Category: securityweek

Veeam Warns of Critical Vulnerability in Service Provider Console

Veeam releases patches for two vulnerabilities in Service Provider Console, including a critical-severity remote code execution bug. The post Veeam Warns of Critical Vulnerability in Service Provider Console appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read…

Tuskira Scores $28.5M for AI-Powered Security Mesh

Tuskira is working on an AI-powered security mesh promising to integrate fragmented security tools and mitigate risk exposure in real time. The post Tuskira Scores $28.5M for AI-Powered Security Mesh appeared first on SecurityWeek. This article has been indexed from…

New EU Regulation Establishes European ‘Cybersecurity Shield’

The European Union has adopted new legislation to establish a cybersecurity shield and ensure adequate security standards for managed security services. The post New EU Regulation Establishes European ‘Cybersecurity Shield’ appeared first on SecurityWeek. This article has been indexed from…

AWS Launches Incident Response Service

AWS has launched Security Incident Response, a new service for quick and efficient security event management. The post AWS Launches Incident Response Service appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article: AWS Launches…

Cybersecurity M&A Roundup: 49 Deals Announced in November 2024

Roundup of the forty-nine cybersecurity-related merger and acquisition (M&A) deals announced in November 2024. The post Cybersecurity M&A Roundup: 49 Deals Announced in November 2024 appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article:…

Critical Vulnerability Found in Zabbix Network Monitoring Tool

A critical-severity vulnerability in open source enterprise network monitoring tool Zabbix could lead to full system compromise. The post Critical Vulnerability Found in Zabbix Network Monitoring Tool appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…

T-Mobile Shares More Information on China-Linked Cyberattack

T-Mobile has confirmed being targeted by hackers, likely China’s Salt Typhoon, but reiterated that the attack was blocked. The post T-Mobile Shares More Information on China-Linked Cyberattack appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…

ESET Flags Prototype UEFI Bootkit Targeting Linux

ESET warns of a new reality: “UEFI bootkits are no longer confined to Windows systems alone.” The post ESET Flags Prototype UEFI Bootkit Targeting Linux appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article:…

ProjectSend Vulnerability Exploited in the Wild

VulnCheck warns of widespread exploitation of a year-and-a-half-old ProjectSend vulnerability for which multiple public exploits exist. The post ProjectSend Vulnerability Exploited in the Wild appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article: ProjectSend…

Bipartisan Legislation Seeks Stronger Healthcare Cybersecurity

US senators introduce new legislation to protect health data and strengthen the cybersecurity of the country’s healthcare sector. The post Bipartisan Legislation Seeks Stronger Healthcare Cybersecurity appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original…

VMware Patches High-Severity Vulnerabilities in Aria Operations

The company warns that malicious hackers can craft exploits to elevate privileges or launch cross-site scripting attacks. The post VMware Patches High-Severity Vulnerabilities in Aria Operations appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original…

Starbucks, Grocery Stores Hit by Blue Yonder Ransomware Attack

Supply chain management software provider Blue Yonder has been targeted in a ransomware attack that caused significant disruptions for some customers. The post Starbucks, Grocery Stores Hit by Blue Yonder Ransomware Attack appeared first on SecurityWeek. This article has been…

Vulnerabilities Expose mySCADA myPRO Systems to Remote Hacking

Critical vulnerabilities patched by mySCADA in its myPRO HMI/SCADA product can allow remote and unauthenticated takeover of the system. The post Vulnerabilities Expose mySCADA myPRO Systems to Remote Hacking appeared first on SecurityWeek. This article has been indexed from SecurityWeek…

Halcyon Raises $100 Million at $1 Billion Valuation

Series C Funding round brings the total amount raised by the ransomware protection firm to $190 million. The post Halcyon Raises $100 Million at $1 Billion Valuation appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…

Cyberattack Disrupts Systems of Gambling Giant IGT

Gambling giant IGT says it has taken certain systems offline in response to a cyberattack discovered over the weekend. The post Cyberattack Disrupts Systems of Gambling Giant IGT appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read…

US Takes Down Stolen Credit Card Marketplace PopeyeTools

The US government has announced the seizure of stolen credit card marketplace PopeyeTools and charges against its administrators. The post US Takes Down Stolen Credit Card Marketplace PopeyeTools appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read…

Russian Cyberespionage Group Hit 60 Victims in Asia, Europe

Russia-linked TAG-110 has targeted over 60 government, human rights, and educational entities in Asia and Europe. The post Russian Cyberespionage Group Hit 60 Victims in Asia, Europe appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…

400,000 Systems Potentially Exposed to 2023’s Most Exploited Flaws

VulnCheck finds hundreds of thousands of internet-accessible hosts potentially vulnerable to 2023’s top frequently exploited flaws. The post 400,000 Systems Potentially Exposed to 2023’s Most Exploited Flaws appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…

2,000 Palo Alto Firewalls Compromised via New Vulnerabilities

The number of internet-exposed Palo Alto firewalls is dropping, but 2,000 have been compromised, according to Shadowserver Foundation. The post 2,000 Palo Alto Firewalls Compromised via New Vulnerabilities appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read…

