Mathew J. Schwartz

@[email protected]
478 Followers
136 Following
3.2K Posts
Cybersecurity journalist — I'm Executive Editor at Information Security Media Group, leading its DataBreachToday website as well as UK/Europe coverage of all things security, privacy, cybercrime, surveillance and more.
Reportinghttps://www.databreachtoday.com/authors/mathew-j-schwartz-i-892
Photographyhttps://penandcamera.com/
Mathew J. Schwartz8h ago
The U.S. Department of Defense's push to overhaul its zero trust architecture is facing mounting pressure from other priorities including integrating artificial intelligence, cloud platforms and connected operational systems across the battlefield - raising questions about whether the Pentagon will meet its ambitious September 2027 deadline to secure its systems against attackers. https://www.databreachtoday.com/pentagons-zero-trust-push-faces-2027-reality-check-a-31305
Mathew J. Schwartz15h ago
A flaw in OpenAI's coding agent exposed the GitHub login credentials of developers who used the tool, allowing attackers to access their private code repositories without authorization. https://www.databreachtoday.com/openais-coding-agent-flaw-exposed-github-passwords-a-31273
Mathew J. Schwartz16h ago
Dan Kennedy    1d ago

For the past three years, one of the highlights of my week at #RSAC has been joining @euroinfosec in the Information Security Media Group (ISMG) studio to talk about the intersection of my research and the security themes we’re seeing emerge at the conference:

https://www.bankinfosecurity.com/multi-cloud-security-straining-ciso-teams-a-31240

Mathew J. Schwartz1d ago
Signs of life: "Teachers have also taught students how to play board and card games like Scattergories and Uno." Good.
https://www.nytimes.com/2026/03/29/technology/chromebook-remorse-kansas-school-laptops.html?smid=url-share
Chromebook Remorse: Tech Backlash at Schools Extends Beyond Phones

No more YouTube or video games on school laptops. Textbooks and pencils are back. Some seventh graders say they prefer learning offline.

The New York Times
Mathew J. Schwartz1d ago
Cloud-based electronic health records vendor CareCloud has notified the U.S. Securities and Exchange Commission of a cyber incident earlier this month that temporarily disrupted the software and accessed one of its EHR environments. The company is assessing whether patient data was accessed or stolen. https://www.databreachtoday.com/cloud-based-ehr-vendor-notifies-sec-about-hacking-incident-a-31294
Mathew J. Schwartz1d ago
For the private sector, the cyber talent gap is an HR issue - at most a security problem. But for the U.S. military, it's a looming strategic crisis, the Pentagon's top cyber official said this week. https://www.databreachtoday.com/pentagon-gives-new-details-on-cyber-command-personnel-reform-a-31295
Mathew J. Schwartz1d ago
Talking about Iran and cyber? Love this take from @krypt3ia about how Handala appears to function "as a narrative amplification engine" which is "effectively a hype machine operating under the guise of cyber operations."
https://krypt3ia.wordpress.com/2026/03/30/effectiveness-assessment-of-the-handala-cyber-enabled-influence-campaigns/
Effectiveness Assessment of the Handala Cyber-Enabled Influence Campaigns

Operational Overview The Handala ecosystem presents itself as a capable cyber actor, but the available evidence indicates it functions more accurately as a narrative amplification engine effectivel…

Krypt3ia
Mathew J. Schwartz2d ago
Under fire: Attackers target flaws in F5 and Citrix gear https://www.databreachtoday.com/under-fire-attackers-target-flaws-in-f5-citrix-gear-a-31289
Mathew J. SchwartzMar 25
This year's RSAC Cryptographers' Panel highlights AI defense challenges, including missing threat models to defend against attacks in the age of all things agentic https://www.databreachtoday.com/rsac-cryptographers-panel-highlights-ai-defense-challenges-a-31180
Mathew J. SchwartzMar 24

How to better defend against phishing? Check out my video interview with John Fitzpatrick of Lab539, who tracks adversary-in-the-middle attacks, for the latest on phishing-as-a-service toolkits grabbing in real-time employees' credentials and sessions, as well as strategies for combating.

Watch here: https://www.databreachtoday.com/phishing-defense-tracking-adversary-in-the-middle-attacks-a-31097 🎥 📺