Application Security
It's been four months since the Log4j issue exploded onto the internet. All the major software vendors affected by it have by now released...
Hi, what are you looking for?
SecurityWeek
Mobile & Wireless
It’s time for enterprises to stop treating unmanaged devices as an edge case and start securing them as part of a unified Zero Trust...
Mobile & Wireless
Foreign hackers have increasingly identified smartphones, other mobile devices and the apps they use as a weak link in U.S. cyberdefenses.
Mobile & Wireless
iVerify links iPhone crashes to sophisticated zero-click attacks via iMessage targeting individuals involved in politics in the EU and US.
Mobile & Wireless
The latest Android updates fix vulnerabilities in Runtime, Framework, System, and third-party components of the mobile OS.
Application Security
Apple's security response team on Thursday released emergency patches to cover a pair of "actively exploited" vulnerabilities affecting macOS, iOS and iPadOS devices.
Malware & Threats
A pair of security researchers at SentinelLabs have intercepted a piece of destructive wiper malware hitting routers and modems and found digital breadcrumbs suggesting...
IoT Security
Researchers from the University of Oxford in the UK and Switzerland’s Armasuisse federal agency have identified a new attack method that can be used...
Application Security
An early-stage startup building a security-themed enterprise browser has raised $115 million at a $1.3 billion valuation, becoming a cybersecurity unicorn less than two...
Application Security
Ransomware continues to expand with double-extortion now the standard; the malware-as-a-service model is now common; and criminals are increasingly ‘living off the land’, according...
Application Security
A cybersecurity startup is warning of a major, unattended weak link in the software supply chain: the vexing problem of valuable corporate secrets --...
Application Security
The Internet Systems Consortium (ISC) has released security updates to fix multiple high-severity vulnerabilities in the widely deployed Berkeley Internet Name Domain (BIND) server...
Cyber Insurance
Security and networking platform start-up Todyl on Thursday announced the closing of a $28 million Series A funding round. The new investment round was led...
Application Security
Enterprise cybersecurity powerhouse SentinelOne on Tuesday announced plans to spend $616 million to acquire Attivo Networks, a Silicon Valley startup that sells breach detection...
Cybersecurity Funding
Tel Aviv-based OneLayer emerged from stealth mode with $8.2 million in funding to build security for private 5G networks
Mobile & Wireless
Google this week announced the release of patches for 39 vulnerabilities as part of the March 2022 security update for Android.The most serious vulnerability...
Application Security
NVIDIA this week acknowledged that employee credentials were stolen during a cyberattack on February 23 and confirmed the attackers have started leaking the information...
Mobile & Wireless
The Israeli tech company NSO Group on Sunday filed a libel lawsuit against an Israeli newspaper after it published a series of explosive articles...
Application Security
Canadian cybersecurity vendor eSentire has scored $325 million in new financing at a heady valuation north of a billion dollars.
Cybercrime
More than 50,000 individuals have downloaded a new Android banking trojan through Google Play, according to online fraud detection firm ThreatFabric.
Malware & Threats
The number of mobile malware attacks saw a significant drop in 2021, but attacks were more sophisticated, according to the latest mobile malware report...
Cybercrime
Warnings to use disposable “burner” phones and laptops. Privacy-protecting software. Concerns about a security flaw in an official Games smartphone app.
Data Protection
Google this week announced Privacy Sandbox on Android, a new initiative expected to lead to more private advertising solutions for its mobile users.The new...
Join this event as we dive into threat hunting tools and frameworks, and explore value of threat intelligence data in the defender’s security stack.
RegisterLearn how integrating BAS and Automated Penetration Testing empowers security teams to quickly identify and validate threats, enabling prompt response and remediation.
RegisterExpert Insights
In a rapidly changing AI environment, CISOs are worried about investing in the wrong solution or simply not investing because they can’t decide what the best option is.
(Marc Solomon)
Adopting a layered defense strategy that includes human-centric tools and updating security components.
(Stu Sjouwerman)
A strong AI deployment starts with asking the right questions, mapping your risks, and thinking like an adversary — before it’s too late.
(Matt Honea)
It’s time for enterprises to stop treating unmanaged devices as an edge case and start securing them as part of a unified Zero Trust strategy.
(Etay Maor)
Many security professionals feel pressured to pursue leadership roles, but success can also mean going deeper, not just higher.
(Joshua Goldfarb)