VMware Discloses Exploitation of Hard-to-Fix vCenter Server Flaw

The saga of VMWare’s critical CVE-2024-38812 vCenter Server bug has reached the “exploitation detected” stage. The post VMware Discloses Exploitation of Hard-to-Fix vCenter Server Flaw appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article:…

Ransomware Attack on Oklahoma Medical Center Impacts 133,000

Great Plains Regional Medical Center says the personal information of 133,000 individuals was compromised in a ransomware attack. The post Ransomware Attack on Oklahoma Medical Center Impacts 133,000 appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read…

AnnieMac Data Breach Impacts 171,000 People

AnnieMac Home Mortgage is informing over 171,000 individuals that their data has been compromised in a hacker attack.  The post AnnieMac Data Breach Impacts 171,000 People appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original…

T-Mobile Also Targeted in Chinese Telecom Hacking Campaign

T-Mobile has also been targeted by the Chinese group Salt Typhoon in a major espionage campaign targeting US telecom companies.  The post T-Mobile Also Targeted in Chinese Telecom Hacking Campaign appeared first on SecurityWeek. This article has been indexed from…

Bitsight to Acquire Cybersixgill for $115 Million

Cyber risk management solutions provider Bitsight is acquiring threat intelligence firm Cybersixgill for $115 million. The post Bitsight to Acquire Cybersixgill for $115 Million appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article: Bitsight…

Two Men Charged For Hacking US Tax Preparation Firms

Two Nigerian nationals, one in Mexico and one in North Dakota, have been charged for hacking into the systems of US tax preparation companies. The post Two Men Charged For Hacking US Tax Preparation Firms appeared first on SecurityWeek. This…

CISA, FBI Confirm China Hacked Telecoms Providers for Spying

CISA and the FBI have confirmed that Chinese hackers compromised the networks of telecommunications companies to spy on specific targets. The post CISA, FBI Confirm China Hacked Telecoms Providers for Spying appeared first on SecurityWeek. This article has been indexed…

Cybereason and Trustwave Announce Merger

Cybereason Chairman & CEO Eric Gan believes the merger could help its existing success in some international markets. The post Cybereason and Trustwave Announce Merger appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article:…

Google Cloud to Assign CVEs to Critical Vulnerabilities

Google Cloud will be assigning CVE identifiers to serious cloud vulnerabilities, even ones that don’t require patching. The post Google Cloud to Assign CVEs to Critical Vulnerabilities  appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…

Ivanti Patches 50 Vulnerabilities Across Several Products

Ivanti has released fixes for dozens of vulnerabilities in Endpoint Manager, Avalanche, Connect Secure, Policy Secure, and Secure Access Client. The post Ivanti Patches 50 Vulnerabilities Across Several Products appeared first on SecurityWeek. This article has been indexed from SecurityWeek…

CISO Forum Virtual Summit is Today

The CISO Forum Virtual Summit takes place on November 13th in SecurityWeek’s Virtual Conference Center. The post CISO Forum Virtual Summit is Today appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article: CISO Forum…

Citrix, Fortinet Patch High-Severity Vulnerabilities

Citrix and Fortinet have released patches for multiple vulnerabilities, including high-severity bugs in NetScaler and FortiOS. The post Citrix, Fortinet Patch High-Severity Vulnerabilities appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article: Citrix, Fortinet…

China’s Volt Typhoon Rebuilding Botnet

Security researchers say the botnet created by China’s Volt Typhoon re-emerged recently, leveraging the same core infrastructure and techniques.  The post China’s Volt Typhoon Rebuilding Botnet appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original…

Microsoft Confirms Zero-Day Exploitation of Task Scheduler Flaw

Patch Tuesday: Microsoft patches 90 security flaws across the Windows ecosystem warns of zero-day exploitation and code execution risks. The post Microsoft Confirms Zero-Day Exploitation of Task Scheduler Flaw appeared first on SecurityWeek. This article has been indexed from SecurityWeek…

Ahold Delhaize Cybersecurity Incident Impacts Giant Food, Hannaford

Cybersecurity incident impacts Giant Food, Hannaford, and other Ahold Delhaize USA brands, including pharmacies and e-commerce services. The post Ahold Delhaize Cybersecurity Incident Impacts Giant Food, Hannaford appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…

Amazon Employee Data Leaked by Hacker

Amazon has confirmed that some employee data was compromised as a result of a MOVEit hack last year. The post Amazon Employee Data Leaked by Hacker appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original…

Cyberattack Cost Oil Giant Halliburton $35 Million

In its latest financial report, Halliburton said the recent cybersecurity incident has so far cost the company $35 million. The post Cyberattack Cost Oil Giant Halliburton $35 Million appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read…

Malwarebytes Acquires VPN Provider AzireVPN

Malwarebytes has acquired Sweden-based privacy-focused VPN provider AzireVPN to expand its product offerings. The post Malwarebytes Acquires VPN Provider AzireVPN appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article: Malwarebytes Acquires VPN Provider AzireVPN

Unpatched Vulnerabilities Allow Hacking of Mazda Cars: ZDI

ZDI discloses vulnerabilities in the infotainment system of multiple Mazda car models that could lead to code execution. The post Unpatched Vulnerabilities Allow Hacking of Mazda Cars: ZDI appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read…