Network Security
There has been an ongoing debate in the security industry over the last decade or so about whether or not deep packet inspection (DPI)...
Hi, what are you looking for?
SecurityWeek
Malware & Threats
The large-scale credential theft campaign hit roughly half of the internet-accessible Fortinet firewalls and VPNs.
Network Security
Insufficient validation of user input allows an attacker to gain access to the underlying OS and elevate their privileges to root.
Network Security
Cisco recently became aware of the exploitation of CVE-2026-20262, a Catalyst SD-WAN Manager zero-day that allows arbitrary file write.
Network Security
Fortinet rolled out hotfixes for the security defect in April, warning that it had been exploited in the wild as a zero-day and urging...
Identity & Access
One of the main reasons why ZTNA fails is that most ZTNA implementations tend to focus entirely on securing remote access.
Identity & Access
SolarWinds patches high-severity flaws in its Access Rights Manager product, including three unauthenticated remote code execution issues.
Network Security
Organizations respond to HTTP/2 Rapid Reset zero-day vulnerability exploited to launch the largest DDoS attacks seen to date.
Network Security
A zero-day vulnerability named HTTP/2 Rapid Reset has been exploited to launch some of the largest DDoS attacks in history.
Network Security
CISA and the NSA are urging network defenders and software developers to address the top ten cybersecurity misconfigurations.
Funding/M&A
Silicon Valley startup lands $4 million in seed funding from SYN Ventures, Okta Ventures and Secure Octane.
Cloud Security
The widely believed notion that the network and the cloud are two different and distinct entities is not true.
Network Security
Silverfort has released the source code for its lateral movement detection tool LATMA, to help identify and analyze intrusions.
Funding/M&A
Bankrupt and out of financing options, IronNet has terminated all employees and plan to file for Chapter 7 protection.
Identity & Access
ZTNA stands out as a solution that enables organizations to minimize their attack surface while ensuring the productivity and security of their remote workforce.
Cybersecurity Funding
SASE company Cato Networks has raised $238 million in equity investment, bringing total funding to $773 million.
Network Security
Cybercriminals are increasingly trying to find ways to get around security, detection, intelligence and controls as APTs start to merge with conventional cybercrime.
Government
It appears to be the end of the road for IronNet, the once-promising network security play founded by former NSA director General Keith Alexander.
Cloud Security
Upwind raises a total of $80 million in just 10 months as investors pour cash into startups in the cloud and data security categories.
ICS/OT
Exploit code and root-cause analysis released by SinSinology document the problem as a case where VMware “forgot to regenerate” SSH keys.
Cloud Security
Dangling DNS records were abused by researchers to hijack subdomains belonging to major organizations, warning that thousands of entities are impacted.
Network Security
Serious flaw affecting major BGP implementations can be exploited to cause prolonged internet outages, but several vendors have not patched it.
Malware & Threats
VWware patches critical flaws that allow hackers to bypass SSH authentication and gain access to the Aria Operations for Networks command line interface.
Network Security
Join Cloudflare and SecurityWeek for a webinar to discuss “VPN Replacement: Other ZTNA Superpowers CISOs Should Know”
Today’s attackers are no longer breaking in — they’re logging in. Join this live webinar as we break down the modern identity attack chain and examine how recent breaches exploited weaknesses in authentication, identity verification, and access management processes.
RegisterAI has accelerated both sides of the fight. Adversaries are weaponizing vulnerabilities faster, while defenders are racing to ship detections and configurations. Join this live webinar as we explore how to prove your controls actually hold against new threats, map your security maturity, and unite breach simulation with automated pentesting into a single, coordinated program.
RegisterExpert Insights
Four decades of incident response experience suggest that exploits are often the symptom, not the root cause, of today’s cybersecurity failures.
(Tod Beardsley)
Security teams need more than visibility into AI applications, they need a repeatable framework for monitoring, investigating, and defending them in production.
(Joshua Goldfarb)
AI-driven development is not something organizations can or should block. But it must be governed.
(Danelle Au)
AI can help attackers generate malware, create malicious payloads, bypass simple security checks, and convert vague malicious intent into functional code.
(Etay Maor)
CISOs are now facing machine-speed attacks and asking, “How do I agent?” The industry must provide remediation at scale.
(Nadir Izrael)