Application Security
Workplace productivity software giant Slack on Friday forced password resets for a tiny fraction of its users after the discovery of a security flaw...
Hi, what are you looking for?
SecurityWeek
Incident Response
UK retailer Marks & Spencer expects the disruptions caused by the recent cyberattack to continue through July.
Data Breaches
A mandatory filing to the Maine Attorney General says 69,461 customers nationwide were affected and dates the breach back to last December.
Cybersecurity Funding
San Francisco incident response coordination startup banks $15 million in a Series A funding round led by Ballistic Ventures.
Incident Response
The 15th edition of NATO’s Locked Shields cyber defense exercise brought together 4,000 experts from 41 countries.
Data Protection
The Forum of Incident Response and Security Team (FIRST) announced on Thursday the release of Traffic Light Protocol version 2.0, which brings important updates...
Incident Response
The goal of security automation is to accelerate detection and response, but you’ll waste a lot of time if you try to eat the...
Application Security
Cybersleuths at Microsoft have found a link between the recent 'Raspberry Robin' USB-based worm attacks and EvilCorp, a notorious Russian ransomware operation sanctioned by...
Cybercrime
The US federal court system suffered a major cybersecurity breach in 2020, House Judiciary chairman Rep. Jerrold Nadler revealed in a public hearing on...
Application Security
Cybersecurity professionals from Google's threat hunting unit and the University of Toronto's Citizen Lab are upping the pressure on mercenary hacking firms selling high-end...
Application Security
Malware hunters at Microsoft have caught an Austrian hack-for-hire company exploiting zero-day flaws in Windows and Adobe software products in "limited and targeted attacks"...
Cybercrime
Mailing list provider WordFly has been offline for more than two weeks after ransomware encrypted data on some of its systems.WordFly provides digital marketing...
Audits
A study commissioned by IBM Security says the global average cost of a data breach reached an all-time high of $4.35 million and warned...
Cloud Security
Amazon Web Services (AWS) is hosting its re:Inforce 2022 conference these days and the cloud giant has taken the opportunity to unveil several enhancements...
Application Security
A security audit by the European Parliament has unearthed attempts to plant high-end surveillance software on the phone of a Greek lawmaker and there...
Application Security
The team behind the open source PrestaShop ecommerce platform has issued a public advisory to warn of zero day SQL injection attacks hitting merchant...
Incident Response
Uber has entered a non-prosecution agreement to resolve a criminal investigation into the manner in which the company handled a 2016 data breach that...
Cybercrime
T- Mobile has agreed to pay $350 million to customers affected by a class action lawsuit filed after the company disclosed last August that...
Application Security
Security researchers at Intezer are documenting the discovery of a powerful piece of Linux malware that can stay undetected and has the ability to...
Application Security
An analysis of the evolution of cybercrime from its beginnings in the 1990s to its billion-dollar presence today has one overriding theme: the development...
Cloud Security
A Romanian national accused of operating a bulletproof hosting service used by the Gozi banking trojan was extradited from Colombia and has made an...
Application Security
Anvilogic, a Silicon Valley startup working on technology to modernize the Security Operations Center (SOC), has deposited $25 million in a new investment round...
Application Security
It's a very busy Patch Wednesday for computer users running Apple’s flagship macOS and iOS devices.Apple's security response team has pushed out software fixes...
Application Security
A prominent cybersecurity executive is calling on the U.S. government to resist the urge to match China's reported mandates around early vulnerability disclosure, warning...
Join this event as we dive into threat hunting tools and frameworks, and explore value of threat intelligence data in the defender’s security stack.
RegisterLearn how integrating BAS and Automated Penetration Testing empowers security teams to quickly identify and validate threats, enabling prompt response and remediation.
RegisterExpert Insights
In the end, cybersecurity isn’t just about collecting data. It’s about proving that your defenses actually work.
(Torsten George)
Despite massive investment, the explosion of sophisticated malware and deepfake attacks persists because organizations struggle to verify digital identities and establish fundamental trust.
(Stu Sjouwerman)
Trying to block AI tools outright is a losing strategy. SaaS and AI are increasingly inseparable, and AI isn’t limited to tools like ChatGPT or Copilot anymore.
(Alastair Paterson)
CTI, digital brand protection and other cyber risk initiatives shouldn’t only be utilized by security and cyber teams.
(Marc Solomon)
Sightline Security’s founder explains why nonprofits need cybersecurity solutions tailored to their unique missions — and why vendors need to listen.
(Jennifer Leggio)