Tag: securityweek

Unpatched Vulnerabilities Allow Hacking of Mazda Cars: ZDI

ZDI discloses vulnerabilities in the infotainment system of multiple Mazda car models that could lead to code execution. The post Unpatched Vulnerabilities Allow Hacking of Mazda Cars: ZDI appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read…

HPE Patches Critical Vulnerabilities in Aruba Access Points

HPE this week warned of two critical vulnerabilities in Aruba Networking access points that could lead to unauthenticated command injection. The post HPE Patches Critical Vulnerabilities in Aruba Access Points appeared first on SecurityWeek. This article has been indexed from…

North Korean Hackers Target macOS Users

North Korean cryptocurrency thieves caught targeting macOS with fake PDF applications, backdoors and new persistence tactics. The post North Korean Hackers Target macOS Users appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article: North…

North Korean Hackers Target macOS Users with Fake Crypto PDFs

North Korean cryptocurrency thieves caught targeting macOS with fake PDF applications, backdoors and new persistence tactics. The post North Korean Hackers Target macOS Users with Fake Crypto PDFs  appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read…

The Biggest Inhibitor of Cybersecurity: The Human Element

Essential steps such as security awareness training, MFA, and Zero Trust identity management help organizations reduce the human element and stay ahead in the cybersecurity curve. The post The Biggest Inhibitor of Cybersecurity: The Human Element appeared first on SecurityWeek.…

‘SteelFox’ Miner and Information Stealer Bundle Emerges

Impersonating legitimate software such as Foxit PDF Editor and AutoCAD, the SteelFox crimeware bundle steals user information. The post ‘SteelFox’ Miner and Information Stealer Bundle Emerges appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original…

Android Banking Trojan ToxicPanda Targets Europe

ToxicPanda is a China-linked Android banking trojan spotted targeting over a dozen banks in Europe and Latin America. The post Android Banking Trojan ToxicPanda Targets Europe appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original…

Cyberattack Blamed for Statewide Washington Courts Outage

Unauthorized activity detected on the Washington courts network, which led to websites and other services becoming unavailable. The post Cyberattack Blamed for Statewide Washington Courts Outage appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original…

PLCHound Aims to Improve Detection of Internet-Exposed ICS

Georgia Tech researchers have developed PLCHound, an algorithm that uses AI to improve the identification of internet-exposed ICS. The post PLCHound Aims to Improve Detection of Internet-Exposed ICS appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read…

Canadian Authorities Arrest Suspected Snowflake Hacker

Canadian authorities have arrested Alexander ‘Connor’ Moucka, suspected of hacking multiple Snowflake accounts earlier this year. The post Canadian Authorities Arrest Suspected Snowflake Hacker appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article: Canadian…

Suspected Snowflake Hacker Arrested in Canada

Canadian authorities have arrested Alexander ‘Connor’ Moucka, suspected of hacking multiple Snowflake accounts earlier this year. The post Suspected Snowflake Hacker Arrested in Canada appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article: Suspected…

DocuSign Abused to Deliver Fake Invoices

Cybercriminals are abusing DocuSign APIs to send bogus email messages that bypass protections such as spam and phishing filters. The post DocuSign Abused to Deliver Fake Invoices appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…

Cybersecurity M&A Roundup: 37 Deals Announced in October 2024

Roundup of the thirty-seven cybersecurity-related merger and acquisition (M&A) deals announced in October 2024. The post Cybersecurity M&A Roundup: 37 Deals Announced in October 2024 appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article:…

210,000 Impacted by Saint Xavier University Data Breach

Saint Xavier University is notifying over 210,000 individuals of personal information compromise in a July 2023 data breach. The post 210,000 Impacted by Saint Xavier University Data Breach appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read…

City of Columbus Ransomware Attack Impacts 500,000 People

The City of Columbus says the personal information of 500,000 people was stolen in a ransomware attack. The post City of Columbus Ransomware Attack Impacts 500,000 People appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…

Lottie-Player Supply Chain Attack Targets Cryptocurrency Wallets

LottieFiles has confirmed that Lottie-Player has been compromised in a supply chain attack whose goal is cryptocurrency theft. The post Lottie-Player Supply Chain Attack Targets Cryptocurrency Wallets appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…

API Security Matters: The Risks of Turning a Blind Eye

Willfully ignoring important security issues to make our lives easier is, unfortunately, something that does happen in the security field.  The post API Security Matters: The Risks of Turning a Blind Eye appeared first on SecurityWeek. This article has been…

Back to the Future, Securing Generative AI

While there are similar security challenges that parallel traditional security, we must understand that AI requires new ways to approach security. The post Back to the Future, Securing Generative AI appeared first on SecurityWeek. This article has been indexed from…

Google Patches Critical Chrome Vulnerability Reported by Apple

Google has patched CVE-2024-10487, a critical Chrome vulnerability, and Mozilla has patched high-severity flaws in Firefox. The post Google Patches Critical Chrome Vulnerability Reported by Apple appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original…

