Ionut Arghire

Popular WordPress Security Plugin Caught Logging Plaintext Passwords

The All-In-One Security (AIOS) WordPress plugin was found to be writing plaintext passwords to log files.

July 13, 2023

Juniper Networks Patches High-Severity Vulnerabilities in Junos OS

Juniper Networks has patched multiple high-severity vulnerabilities in Junos OS, Junos OS Evolved, and Junos Space.

July 13, 2023

SonicWall Patches Critical Vulnerabilities in GMS, Analytics Products

SonicWall patches four critical-severity vulnerabilities in its Global Management System (GMS) and Analytics products.

July 13, 2023

Hardcoded Accounts Allow Full Takeover of Technicolor Routers

Multiple hardcoded accounts on the Technicolor TG670 DSL gateway router can be used to completely take over the impacted devices.

July 12, 2023

Citrix Patches Critical Vulnerability in Secure Access Client for Ubuntu

Citrix has patched a critical-severity vulnerability in Secure Access client for Ubuntu that could lead to remote code execution (RCE).

July 12, 2023

Fortinet Patches Critical FortiOS Vulnerability Leading to Remote Code Execution

Fortinet patches a critical-severity vulnerability in FortiOS and FortiProxy that could lead to remote code execution.

July 12, 2023

SAP Patches Critical Vulnerability in ECC and S/4HANA Products

SAP on July 2023 Security Patch Day released 16 new security notes, including one addressing a critical vulnerability in ECC and S/4HANA (IS-OIL).

July 12, 2023

Former Security Engineer Arrested for $9 Million Crypto Exchange Hack

Former security engineer Shakeeb Ahmed has been arrested on charges related to the defrauding of decentralized crypto exchange Crema Finance.

July 11, 2023

SaaS Application Security Firm Savvy Exits Stealth Mode With $30 Million in Funding

Savvy emerges from stealth mode with $30 million in funding, on path to secure the use of software-as-a-service (SaaS) applications.

July 11, 2023

Personal Information of 11 Million Patients Stolen in Data Breach at HCA Healthcare

HCA Healthcare says the personal information of roughly 11 million patients was stolen in a data breach.

July 11, 2023

Russia-Linked RomCom Hackers Targeting NATO Summit Guests

A recent RomCom cyber operation has been targeting NATO Summit guests and other entities supporting Ukraine.

July 11, 2023

Critical Infrastructure Services Firm Ventia Takes Systems Offline Due to Cyberattack

Critical infrastructure services provider Ventia has taken some systems offline following a cyberattack.

July 10, 2023

PoC Exploit Published for Recent Ubiquiti EdgeRouter Vulnerability

PoC exploit has been published for a recently patched Ubiquiti EdgeRouter vulnerability leading to arbitrary code execution.

July 10, 2023

Critical Vulnerability Can Allow Takeover of Mastodon Servers

A critical vulnerability in the Mastodon social networking platform may allow attackers to take over target servers.

July 10, 2023

Iranian Cyberspies Target US-Based Think Tank With New macOS Malware

In May 2023, Iran-linked cyberespionage group Charming Kitten targeted a US-based think tank with new macOS malware.

July 7, 2023

Security Firm Finds Over 130k Internet-Exposed Photovoltaic Diagnostics Systems

Cyble has discovered more than 130,000 Photovoltaic monitoring and diagnostic solutions exposed to the internet.

July 7, 2023

Two Apps Hosted on Google Play Caught Sending User Data to Chinese Servers

Two applications hosted on Google Play, with over 1.5 million combined downloads, were caught sending user data to servers in China.

July 7, 2023

Android Security Updates Patch 3 Exploited Vulnerabilities

Google’s July 2023 security updates for Android patches 43 vulnerabilities, including three exploited in the wild.

July 6, 2023

28,000 Impacted by Data Breach at Pepsi Bottling Ventures

The personal, financial, and health information of over 28,000 individuals stolen in data breach at Pepsi Bottling Ventures.

July 6, 2023

Interpol: Key Member of Major Cybercrime Group Arrested in Africa

Law enforcement authorities have arrested a suspected senior member of the French-speaking Opera1er cybercrime group.

July 6, 2023

SECURITYWEEK NETWORK:

ICS:

Ionut Arghire

Popular WordPress Security Plugin Caught Logging Plaintext Passwords

Juniper Networks Patches High-Severity Vulnerabilities in Junos OS

SonicWall Patches Critical Vulnerabilities in GMS, Analytics Products

Hardcoded Accounts Allow Full Takeover of Technicolor Routers

Citrix Patches Critical Vulnerability in Secure Access Client for Ubuntu

Fortinet Patches Critical FortiOS Vulnerability Leading to Remote Code Execution

SAP Patches Critical Vulnerability in ECC and S/4HANA Products

Former Security Engineer Arrested for $9 Million Crypto Exchange Hack

SaaS Application Security Firm Savvy Exits Stealth Mode With $30 Million in Funding

Personal Information of 11 Million Patients Stolen in Data Breach at HCA Healthcare

Russia-Linked RomCom Hackers Targeting NATO Summit Guests

Critical Infrastructure Services Firm Ventia Takes Systems Offline Due to Cyberattack

PoC Exploit Published for Recent Ubiquiti EdgeRouter Vulnerability

Critical Vulnerability Can Allow Takeover of Mastodon Servers

Iranian Cyberspies Target US-Based Think Tank With New macOS Malware

Security Firm Finds Over 130k Internet-Exposed Photovoltaic Diagnostics Systems

Two Apps Hosted on Google Play Caught Sending User Data to Chinese Servers

Android Security Updates Patch 3 Exploited Vulnerabilities

28,000 Impacted by Data Breach at Pepsi Bottling Ventures

Interpol: Key Member of Major Cybercrime Group Arrested in Africa

Featured

Privacy & Compliance

WhatsApp Catches Spyware Firm NSO Defying No-Hacking Court Order

Data Breaches

Meta Says 20,000 Instagram Accounts Hacked via AI Tool Abuse

Supply Chain Security

OWASP Incubator Project Helps Developers Find and Fix Vulnerable Dependencies in Seconds

Artificial Intelligence

Industry Reactions to New Trump AI Cybersecurity Executive Order: Feedback Friday

Vulnerabilities

Cisco Warns of 7th SD-WAN Zero-Day Exploited in 2026

Cybercrime

Chinese Cybercrime Group in Spotlight for Record Campaign Pace

Vulnerabilities

VS Code Vulnerability Allows One-Click GitHub Token Theft

Latest News

Cybersecurity Funding

A Security Raises $37 Million for Autonomous Offensive Security Platform

Artificial Intelligence

Everybody Is Vibe Coding But Nobody Told the Security Team

M&A Tracker

Cybersecurity M&A Roundup: 26 Deals Announced in May 2026

Vulnerabilities

Everest Forms Vulnerability Exploited to Hack WordPress Sites

Data Breaches

174,000 Impacted by Lansing Community College Data Breach

Ransomware

Silent Ransom Group Uses DNS Fast Flux in Attacks

Artificial Intelligence

OpenAI Rolling Out ChatGPT Account Security Controls

Daily Briefing Newsletter