SOCs Must Be Built for Speed in the AI Threat Era

Michael Novinson • November 21, 2025

The adversarial use of AI has dramatically compressed attack timelines, forcing organizations to rethink their security operations centers. John Israel, global CISO at KPMG, discusses how companies must reshape their SOC programs around speed, increased automation and governance.

►

Artificial Intelligence & Machine Learning

Hackers Exploited Cisco ISE Zero-Day

Latest

Cyberwarfare / Nation-State Attacks

Chinese APT24 Deploys Custom Malware, New Stealthy Tactics

Akshaya Asokan • November 21, 2025

Chinese nation-state group APT24 targeted multiple Taiwanese companies as part of an espionage operation that went undetected for three years. The hacking group continually updated its malware infrastructure and tactics, enabling it to stay under the radar, Google Cloud said.

Litigation

SEC Ends SolarWinds Suit After Major Legal Setbacks

Chris Riotta • November 21, 2025

The SEC has dropped its remaining claims against SolarWinds and CISO Tim Brown, ending a controversial cyber fraud lawsuit that aimed to expand securities law to cover operational security failures tied to the 2020 Russian hacking campaign.

Endpoint Security

Hardware Hackers Urge Vendor Engagement for Security Success

Mathew J. Schwartz • November 21, 2025

As fresh vulnerabilities in hardware keep coming to light, one question remains: What vendors can do to better prevent, identify and eradiate flaws? One shortlist offered by veteran hardware hackers centered on the upsides of engagement, including bug bounty programs.

Endpoint Security

Is That Medical Device Secure? Get It Right in the Contract

Marianne Kolbasuk McGee • November 21, 2025

Newly revised "model contract language" guidance from the Health Sector Coordinating Council provides an updated reference document to help healthcare providers and medical device makers better articulate and evaluate cyber considerations when negotiating purchases of products and services.

Data Loss Prevention (DLP)

Data Security Rollouts Thrive on Momentum and Preparation

Matthew Perry • November 21, 2025

Organizations that struggle with data security rollouts aren't burdened by financial constraints or poor tooling. But they often misjudge how much work goes into security planning, said Antonio Maio, managing director at global consulting firm Protiviti.

Blockchain & Cryptocurrency

Masterclass Quantum: APAC's Quantum-Safe Paths

Suparna Goswami • November 21, 2025

Asia-Pacific is treading a different path to quantum-safe cryptography, shaped by geopolitics, regulatory environments and digital sovereignty goals. These varied strategies allow countries to tailor their cryptographic standards and transition timelines, said Marin Ivezic, CEO of Applied Quantum.

Data Privacy

WhatsApp API Could Bulk Leak User Telephone Numbers

Greg Sirico • November 21, 2025

Security researchers were able to scoop up the telephone numbers of billions of WhatsApp users through an enumeration tool provided by app owner Meta. The sheer quantity of leaked numbers - 3.5 billion in total - would amount to "the largest data leak in history."

Government

ISMG Editors: Inside the Staffing Crisis Crippling CISA

Anna Delaney • November 21, 2025

In this week's ISMG Editors' Panel, four editors discussed the staffing crisis confronting America's cyber defense agency, the escalating Akira ransomware threat putting more pressure on healthcare, and growing concerns over whether AI models used in security can actually be trusted.

3rd Party Risk Management

ShinyHunters Hack Salesforce Instances Via Gainsight Apps

Akshaya Asokan • November 20, 2025

Customer relationship management giant Salesforce is again notifying customers that hackers may be stealing their data through a third-party app. The San Francisco company late Wednesday disclosed that apps published by Gainsight connected to Salesforce instances may have "enabled unauthorized access."

Artificial Intelligence & Machine Learning

Critics Say White House's Draft AI Order Is a Power Grab

Chris Riotta • November 20, 2025

A leaked draft executive order would empower federal agencies to override state AI laws, threatening federal funds for noncompliance and creating a litigation task force - drawing sharp backlash over executive overreach and potential harm to consumers.

Endpoint Security

Shine a Light: Infrared Imaging for Hardware Assurance

Mathew J. Schwartz • November 20, 2025

Attackers tampering with microchips after they've left the factory but before they get deployed by end users remains a long-running hardware security challenge. Hardware security researcher Andrew "Bunnie" Huang's solution involves using infrared light to literally see if chips look legitimate.

Governance & Risk Management

$5M Settlement in Geisinger Health, Nuance Insider Breach

Marianne Kolbasuk McGee • November 20, 2025

A federal court has granted preliminary approval of a $5 million settlement in class action litigation filed against Pennsylvania-based Geisinger Health and Nuance Communications - now part of Microsoft - involving a 2023 insider data breach affecting more than 1 million Geisinger patients.