Orange Spain’s internet went down for several hours after its RIPE account was hacked, likely after malware stole the credentials.
Xerox says personal information was stolen in a cyberattack at US subsidiary Xerox Business Solutions.
The hacking of a municipal water plant is prompting new warnings from U.S. security officials at a time when governments are wrestling with how to harden water utilities against cyberattacks.
The most efficient and effective teams have healthy and constructive cultures that encourage team members to go above and beyond the call of duty.
Security appliances are amongst the most riskiest enterprise devices and are a often method for threat actors to infiltrate a business.
While AI can significantly bolster defense mechanisms, it also equips adversaries with powerful tools to launch sophisticated cyberattacks.
By supplementing traditional perimeter defense mechanisms with principles of data integrity, identity management, and risk-based prioritization, organizations can reduce their exposure to data breaches.
Every asset in an organization’s inventory that is not accounted for and protected is a potential attack vector that an attacker can use to gain access or move undetected.
CISOs and risk management leaders must understand clearly the role of cyber insurance in a robust security program, ongoing changes to premiums and policy pricing, the errors that could deny coverage and how it all fits into global incident response planning.
SecurityWeek’s inaugural Cyber AI & Automation Summit pushes the boundaries of security discussions by exploring the implications and applications of predictive AI, machine learning, and automation in modern cybersecurity programs.
Designed for senior level cybersecurity leaders to discuss, share and learn innovative information security and risk management strategies, SecurityWeek’s CISO Forum, will take place in 2023 as a virtual event. (June 13-14, 2023)
As CISOs and corporate defenders grapple with the intricacies of securing sensitive data passing through multi-cloud deployments and APIs, the importance of frameworks, tools, controls and design models have surfaced to the front burner. (July 19, 2023)
-
Google has released a Chrome 120 update to resolve six vulnerabilities, including four reported by external researchers.
-
Attackers can abuse a new DLL search order hijacking technique to execute code in applications within the WinSxS folder.
-
Two flaws in Google Kubernetes Engine could be exploited to escalate privileges and take over the Kubernetes cluster.
-
Shadowserver sees possible in-the-wild exploitation of a critical Apache OFBiz vulnerability tracked as CVE-2023-49070.
-
Mandiant’s account on X, formerly Twitter, was hacked and used to lure users to a cryptocurrency phishing site.
-
Eagers Automotive, a vehicle dealer in Australia and New Zealand, has halted trading after being targeted in a cyberattack.
-
Law enforcement authorities in 17 countries discovered more than 400 online merchants infected with skimmers.
-
Arion Kurtaj was found responsible by a British court of carrying out one of the biggest breaches in the history of the video game…
