Ionut Arghire

US Announces $70 Million Cybersecurity Boost for Rural, Municipal Utilities

The US Department of Energy is offering $70 million in funding to improve the cybersecurity of rural and municipal utilities.

November 20, 2023

US Teen Pleads Guilty to Credential Stuffing Attack on Fantasy Sports Website

Wisconsin teenager Joseph Garrison has admitted in court to launching a credential stuffing attack on a betting website.

November 17, 2023

Over a Dozen Exploitable Vulnerabilities Found in AI/ML Tools

Bug hunters uncover over a dozen exploitable vulnerabilities in tools used to build chatbots and other types of AI/ML models.

November 17, 2023

Researchers Dive Into Activities of Indian Hack-for-Hire Firm Appin

Researchers uncover the activities of Appin, a hack-for-hire Indian firm involved in espionage, surveillance, and disruptive attacks.

November 17, 2023

Application Security Startup Aikido Security Raises €5 Million

Aikido Security has raised €5 million (~$5.4 million) in seed funding for an all-in-one application security platform.

November 15, 2023

Microsoft Patches Sensitive Information Disclosure Vulnerability in Azure CLI

Microsoft provided guidance on an Azure CLI bug leading to the exposure of sensitive information through GitHub Actions logs.

November 15, 2023

CISA Outlines AI-Related Cybersecurity Efforts

CISA details its efforts to promote the use of AI in cybersecurity and guide critical infrastructure in adopting AI.

November 15, 2023

SAP Patches Critical Vulnerability in Business One Product

SAP released a hotfix for a critical-severity improper access control vulnerability in Business One product installation.

November 15, 2023

MySQL Servers, Docker Hosts Infected With DDoS Malware

Researchers warn attackers are targeting MySQL servers and Docker hosts to plant malware capable of launching distributed DDoS attacks.

November 14, 2023

Royal Ransomware Possibly Rebranding After Targeting 350 Organizations Worldwide

CISA says Royal ransomware has targeted 350 organizations to date, demanding over $275 million in ransoms.

November 14, 2023

PyPI Packages Found to Expose Thousands of Secrets

GitGuardian discovered roughly 4,000 secrets in nearly 3,000 PyPI packages, including Azure, AWS, and GitHub keys.

November 14, 2023

22 Energy Firms Hacked in Largest Coordinated Attack on Denmark’s Critical Infrastructure

Denmark’s SektorCERT association shares details on a coordinated attack against the country’s energy sector.

November 14, 2023

Ransomware Group RansomedVC Closes Shop

The ransomware and data extortion group RansomedVC announced plans to shut down the project and sell parts of its infrastructure.

November 13, 2023

2.2 Million Impacted by Data Breach at McLaren Health Care

McLaren Health Care is informing roughly 2.2 million individuals of a data breach impacting their personal information.

November 13, 2023

Mr. Cooper Says Customer Data Compromised in Cyberattack

US mortgage giant Mr. Cooper announced that customer data was compromised in an October 31 cyberattack.

November 13, 2023

Cavelo Raises CA$5 Million for Attack Surface Management Platform

Cavelo has raised CA$5 million (~US$3.6 million USD) to help organizations comply with data protection regulations.

November 10, 2023

US Government Issues Guidance on SBOM Consumption

CISA, NSA, and ODNI issue new guidance on managing open source software and SBOMs to maintain awareness on software security.

November 10, 2023

1.3 Million Maine Residents Impacted by MOVEit Hack

The State of Maine says the personal information of 1.3 million individuals was compromised in the MOVEit attack.

November 10, 2023

Tidal Cyber Raises $5 Million for Threat-Informed Defense Platform

The Washington, DC startup is building a threat-informed defense platform that helps organizations automate detection and response work.

November 9, 2023

‘BlazeStealer’ Malware Delivered to Python Developers Looking for Obfuscation Tools

Checkmarx uncovers a malicious campaign targeting Python developers with malware that takes over their systems.

November 9, 2023

SECURITYWEEK NETWORK:

ICS:

Ionut Arghire

US Announces $70 Million Cybersecurity Boost for Rural, Municipal Utilities

US Teen Pleads Guilty to Credential Stuffing Attack on Fantasy Sports Website

Over a Dozen Exploitable Vulnerabilities Found in AI/ML Tools

Researchers Dive Into Activities of Indian Hack-for-Hire Firm Appin

Application Security Startup Aikido Security Raises €5 Million

Microsoft Patches Sensitive Information Disclosure Vulnerability in Azure CLI

CISA Outlines AI-Related Cybersecurity Efforts

SAP Patches Critical Vulnerability in Business One Product

MySQL Servers, Docker Hosts Infected With DDoS Malware

Royal Ransomware Possibly Rebranding After Targeting 350 Organizations Worldwide

PyPI Packages Found to Expose Thousands of Secrets

22 Energy Firms Hacked in Largest Coordinated Attack on Denmark’s Critical Infrastructure

Ransomware Group RansomedVC Closes Shop

2.2 Million Impacted by Data Breach at McLaren Health Care

Mr. Cooper Says Customer Data Compromised in Cyberattack

Cavelo Raises CA$5 Million for Attack Surface Management Platform

US Government Issues Guidance on SBOM Consumption

1.3 Million Maine Residents Impacted by MOVEit Hack

Tidal Cyber Raises $5 Million for Threat-Informed Defense Platform

‘BlazeStealer’ Malware Delivered to Python Developers Looking for Obfuscation Tools

Featured

Vulnerabilities

Microsoft Working on Patch for ‘RoguePlanet’ Zero-Day

Vulnerabilities

3 Recently Patched Fortinet FortiSandbox Vulnerabilities in Hacker Crosshairs

Hacker Conversations

Hacker Conversations: Isira Adithya, the Evolution of an Ethical Hacker

Artificial Intelligence

AI and Cybersecurity – Everything You Wanted to Know, But Were Afraid to Ask

ICS/OT

Cal Water Investigating Iranian Hackers’ Claims

Network Security

Cisco Patches Another SD-WAN Zero-Day Exploited in Attacks

Ransomware

Ransomware Attack Shuts Down Mills of Australia’s Second-Largest Sugar Producer

Latest News

Identity & Access

Webinar Today: How Modern Breaches Bypass MFA and Evade Detection

Funding/M&A

1Password Acquires Apono in Reported $250M-$300M Deal

Artificial Intelligence

Tenet Security Emerges From Stealth With $6 Million Seed Funding

ICS/OT

Rockwell Automation Patches Vulnerabilities in ICS Controllers and Software

Malware & Threats

Microsoft Teams Relay Servers Abused in DragonForce Ransomware Attack

Vulnerabilities

Oracle’s Second Monthly Security Updates Deliver 245 Patches

Vulnerabilities

Chrome and Firefox Updated to Patch Critical, High-Severity Vulnerabilities

Daily Briefing Newsletter