Latest

Finance & Banking

EU Belatedly Sanctions Chinese and Iranian Hackers

David Meyer  •  March 17, 2026

The European Union sanctioned three Chinese and Iranian hacking operations that have been under U.S. indictments or sanctions for over a year - or, in one case, since 2019. The sanctions freeze assets and forbid EU citizens and companies from funding or otherwise doing business with the targets.

Artificial Intelligence & Machine Learning

House Panel Warns of Chinese AI Robotics Threat

Chris Riotta  •  March 17, 2026

Witnesses told a U.S. House Homeland Security panel that Chinese-developed AI robotics platforms could give Beijing new avenues for surveillance, disruption and physical harm across critical sectors, and urged restrictions on federal use as China expands its industrial dominance.

►

Events

Why AI Phishing Demands Stronger MFA Now

Tony Morbin  •  March 17, 2026

As AI makes phishing attacks more convincing and scalable, legacy multi-factor authentication is no longer enough. Yubico's Niall McConachie and Neil Fox explain why phishing-resistant MFA and hardware-backed security keys are now the gold standard for identity protection.

Healthcare

Telehealth Firm to Be Barred From Data Exchanges

Marianne Kolbasuk McGee  •  March 17, 2026

A telehealth firm has admitted that it gained access to patient medical records via a health information exchange network under the guise of treatment purposes when it actually provided the records to law firms. But the legal dispute involving Epic and Health Gorilla is growing more complicated.

Critical Infrastructure Security

Cheap and Dangerous: IP KVMs Carry Flaws

Greg Sirico  •  March 17, 2026

A flood of lost-cost devices for remote IP control of servers or human-machine interfaces has roused a concomitant wave of security warnings about their security defects. Firmware security company Eclypsium probed devices made by four KVM vendors, discovering nine vulnerabilities.

Healthcare

Why Data Security Standards in Cancer Innovation Matter

Marianne Kolbasuk McGee  •  March 17, 2026

Cancer research and treatment innovation - and the tech that powers that - requires a great deal of collaboration and data sharing among multiple parties. But keeping that sensitive information secure and private is crucial - and requires adherence to standards, said Baxter Lee of Clearwater.

Agentic AI

AI Agents Hack Systems Without Being Asked

Rashmi Ramesh  •  March 16, 2026

Be careful telling AI agents how to act, since they might end up hacking their way to an end goal. Agents assigned routine enterprise tasks are independently hacking the systems they operate in, even with no adversarial instructions involved, cybersecurity researchers found

►

Governance & Risk Management

Inside Nevada's Push for Secure Digital Government

Jennifer Lawinski  •  March 16, 2026

The State of Nevada is accelerating its cybersecurity and digital modernization efforts after a major ransomware attack exposed the importance of resilience, workforce readiness and strong governance, said State CIO Tim Galluzi.

Government

US Lawmakers Call for CISA Polygraph Probe

Chris Riotta  •  March 16, 2026

Five U.S. Democratic lawmakers called for an investigation into a series of escalating controversies surrounding Cybersecurity and Infrastructure Security Agency leadership, following allegations that ex-Acting Director Madhu Gottumukkala bypassed established intelligence protocols.

►

Agentic AI

AI Agents Need Identity Governance Now

Tony Morbin  •  March 16, 2026

AI agents are already in production at many organizations, often without clear ownership, guardrails or governance. SailPoint's Mo Joueid makes the case for treating them as a distinct identity class before they outpace enterprise controls.

►

Events

PAM Complexity Is Leaving Organizations Exposed

Anna Delaney  •  March 16, 2026

Privileged access management has become so complex and expensive that many organizations never fully deploy the platforms they buy. Admin By Request's Paul Fisher makes the case for stripping PAM back to basics before shadow AI agents make governance impossible.

Critical Infrastructure Security

NY Sets 'First-of-Nation' Cyber Mandates for Water Sector

Chris Riotta  •  March 16, 2026

New York is rolling out new cybersecurity regulations for water and wastewater utilities, requiring operators to conduct risk assessments and deploy security controls while offering $2.5 million in grants to strengthen defenses against rising cyberthreats targeting critical infrastructure.