Ionut Arghire

Palo Alto Networks warns of limited exploitation of a critical command injection vulnerability leading to code execution on firewalls.

Checkmarx warns of a new attack relying on GitHub search manipulation to deliver malicious code.

A critical vulnerability in multiple programming languages allows attackers to inject commands in Windows applications.

LastPass this week revealed that one of its employees was targeted in a phishing attack involving deepfake technology.

Tel Aviv startup banks seed funding for technology to help organizations connect, secure, and provide access to multiple data sources.

The financial sector has suffered over 20,000 cyberattacks in two decades, causing more than $12 billion in losses.

Google releases a Chrome 123 update to resolve three high-severity memory safety vulnerabilities.

Google adds AI to cloud security features and announces other security capabilities for cloud customers.

Fortinet has released patches for a dozen vulnerabilities, including a critical-severity remote code execution flaw in FortiClientLinux.

Risk and compliance solutions provider Sprinto has raised $20 million in a Series B funding round led by Accel.

The personal information of 500,000 people was compromised in a data breach at Group Health Cooperative of South Central Wisconsin.

Founded in 2022, Singapore-based StealthMole leverages AI to analyze data from the dark web, deep web, and other sources to provide risk assessment and...

SAP has released 12 new and updated security notes on April 2024 Security Patch Day, including three notes dealing with high-severity vulnerabilities.

Veterinary services provider CVS Group is restoring systems after a cyberattack disrupted its UK operations.

Economic analysis and litigation support firm GMA says personal and medical information was stolen in a May 2023 data breach.

RansomHub is extorting Change Healthcare, threatening to release data stolen in a February 2024 BlackCat ransomware attack.

Researchers at the Shadowserver Foundation identify thousands of internet-exposed Ivanti VPN appliances likely impacted by a recently disclosed vulnerability leading to remote code execution.

The US Department of Health warns of financially motivated social engineering attacks targeting healthcare organizations.

Crowdfense has announced a $30 million exploit acquisition program covering Android, iOS, Chrome, and Safari zero-days.

Google fights Chrome V8 engine memory safety bugs with a new sandbox and adds it to the bug bounty program.