Audits Archives

SECURITYWEEK NETWORK:

ICS:

Hi, what are you looking for?

Audits

NATO Seeks Contractors to Test Security of Web Assets

NATO is looking for penetration testing vendors to assess the security of its internet-facing web assets.

Ionut ArghireApril 4, 2023

Audits

Majority of GAO’s Cybersecurity Recommendations Not Implemented by Federal Agencies

Out of the 335 public recommendations on a comprehensive cybersecurity strategy made since 2010, 190 were not implemented by federal agencies as of December...

Ionut ArghireJanuary 23, 2023

Application Security

Tesla Returns as Pwn2Own Hacker Takeover Target

Electric car maker Tesla is using the annual Pwn2Own hacker contest to incentivize security researchers to showcase complex exploit chains that can lead to...

Ryan NaraineJanuary 12, 2023

Application Security

Microsoft Patch Tuesday: 97 Windows Vulns, 1 Exploited Zero-Day

Microsoft’s security patching machine hummed into overdrive Tuesday with the release of fixes for at least 97 documented software vulnerabilities, including a zero-day that’s...

Ryan NaraineJanuary 10, 2023

Application Security

Microsoft Patches Azure Cross-Tenant Data Access Flaw

Microsoft has silently fixed an important-severity security flaw in its Azure Cognitive Search (ACS) after an external researcher warned that a buggy feature allowed cross-tenant network...

Ryan NaraineDecember 23, 2022

Application Security

Patch Tuesday: Microsoft Plugs Windows Hole Exploited in Ransomware Attacks

Microsoft on Tuesday pushed a major Windows update to address a security feature bypass already exploited in global ransomware attacks.The operating system update, released...

Ryan NaraineDecember 13, 2022

Audits

Privacy Activists Target Google Over French ‘Spam’ Emails

Google is breaking EU law by sending users of its email service Gmail direct advertising messages, activists said in a complaint sent to French...

AFPAugust 25, 2022

Application Security

Plex Confirms Database Breach, Data Theft

Popular streaming media platform Plex is scrambling to reset user passwords after a database hack that included the theft of emails, usernames, and encrypted...

Ryan NaraineAugust 24, 2022

Application Security

Privilege Escalation Flaw Haunts VMware Tools

Virtualization technology software giant VMware on Tuesday released patches to fix an important-severity security flaw in the VMware Tools suite of utilities.The vulnerability, tracked...

SecurityWeek NewsAugust 23, 2022

Application Security

GitLab Patches Critical Remote Code Execution Vulnerability

Remote code execution vulnerability fixed in GitLab Community Edition (CE) and Enterprise Edition (EE) updates.

Ionut ArghireAugust 23, 2022

Application Security

Novant Health Says Malformed Tracking Pixel Exposed Health Data to Meta

Healthcare services provider Novant Health has sent notifications to more than 1.3 million individuals that their protected health information (PHI) might have been inadvertently...

Ionut ArghireAugust 22, 2022

Application Security

FBI Warns of Proxies and Configurations Used in Credential Stuffing Attacks

The Federal Bureau of Investigation (FBI) has raised an alarm for cybercriminals using proxies and configurations to hide and automate credential stuffing attacks against...

Ionut ArghireAugust 19, 2022

Application Security

TXOne Networks Scores $70M Series B Investment

TXOne Networks, a joint venture between cybersecurity firm Trend Micro and industrial networking solutions provider Moxa, has banked $70 million in new venture capital...

Ryan NaraineAugust 18, 2022

Application Security

Vulnerability Broker Applies Pressure on Software Vendors Shipping Faulty, Incomplete Patches

Trend Micro’s Zero Day Initiative, a major player in the vulnerability disclosure ecosystem, is ramping up the pressure on software vendors that consistently ship...

Ryan NaraineAugust 17, 2022

Audits

FTC Looking at Rules to Corral Tech Firms’ Data Collection

Whether it’s the fitness tracker on your wrist, the “smart” home appliances in your house or the latest kids’ fad going viral in online...

Associated PressAugust 12, 2022

Application Security

Twilio Hacked After Employees Tricked Into Giving Up Login Credentials

Enterprise software vendor Twilio (NYSE: TWLO) has been hacked by a relentless threat actor who successfully tricked employees into giving up login credentials that...

Ryan NaraineAugust 8, 2022

Application Security

Ghost Security Snags $15M Investment for API Security Tech

Texas startup Ghost Security has joined the list of early-stage companies in the API and application security space attracting venture capital funding.The Austin-based company...

Ryan NaraineAugust 5, 2022

Application Security

Compliance Automation Startup RegScale Scores $20 Million Investment

RegScale, a Virginia startup building technology to manage continuous compliance automation tasks, has attracted $20 million in early-stage venture capital funding.The Series A round...

Ryan NaraineAugust 3, 2022

Page 5 of 47‹ Previous 1 2 3 456 7 8 9 Next ›Last »

SECURITYWEEK NETWORK:

ICS:

Audits

NATO Seeks Contractors to Test Security of Web Assets

Audits

Majority of GAO’s Cybersecurity Recommendations Not Implemented by Federal Agencies

Application Security

Tesla Returns as Pwn2Own Hacker Takeover Target

Application Security

Microsoft Patch Tuesday: 97 Windows Vulns, 1 Exploited Zero-Day

Application Security

Microsoft Patches Azure Cross-Tenant Data Access Flaw

Application Security

Patch Tuesday: Microsoft Plugs Windows Hole Exploited in Ransomware Attacks

Audits

Privacy Activists Target Google Over French ‘Spam’ Emails

Application Security

Plex Confirms Database Breach, Data Theft

Application Security

Privilege Escalation Flaw Haunts VMware Tools

Application Security

GitLab Patches Critical Remote Code Execution Vulnerability

Application Security

Novant Health Says Malformed Tracking Pixel Exposed Health Data to Meta

Application Security

FBI Warns of Proxies and Configurations Used in Credential Stuffing Attacks

Application Security

TXOne Networks Scores $70M Series B Investment

Application Security

Vulnerability Broker Applies Pressure on Software Vendors Shipping Faulty, Incomplete Patches

Audits

FTC Looking at Rules to Corral Tech Firms’ Data Collection

Application Security

Twilio Hacked After Employees Tricked Into Giving Up Login Credentials

Application Security

Ghost Security Snags $15M Investment for API Security Tech

Application Security

Compliance Automation Startup RegScale Scores $20 Million Investment

Featured

Vulnerabilities

Recently Patched TeamCity Vulnerability Exploited to Hack Servers

Artificial Intelligence

National Security Agency is Starting an Artificial Intelligence Security Center

Ransomware

Johnson Controls Hit by Ransomware

Nation-State

US State Department Says 60,000 Emails Taken in Alleged Chinese Hack

Vulnerabilities

Cisco Warns of IOS Software Zero-Day Exploitation Attempts

Vulnerabilities

Google Rushes to Patch New Zero-Day Exploited by Spyware Vendor

Endpoint Security

New GPU Side-Channel Attack Allows Malicious Websites to Steal Data

Latest News

Data Breaches

European Telecommunications Standards Institute Discloses Data Breach

ICS/OT

Number of Internet-Exposed ICS Drops Below 100,000: Report

Ransomware

Johnson Controls Ransomware Attack Could Impact DHS

Email Security

Unpatched Exim Vulnerabilities Expose Many Mail Servers to Attacks

Training & Awareness

CISA Kicks Off Cybersecurity Awareness Month With New Program

Network Security

Silverfort Open Sources Lateral Movement Detection Tool

Funding/M&A

Bankrupt IronNet Shuts Down Operations