Ionut Arghire

Security Experts:

WRITE FOR US

Contact Ionut Arghire

Ionut Arghire is an international correspondent for SecurityWeek.

Recent articles by Ionut Arghire

Identity-Based Access Provider Elisity Raises $26 Million

Identity management provider Elisity closes Series A funding to help scale and meet demand for its cloud-delivered cybersecurity platform.
Fujifilm Restores Services Following Ransomware Attack

The attack took place on June 1 and forced the company to shut down all of the affected servers and computers.
Google Workspace Gets Client-Side Encryption

The feature is meant to provide users with control over encryption keys and the service used to access them.
Researchers Attribute SITA Cyberattack to Chinese Hackers

Security researchers at Group-IB believe that Chinese nation-state threat actor APT41 performed the cyberattack against aviation IT firm SITA
Microsoft Disrupts Large-Scale BEC Campaign

The attackers compromised mailboxes via phishing emails containing a malicious HTML attachment posing as a voice message.
Cybersecurity Training Company Immersive Labs Raises $75 Million

Immersive plans to use the new funds to accelerate the delivery of a progressive new Cyber Workforce Optimization platform.
Volkswagen America Discloses Data Breach Impacting 3.3 Million

Volkswagen Group of America discloses a data breach that exposed customer names, email and mailing addresses, and phone numbers, as well as details about purchased vehicles.
COO of Security Company Charged for Cyberattack on Medical Center

Vikas Singla, the chief operating officer of IoT security company Securolytics, allegedly launched a cyberattack against the Gwinnett Medical Center.
Alibaba's Lazada Launches Public Bug Bounty Program

The e-commerce platform has been running a private bug bounty program and is now opening it to the entire cybersecurity community.
Authorities Take Down Stolen Login Credentials Marketplace Slilpp

The portal was used for the illicit trading of usernames and passwords for online banking and payment accounts, mobile phone accounts, and accounts at online retailers or other services.
Attackers Leverage SonicWall VPN Flaw to Compromise SRA Appliances

CrowdStrike warns that SonicWall patches released in 2019 do not properly address a vulnerability in the company’s Secure Remote Access (SRA) devices.
GitHub Starts Scanning for Exposed Package Registry Credentials

The GitHub secrets scanning service is looking for potentially leaked credentials in millions of open-source packages.
Google Patches Chrome Zero-Day Used by Commercial Exploit Company

Google has addressed a total of six zero-day vulnerabilities in the browser since the beginning of this year.
Kubeflow Deployments Targeted in New Crypto-mining Campaign

Microsoft warns that attackers are simultaneously deploying TensorFlow pods on multiple Kubernetes clusters to mine cryptocurrency.
Intel Releases 29 Advisories to Describe 73 Vulnerabilities Affecting Its Products

The high-severity vulnerabilities can be exploited by authenticated users to escalate privileges via local or network access.
Cyber Risk Management Firm Brinqa Raises $110 Million

The company will use the funds to meet demand for integrated, risk-based cybersecurity programs.
Endpoint Management Startup Aiden Technologies Closes $2.9 Million Seed Round

The company plans to use the new infusion of cash to strengthen its automated endpoint management solution.
SAP Patches Critical Vulnerabilities in NetWeaver

SAP releases patches for a total of 11 security flaws in NetWeaver, five of which are rated high-severity.
CISA Announces Vulnerability Disclosure Policy Platform

Through a new partnership with Bugcrowd and Endyna, CISA seeks to help federal agencies identify and monitor vulnerabilities in their systems.
Critical Vulnerabilities Patched in Android With June 2021 Security Updates

Google has addressed a severe security hole in the System component that could lead to remote code execution.
Military Vehicles Maker Navistar Reports Data-Theft Cyberattack

Navistar International Corporation confirms data stolen in cyberattack that affected some operations.
'Siloscape' Malware Targets Windows Server Containers

Palo Alto researchers document a new malware that leverages Windows container escape techniques and can achieve code execution on the node and spread to entire Kubernetes clusters.
GitHub Updates Policies on Vulnerability Research, Exploits

The Microsoft-owned platform permits dual-use security technologies, considering them beneficial to the security community.
New Google Tool Helps Developers Visualize Dependencies of Open Source Projects

The Open Source Insights project is aimed to provide developers with an overview of open source packages and their properties.
Russian Hackers Use New 'SkinnyBoy' Malware in Attacks on Military, Government Orgs

Attributed to the state-sponsored threat actor tracked as APT28/Fancy Bear, the implant lacks sophistication but is fully functional.

SECURITYWEEK NETWORK:

Security Experts:

Ionut Arghire

Recent articles by Ionut Arghire

Get the Daily Briefing

Popular Topics

Security Community

Stay Intouch

About SecurityWeek