Nation-State
The North Korean APT tracked as TA444 is either moonlighting from its previous primary purpose, expanding its attack repertoire, or is being impersonated by...
Hi, what are you looking for?
SecurityWeek
Malware & Threats
Microsoft’s struggles with zero-day exploits rolled into a new month with a fresh Patch Tuesday warning about malware attacks in the wild.
Data Breaches
Adobe raises an alarm for new in-the-wild zero-day attacks hitting users of its widely deployed Adobe Acrobat and Reader product.
Nation-State
One organization is hoping to transform the anniversary of 9/11 into a day of doing good.
Malware & Threats
Apple pushes out an urgent point-update to its flagship iOS and macOS platforms to fix a pair of security defects being exploited in the...
Malware & Threats
Google again catches a North Korean APT actor targeting security researchers with zero-days and rigged software tools.
Cloud Security
Microsoft reveals how a crash dump from 2021 inadvertently exposed a key that Chinese cyberspies later leveraged to hack US government emails.
Nation-State
FBI says a North Korea-linked threat group known as Lazarus and APT38 is behind the $100 million Horizon bridge cryptocurrency heist.
Artificial Intelligence
FBI Director Christopher Wray is “deeply concerned” about the Chinese government’s artificial intelligence program, asserting that it was “not constrained by the rule of...
Nation-State
A China-linked hackers are exploiting a vulnerability (CVE-2022-42475 ) in Fortinet FortiOS SSL-VPN, Mandiant claims.
Nation-State
Researchers tracking a remote code execution vulnerability in Zoho’s ManageEngine products are warning organizations to brace for “spray and pray” attacks across the internet.
Cybercrime
North Korea’s BlueNoroff hackers have updated their arsenal and delivery techniques in a new wave of attacks targeting banks and venture capital firms, cybersecurity...
Application Security
Fortinet on Monday issued an emergency patch to cover a severe vulnerability in its FortiOS SSL-VPN product, warning that hackers have already exploited the...
Application Security
Google’s Threat Analysis Group (TAG) has shared technical details on an Internet Explorer zero-day vulnerability exploited in attacks by North Korean hacking group APT37.
ICS/OT
The offshore oil and gas infrastructure faces cybersecurity risks that the Department of Interior should immediately address, the US Government Accountability Office (GAO) notes...
Cybercrime
According to Microsoft’s 2022 Digital Defense Report, nation-state hacker attacks on critical infrastructure have soared, largely due to Russian cyber operations targeting Ukraine and...
Nation-State
Faced with the daily barrage of reports on new security threats, it is important to keep in mind that while some are potentially disastrous,...
Nation-State
North Korean state-sponsored hacking group Lazarus was seen exploiting a Dell DBUtil driver vulnerability to disable the security mechanisms on the targeted Windows machines.
CISO Strategy
CISO churn is a hidden cybersecurity threat. Major security initiatives or implementations can take longer than the residency of a single CISO, and constant...
Funding/M&A
Cybersecurity Funding
Endpoint Security
Microsoft announced that the latest Windows 11 update (23H2) will bring more support for passkeys and several new security features.
