Back to all editions
Edition#156·

Ransomware Evolves. Resilience Wins.

Ransomware, AI security, identity risk, resilience, and governance stories worth your attention this week.

This week's briefing highlights the cybersecurity stories leaders should pay attention to — from ransomware and AI-driven threats to identity, resilience, and governance.

Cyber This Week Edition 156 — Ransomware Evolves. Resilience Wins.
May 18, 2025 10 articles

This Week's Articles

  1. 01
    WIRED

    The New Playbook for Ransomware Defense

    Ransomware groups are adapting faster than ever. Here's what defenders need to know now.

    Why it matters

    Signals a shift in extortion economics — leaders should reassess incident response readiness.

  2. 02
    Microsoft on the Issues

    Securing AI: Opportunities and Emerging Risks

    As AI adoption accelerates, security leaders must plan for a new set of challenges.

    Why it matters

    AI governance and model risk are moving from optional to expected in enterprise programs.

  3. 03
    SANS

    Identity Security in a Passwordless World

    Why identity is the new perimeter — and how to protect it.

    Why it matters

    Identity compromise remains the top initial access vector across major incidents.

  4. 04
    Reuters

    Cyber Insurance Renewals Get Tougher

    Insurers are tightening controls requirements and demanding more evidence at renewal.

    Why it matters

    Renewal cycles are becoming a de facto controls audit — plan the evidence trail early.

  5. 05
    Harvard Business Review

    Board Reporting for Cyber Risk, Reimagined

    Boards want fewer metrics and more meaning. A practical framework for cyber updates.

    Why it matters

    New SEC disclosure norms are pushing every CISO into board-facing communication.

  6. 06
    CISA

    OT Under Fire: Lessons from a Manufacturing Incident

    A ransomware event exposes gaps between IT and OT operating models.

    Why it matters

    OT/IT convergence is expanding blast radius — segmentation debt is now a board issue.

  7. 07
    Gartner

    The Resilience Metric CISOs Actually Track

    Moving beyond MTTR: how leaders measure the ability to keep operating under attack.

    Why it matters

    Resilience is displacing 'prevention' as the primary executive conversation.

  8. 08
    IAPP

    Data Breach Notifications Hit a Record Quarter

    A surge in disclosures reveals patterns in vendor and identity-based intrusions.

    Why it matters

    Third-party incidents dominate — vendor risk programs need real-world stress testing.

  9. 09
    Dark Reading

    Rebuilding After the Breach: A CISO's Field Notes

    What a former CISO learned about rebuilding trust, tooling, and the team after a major incident.

    Why it matters

    Post-incident learning is where mature security programs quietly separate from the rest.

  10. 10
    Krebs on Security

    The Rise of AI-Assisted Social Engineering

    Attackers are combining voice cloning, generative text, and OSINT at unprecedented scale.

    Why it matters

    Awareness training and verification workflows need a refresh for the deepfake era.

Newsletter

Get the next edition every Sunday

No spam. Just one curated cyber briefing every Sunday.