Proofpoint to Acquire Data Security Posture Management Firm Normalyze

Enterprise cybersecurity giant Proofpoint is acquiring data security posture management (DSPM) company Normalyze.  The post Proofpoint to Acquire Data Security Posture Management Firm Normalyze appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article: Proofpoint…

RedLine and Meta Infostealers Disrupted by Law Enforcement

Authorities announce server shutdowns, domain seizures, and arrests in RedLine and Meta infostealers takedown operation. The post RedLine and Meta Infostealers Disrupted by Law Enforcement appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article:…

Zenity Raises $38 Million to Secure Agentic AI

Agentic AI security startup Zenity has raised $38 million in a Series B funding round led by Third Point Ventures and DTCP. The post Zenity Raises $38 Million to Secure Agentic AI appeared first on SecurityWeek. This article has been…

Armis Raises $200M at $4.2B Valuation, Eyes IPO

Armis raised an additional $200 million in funding at valuation of $4.2 billion as the company aims for an IPO. The post Armis Raises $200M at $4.2B Valuation, Eyes IPO appeared first on SecurityWeek. This article has been indexed from…

Google Invests in Alternative Neutral Atom Quantum Technology

Google invested in QuEra Computing, which is developing a very different and potentially rival quantum computer technology. The post Google Invests in Alternative Neutral Atom Quantum Technology appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…

Filigran Secures $35M Investment to Disrupt Threat Intel

French startup scores investments from Insight Partners, Accel and Moonfire, bringing the total raised to $56 million. The post Filigran Secures $35M Investment to Disrupt Threat Intel appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…

Abstract Security Raises $15 Million in Series A Funding

Abstract Security has raised $15 million in an oversubscribed Series A funding round led by Munich Re Ventures. The post Abstract Security Raises $15 Million in Series A Funding appeared first on SecurityWeek. This article has been indexed from SecurityWeek…

Cyber Guru Raises $25 Million for Training Platform

Cybersecurity training provider Cyber Guru has raised $25 million in a Series B funding round led by Riverside Acceleration Capital. The post Cyber Guru Raises $25 Million for Training Platform appeared first on SecurityWeek. This article has been indexed from…

Over $1 Million Paid Out at Pwn2Own Ireland 2024

Pwn2Own Ireland 2024 participants have earned over $1 million for camera, printer, NAS device, smart speaker and smartphone exploits. The post Over $1 Million Paid Out at Pwn2Own Ireland 2024 appeared first on SecurityWeek. This article has been indexed from…

US, Australia Release New Security Guide for Software Makers

CISA, FBI, and ACSC have published guidance to help software manufacturers establish secure deployment processes. The post US, Australia Release New Security Guide for Software Makers appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original…

Landmark Admin Discloses Data Breach Impacting 800,000 People

Insurance administrator Landmark Admin says personal information stolen in a ransomware attack earlier this year. The post Landmark Admin Discloses Data Breach Impacting 800,000 People appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article:…

AWS Seizes Domains Used by Russia’s APT29

AWS announced the seizure of domains used by Russian hacker group APT29 in phishing attacks targeting Ukraine and other countries. The post AWS Seizes Domains Used by Russia’s APT29 appeared first on SecurityWeek. This article has been indexed from SecurityWeek…

New Fortinet Zero-Day Exploited for Months Before Patch

A Fortinet zero-day tracked as CVE-2024-47575 and named FortiJump has been exploited since at least June 2024. The post New Fortinet Zero-Day Exploited for Months Before Patch appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…

Samsung Galaxy S24 Hacked at Pwn2Own Ireland 2024

Over $350,000 was paid out on day 2 of Pwn2Own Ireland 2024, including $50,000 for an exploit targeting the Samsung Galaxy S24.  The post Samsung Galaxy S24 Hacked at Pwn2Own Ireland 2024  appeared first on SecurityWeek. This article has been…

Fortinet Confirms Zero-Day Exploit Targeting FortiManager Systems

Fortinet confirms zero-day exploits hitting remote code execution bug in the FortiManager platform. CVSS severity score 9.8/10. The post Fortinet Confirms Zero-Day Exploit Targeting FortiManager Systems appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original…

US Police Detective Charged With Purchasing Stolen Credentials

Terrance Michael Ciszek is charged with buying stolen account credentials from the Genesis Market dark web marketplace. The post US Police Detective Charged With Purchasing Stolen Credentials appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…

Stream.Security Secures $30 Million Series B

Stream.Security (formerly Lightlytics) has raised a total of $55 million since launching in 2020 with a cloud data security product. The post Stream.Security Secures $30 Million Series B  appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read…

BlackCat Ransomware Successor Cicada3301 Emerges

The Cicada3301 ransomware shows multiple similarities with BlackCat and is believed to mark the reemergence of the threat. The post BlackCat Ransomware Successor Cicada3301 Emerges appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article:…

Latrodectus Malware Increasingly Used by Cybercriminals

Latrodectus malware has been increasingly used by cybercriminals, with recent campaigns targeting the financial, automotive and healthcare sectors.  The post Latrodectus Malware Increasingly Used by Cybercriminals appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original…