Network Security Archives

SECURITYWEEK NETWORK:

ICS:

Hi, what are you looking for?

Malware & Threats

Cuttlefish Malware Targets Routers, Harvests Cloud Authentication Data

Cuttlefish malware platform roaming around enterprise SOHO routers capable of covertly harvesting public cloud authentication data from internet traffic.

Ryan Naraine2 days ago

Identity & Access

Machine Identity Firm Venafi Readies for the 90-day Certificate Lifecycle

Venafi introduced a 90-Day TLS Readiness solution to help enterprises prepare for Google’s proposed 90-day limit for the lifecycle of a digital certificate.

Kevin Townsend2 days ago

Network Security

Chinese Hackers Have Been Probing DNS Networks Globally for Years: Report

While China-linked Muddling Meerkat’s operations look like DNS DDoS attacks, it seems unlikely that denial of service is their goal, at least in the...

Ionut Arghire3 days ago

Okta Warns of Credential Stuffing Attacks U

Identity & Access

Okta Warns of Credential Stuffing Attacks Using Tor, Residential Proxies

Okta warned of a spike in credential stuffing attacks using anonymizing services such as Tor, DataImpulse, Luminati, and NSocks.

Ionut Arghire4 days ago

Incident Response

Palo Alto Networks Shares Remediation Advice for Hacked Firewalls

Palo Alto Networks has shared remediation instructions for organizations whose firewalls have been hacked via CVE-2024-3400.

Eduard KovacsApril 25, 2024

Nation-State

Cisco Raises Alarm for ‘ArcaneDoor’ Zero-Days Hitting ASA Firewall Platforms

Cisco warns that nation state-backed hackers are exploiting at least two zero-day vulnerabilities in its ASA firewall platforms to plant malware on telecommunications and...

Ryan NaraineApril 24, 2024

Incident Response

Anticipation and Action: What’s Next in SOC Modernization

“Wisdom consists of the anticipation of consequences.” - Norman Cousins

Marc SolomonOctober 13, 2022

Application Security

Patch Tuesday: Critical Flaws in ColdFusion, Adobe Commerce

Software maker Adobe on Tuesday released security patches for 29 documented vulnerabilities across multiple enterprise-facing products and warned that hackers could exploit these bugs...

Ryan NaraineOctober 11, 2022

Application Security

Endor Labs Joins Race to Secure Software Supply Chain

It’s officially a venture capital funding frenzy in the software supply chain security space.

Ryan NaraineOctober 10, 2022

Cybersecurity Funding

Quantum-Safe Communications Startup Qunnect Raises $8 Million

Quantum-secure networking devices maker Qunnect this week announced raising $8 million in a Series A funding round that brings the total investment in the...

Ionut ArghireOctober 6, 2022

Application Security

Former Uber CISO Joe Sullivan Found Guilty Over Breach Cover-Up

A San Francisco jury on Wednesday found former Uber security chief Joe Sullivan guilty of covering up a 2016 data breach and concealing information...

Ryan NaraineOctober 5, 2022

Application Security

KKR Boosts NetSPI Stake with $410 Million Investment

Private equity giant KKR is expanding its big bet on penetration testing and attack surface management firm NetSPI with a new $410 million investment...

Ryan NaraineOctober 5, 2022

Audits

DHS Tells Federal Agencies to Improve Asset Visibility, Vulnerability Detection

The Cybersecurity and Infrastructure Security Agency (CISA) this week published Binding Operational Directive 23-01 (BOD 23-01), which requires federal agencies to take the necessary...

Ionut ArghireOctober 4, 2022

Network Security

Webinar Today: The Ultimate Insider’s Guide to DDoS Mitigation Strategies

SecurityWeek VideoOctober 4, 2022

Application Security

Cybersecurity M&A Roundup: 39 Deals Announced in September 2022

Eduard KovacsOctober 4, 2022

Application Security

LayerX Raises $7.5M Seed Funding to Tackle Secure Web Browsing

Israeli startup LayerX has joined the list of companies scoring investor interest in the tricky enterprise browser market.LayerX, based in Tel Aviv, came out...

Ryan NaraineOctober 3, 2022

Application Security

North Korean Gov Hackers Caught Rigging Legit Software

Threat hunters at Microsoft have intercepted a notorious North Korean government hacking group lacing legitimate open source software with custom malware capable of data...

Ryan NaraineSeptember 29, 2022

Application Security

Investors Bet on Ox Security to Guard Software Supply Chains

The funding frenzy in the software supply chain space now includes Ox Security, an early-stage Israeli startup that just raised a whopping $34 million...

Ryan NaraineSeptember 29, 2022