Application Security
Software giant Microsoft has open-sourced its internal tool for generating SBOMs (software bill of materials) as part of a move to help organizations be...
Hi, what are you looking for?
SecurityWeek
Funding/M&A
The cash infusion brings Chainguard’s total funding to about $612 million since launching in 2021 and prices the company at $3.5 billion.
Cybersecurity Funding
The funding round brings the total amount raised by the NetRise to roughly $25 million.
Malware & Threats
The flaw, tagged as CVE-2025-30406, was added to CISA’s Known Exploited Vulnerabilities (KEV) catalog in early April.
Supply Chain Security
Researchers uncover new software supply chain threat from LLM-generated package hallucinations.
Cybercrime
Threat actors are publishing malicious NPM packages to steal PayPal credentials and hijack cryptocurrency transfers.
Application Security
Evidence shows a SpotBugs token compromised in December 2024 was used in the March 2025 GitHub Actions supply chain attack.
Supply Chain Security
German software maker SAP on Tuesday announced the release of 20 new security notes and three updates to previous security notes as part of...
Cybercrime
Information technology solutions provider SHI International is struggling to fully restore systems and operations after being hit with a crippling cyberattack over the 4th...
Cyberwarfare
The head of the FBI and the leader of Britain’s domestic intelligence agency raised alarms Wednesday about the Chinese government, warning business leaders that...
Application Security
Security researchers at ReversingLabs are warning of a “significant escalation in software supply chain attacks” after discovering more than two dozen malicious NPM packages...
Cyberwarfare
Mandiant’s security researchers have been tracking influence campaigns that a Chinese threat actor named Dragonbridge has been conducting against rare earth mining companies in...
Management & Strategy
Cybersecurity consulting firm Forces Unseen has developed a “Goggle” for the Brave search engine that allows users to obtain results only from cybersecurity websites.
ICS/OT
One of Iran’s major steel companies said Monday it was forced to halt production after being hit by a cyberattack that also targeted two...
Cybercrime
A US subsidiary of Nichirin, a Japanese company that makes hoses for the automotive industry, was recently hit by ransomware.The company said on Wednesday...
Cybersecurity Funding
Firmware security company Binarly on Wednesday announced that it has raised $3.6 million in a seed funding round led by Westwave Capital and Acrobator...
Application Security
Cloud security startup Aqua Security has partnered with the Center for Internet Security (CIS) to create guidelines for software supply chain security and followed...
Vulnerabilities
A zero-day vulnerability in SAP NetWeaver potentially affects more than 10,000 internet-facing applications.
Data Breaches
Artificial Intelligence
Vulnerabilities
Cybersecurity Funding
Artificial Intelligence
Threat Intelligence
