Ionut Arghire

Nevada State Offices Closed Following Disruptive Cyberattack

State websites and phone lines were taken offline, but officials say emergency services and personal data remain unaffected.

August 27, 2025

Citrix Patches Exploited NetScaler Zero-Day

Zero-day exploited in the wild forces Citrix and CISA to push emergency patch deadlines for federal agencies.

August 27, 2025

PromptLock: First AI-Powered Ransomware Emerges

Proof-of-concept ransomware uses AI models to generate attack scripts in real time.

August 27, 2025

Healthcare Services Group Data Breach Impacts 624,000

The personal information of many individuals was stolen from Healthcare Services Group’s computer systems in 2024.

August 26, 2025

Docker Desktop Vulnerability Leads to Host Compromise

A critical vulnerability in Docker Desktop allows attackers to modify the filesystem of Windows hosts to become administrators.

August 26, 2025

Hundreds of Thousands Affected by Auchan Data Breach

Auchan confirms that the personal information of hundreds of thousands of customers was stolen in a data breach.

August 26, 2025

Organizations Warned of Exploited Git Vulnerability

CISA urges federal agencies to immediately patch an exploited arbitrary file write vulnerability in Git that leads to remote code execution.

August 26, 2025

Pakistani Hackers Back at Targeting Indian Government Entities

Pakistani state-sponsored hacking group APT36 is targeting Linux systems in a fresh campaign aimed at Indian government entities.

August 25, 2025

Anatsa Android Banking Trojan Now Targeting 830 Financial Apps

The Anatsa Android banking trojan has expanded its target list to new countries and more cryptocurrency applications.

August 25, 2025

CISA Requests Public Feedback on Updated SBOM Guidance

CISA has updated the Minimum Elements for a Software Bill of Materials (SBOM) guidance and is seeking public comment.

August 25, 2025

Arch Linux Project Responding to Week-Long DDoS Attack

The Arch Linux Project has been targeted in a DDoS attack that disrupted its website, repository, and forums.

August 25, 2025

Chinese Silk Typhoon Hackers Targeting Multiple Industries in North America

Silk Typhoon was seen exploiting n-day and zero-day vulnerabilities for initial access to victim systems.

August 22, 2025

Developer Who Hacked Former Employer’s Systems Sentenced to Prison

Davis Lu was sentenced to four years in prison for installing malicious code on employer’s systems and for deleting encrypted data.

August 22, 2025

Hundreds Targeted in New Atomic macOS Stealer Campaign

Between June and August, over 300 entities were targeted with the Atomic macOS Stealer via malvertising.

August 22, 2025

MITRE Updates List of Most Common Hardware Weaknesses

MITRE has updated the list of Most Important Hardware Weaknesses to align it with evolving hardware security challenges.

August 22, 2025

Scattered Spider Hacker Sentenced to Prison

Noah Urban was sentenced to 10 years in prison for his role in the notorious cybercriminal operation known as Scattered Spider.

August 21, 2025

Russian APT Exploiting 7-Year-Old Cisco Vulnerability: FBI

Russian state-sponsored hackers tracked as Static Tundra continue to target Cisco devices affected by CVE-2018-0171.

August 21, 2025

Orange Belgium Data Breach Impacts 850,000 Customers

Orange Belgium says hackers accessed data pertaining to 850,000 customer accounts during a July cyberattack.

August 21, 2025

Apple Patches Zero-Day Exploited in Targeted Attacks

Apple has rolled out iOS and macOS updates that resolve a zero-day vulnerability exploited in highly targeted attacks.

August 21, 2025

Elastic Refutes Claims of Zero-Day in EDR Product

Elastic has found no evidence of a vulnerability leading to RCE after details and PoC of a Defend EDR bypass were published online.

August 20, 2025

SECURITYWEEK NETWORK:

ICS:

Ionut Arghire

Nevada State Offices Closed Following Disruptive Cyberattack

Citrix Patches Exploited NetScaler Zero-Day

PromptLock: First AI-Powered Ransomware Emerges

Healthcare Services Group Data Breach Impacts 624,000

Docker Desktop Vulnerability Leads to Host Compromise

Hundreds of Thousands Affected by Auchan Data Breach

Organizations Warned of Exploited Git Vulnerability

Pakistani Hackers Back at Targeting Indian Government Entities

Anatsa Android Banking Trojan Now Targeting 830 Financial Apps

CISA Requests Public Feedback on Updated SBOM Guidance

Arch Linux Project Responding to Week-Long DDoS Attack

Chinese Silk Typhoon Hackers Targeting Multiple Industries in North America

Developer Who Hacked Former Employer’s Systems Sentenced to Prison

Hundreds Targeted in New Atomic macOS Stealer Campaign

MITRE Updates List of Most Common Hardware Weaknesses

Scattered Spider Hacker Sentenced to Prison

Russian APT Exploiting 7-Year-Old Cisco Vulnerability: FBI

Orange Belgium Data Breach Impacts 850,000 Customers

Apple Patches Zero-Day Exploited in Targeted Attacks

Elastic Refutes Claims of Zero-Day in EDR Product

Featured

ICS/OT

Iranian Cyber Group Handala Claims Cal Water Hack

Cybercrime

Google Confirms Exploitation of Oracle PeopleSoft Zero-Day by ShinyHunters

Incident Response

Alert Fatigue Is Becoming a Security Threat of Its Own

ICS/OT

Siemens Says Desigo CC Files Flagged as Malware by Security Engines

Vulnerabilities

Microsoft Patches Exploited Exchange Server Vulnerability

ICS/OT

Critical HVAC and UPS Vulnerabilities Could Let Hackers Disrupt Data Centers

Vulnerabilities

ServiceNow Patches Vulnerability Exploited Against Some Customers

Latest News

Artificial Intelligence

Anthropic Says It Has Taken Its Latest AI Models Offline to Comply With New Export Controls

Management & