Application Security
South American startup Strike Security has secured $5.4 million to fund an ambitious plan to disrupt the penetration testing and attack surface management business.
Hi, what are you looking for?
SecurityWeek
Privacy & Compliance
The Meta-owned communications app is filing a federal court contempt order against NSO.
Privacy
Claims that “Microsoft is running one of the largest corporate espionage operations in modern history” face scrutiny as researchers analyze LinkedIn’s browser extension probing
Privacy & Compliance
Britain’s data privacy watchdog slapped online forum Reddit on Tuesday with a fine worth nearly $20 million for failures involving children’s personal information.
Government
Other noteworthy stories that might have slipped under the radar: vulnerabilities at 277 water systems, DoD employee acting as money mule, 200 airports exposed...
Application Security
Identity and access management tech firm Okta says it has concluded an investigation into the embarrassing Lapsus$ hacking incident and has severed ties with...
Application Security
An Israeli startup has raised early-stage funding to build technology to help cybersecurity teams measure, track and simplify security program operations.
Application Security
Security researchers have found fresh evidence linking a pair of mercenary Israeli hacking companies to mobile malware attacks on members of Catalan civil society.
Application Security
Cloud computing and virtualization technology firm VMWare on Thursday rolled out patches for an extremely critical security flaw in the VMWare Cloud Director product,...
Application Security
Less than a week after patching critical security defects affecting multiple enterprise-facing products, VMware is warning that one of the flaws is being exploited...
Application Security
OpenSSH has joined the high-stakes fight to protect data from quantum computers.The latest version of the widely used encryption and connectivity tool has been...
Application Security
Nudge Security, an early stage startup promising to help organizations manage cybersecurity decisions, has banked a $7 million seed round.
Cybersecurity Funding
Lithuania-based VPN provider reaches “Unicorn” status with first ever outside funding
Application Security
It's been four months since the Log4j issue exploded onto the internet. All the major software vendors affected by it have by now released...
Audits
The PCI Security Standards Council (SSC), the organization that oversees the Payment Card Industry Data Security Standard (PCI DSS), this week announced the release...
Application Security
Apple's security response team on Thursday released emergency patches to cover a pair of "actively exploited" vulnerabilities affecting macOS, iOS and iPadOS devices.
Application Security
Sequoia Capital has doubled down on its early-stage investment in Skiff, a startup building a security-themed, end-to-end encrypted workspace collaboration platform.
Cloud Security
A Boston startup has raised $25 million in early-stage funding to tackle the erosion of privacy in today’s data sharing ecosystems.The startup, called Cloaked,...
Application Security
Sophos on Friday announced the rollout of urgent patches for a critical authentication bypass vulnerability in the web portal of its Sophos Firewall product.Reported...
Privacy
The European Union and United States made a breakthrough in their yearslong battle over the privacy of data that flows across the Atlantic with...
Privacy
Lax laws and sweetheart deals are becoming a thing of the past for big tech firms, particularly in Europe where a series of rulings...
Compliance
Theta Lake, a company that specializes in compliance and security solutions for collaboration platforms, on Wednesday announced raising $50 million in a Series B...
Compliance
Trustero, a Palo Alto, California-based startup offering Compliance-as-a-Service (CaaS) for enterprises, has emerged from stealth mode with $8 million in seed funding.The investment round...
Application Security
A cybersecurity startup is warning of a major, unattended weak link in the software supply chain: the vexing problem of valuable corporate secrets --...
Organizations are investing heavily in third-party risk management, but breaches, delays, and blind spots continue to persist. Join this live webinar as we examine the gap between how organizations think their third-party risk programs are performing and what’s actually happening in practice.
RegisterExplore how attackers are using AI to scale threats and how security teams can respond with AI-driven defenses. Protecting against unmonitored use of generative AI (Shadow AI) in business units and building and enforcing AI governance frameworks.
RegisterExpert Insights
AI-driven development is not something organizations can or should block. But it must be governed.
(Danelle Au)
AI can help attackers generate malware, create malicious payloads, bypass simple security checks, and convert vague malicious intent into functional code.
(Etay Maor)
CISOs are now facing machine-speed attacks and asking, “How do I agent?” The industry must provide remediation at scale.
(Nadir Izrael)
As enterprises rush AI projects into production, security teams are increasingly being forced into reactive mode.
(Joshua Goldfarb)
The organizations best prepared to face disruption are those that align security, continuity and risk management around what the business cannot afford to lose.
(Steve Durbin)