Eduard Kovacs

Eduard Kovacs (@EduardKovacs) is a managing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.

127 Servers of Bulletproof Hosting Service Zservers Seized by Dutch Police

After governments announced sanctions against the Zservers/XHost bulletproof hosting service, Dutch police took 127 servers offline.

February 17, 2025

New Windows Zero-Day Exploited by Chinese APT: Security Firm

ClearSky Cyber Security says it has seen a new Windows zero-day being exploited by a Chinese APT named Mustang Panda.

February 14, 2025

Hackers Exploit Palo Alto Firewall Vulnerability Day After Disclosure

Attempts to exploit CVE-2024-0108, an authentication bypass vulnerability in Palo Alto firewalls, started one day after disclosure.

February 14, 2025

Circuit Board Maker Unimicron Targeted in Ransomware Attack

The Sarcoma ransomware group is threatening to leak data stolen from Taiwanese printed circuit board manufacturer Unimicron.

February 13, 2025

SecurityWeek Analysis: Over 400 Cybersecurity M&A Deals Announced in 2024

An analysis conducted by SecurityWeek shows that 405 cybersecurity-related mergers and acquisitions were announced in 2024.

February 13, 2025

Palo Alto Networks Patches Potentially Serious Firewall Vulnerability

Palo Alto Networks has published 10 new security advisories, including one for a high-severity firewall authentication bypass vulnerability.

February 13, 2025

Drata to Acquire SafeBase in $250 Million Deal

Security and compliance automation firm Drata has acquired trust center platform SafeBase in a quarter billion dollar deal.

February 12, 2025

Chipmaker Patch Tuesday: Intel, AMD, Nvidia Fix High-Severity Vulnerabilities

Chipmakers Intel, AMD and Nvidia on Tuesday published new security advisories to inform customers about vulnerabilities found in their products.

February 12, 2025

ICS Patch Tuesday: Vulnerabilities Addressed by Schneider Electric, Siemens

Industrial giants Schneider Electric and Siemens have released February 2025 Patch Tuesday ICS security advisories.

February 12, 2025

High-Severity OpenSSL Vulnerability Found by Apple Allows MitM Attacks

OpenSSL has patched CVE-2024-12797, a high-severity vulnerability found by Apple that can allow man-in-the-middle attacks.

February 11, 2025

Cyberattack on Lee Enterprises Causes Disruptions at Dozens of Newspapers

Dozens of local newspapers owned by media company Lee Enterprises experienced disruptions as a result of a cyberattack.

February 11, 2025

OpenAI Finds No Evidence of Breach After Hacker Offers to Sell 20 Million Credentials

A hacker recently offered to sell 20 million OpenAI credentials, but the data likely comes from information stealers, not the AI firm’s systems.

February 11, 2025

Orthanc Server Vulnerability Poses Risk to Medical Data, Healthcare Operations

A critical vulnerability found in Orthanc servers can pose a serious risk to medical data and healthcare operations.

February 10, 2025

SolarWinds Taken Private in $4.4 Billion Turn/River Capital Acquisition

SolarWinds will become a privately held company following its acquisition by Turn/River Capital for $4.4 billion in cash.

February 10, 2025

Ransomware Payments Dropped to $813 Million in 2024

An analysis by Chainalysis shows that ransomware payments dropped to $813 million in 2024, from $1.25 billion in 2023.

February 7, 2025

Trimble Cityworks Customers Warned of Zero-Day Exploitation

Trimble Cityworks is affected by a zero-day vulnerability that has been exploited in attacks involving the delivery of malware.

February 7, 2025

Hacker Who Targeted NATO, US Army Arrested in Spain

Spanish authorities have arrested an individual who allegedly hacked several high-profile organizations, including NATO and the US army.

February 6, 2025

Fake DeepSeek Sites Used for Credential Phishing, Crypto Theft, Scams

Researchers see dozens of fake DeepSeek websites used for credential phishing, cryptocurrency theft, and scams.

February 6, 2025

7AI Launches With $36 Million in Seed Funding for Agentic Security Platform

7AI has launched an agentic security platform, which uses AI agents to handle repetitive tasks.

February 6, 2025

Cybersecurity M&A Roundup: 45 Deals Announced in January 2025

A significant number of cybersecurity-related merger and acquisition (M&A) deals announced in January 2025.

February 5, 2025

SECURITYWEEK NETWORK:

ICS:

Eduard Kovacs

127 Servers of Bulletproof Hosting Service Zservers Seized by Dutch Police

New Windows Zero-Day Exploited by Chinese APT: Security Firm

Hackers Exploit Palo Alto Firewall Vulnerability Day After Disclosure

Circuit Board Maker Unimicron Targeted in Ransomware Attack

SecurityWeek Analysis: Over 400 Cybersecurity M&A Deals Announced in 2024

Palo Alto Networks Patches Potentially Serious Firewall Vulnerability

Drata to Acquire SafeBase in $250 Million Deal

Chipmaker Patch Tuesday: Intel, AMD, Nvidia Fix High-Severity Vulnerabilities

ICS Patch Tuesday: Vulnerabilities Addressed by Schneider Electric, Siemens

High-Severity OpenSSL Vulnerability Found by Apple Allows MitM Attacks

Cyberattack on Lee Enterprises Causes Disruptions at Dozens of Newspapers

OpenAI Finds No Evidence of Breach After Hacker Offers to Sell 20 Million Credentials

Orthanc Server Vulnerability Poses Risk to Medical Data, Healthcare Operations

SolarWinds Taken Private in $4.4 Billion Turn/River Capital Acquisition

Ransomware Payments Dropped to $813 Million in 2024

Trimble Cityworks Customers Warned of Zero-Day Exploitation

Hacker Who Targeted NATO, US Army Arrested in Spain

Fake DeepSeek Sites Used for Credential Phishing, Crypto Theft, Scams

7AI Launches With $36 Million in Seed Funding for Agentic Security Platform

Cybersecurity M&A Roundup: 45 Deals Announced in January 2025

Featured

Government

Industry Reactions to Trump Cybersecurity Executive Order: Feedback Friday

Vulnerabilities

Critical Vulnerability Exposes Many Mitel MiCollab Instances to Remote Hacking

Artificial Intelligence

The AI Arms Race: Deepfake Generation vs. Detection

IoT Security

New ‘SmartAttack’ Steals Air-Gapped Data Using Smartwatches

Cybercrime

Interpol Targets Infostealers: 20,000 IPs Taken Down, 32 Arrested, 216,000 Victims Notified

Artificial Intelligence

Cyera Raises $540 Million to Expand AI-Powered Data Security Platform

Incident Response

Microsoft Patch Tuesday Covers WebDAV Flaw Marked as ‘Already Exploited’

Latest News

Management & Strategy

In Other News: Cloudflare Outage, Cracked.io Users Identified, Victoria’s Secret Cyberattack Cost

Malware & Threats

TeamFiltration Abused in Entra ID Account Takeover Campaign

Malware & Threats

SimpleHelp Vulnerability Exploited Against Utility Billing Software Users

Ransomware

Fog Ransomware Attack Employs Unusual Tools

Vulnerabilities

Critical Vulnerability Exposes Many Mitel MiCollab Instances to Remote Hacking

Vulnerabilities

Critical Vulnerabilities Patched in Trend Micro Apex Central, Endpoint Encryption

Cybersecurity Funding

ZeroRISC Raises $10 Million for Open Source Silicon Security Solutions

Daily Briefing Newsletter