allow an attacker to achieve remote code ex*****on (RCE) without authentication and may have been exploited as a zero-day.

Researchers published proof-of-concept code for authentication bypass and RCE in OIM.

Address

400 Madison Avenue
New York, NY
10017

Opening Hours

Monday 9am - 5pm
Tuesday 9am - 5pm
Wednesday 9am - 5pm
Thursday 9am - 5pm
Friday 9am - 5pm

Website

Alerts

Be the first to know and let us send you an email when SC Media posts news and promotions. Your email address will not be used for any other purpose, and you can unsubscribe at any time.

Shortcuts

Share

Category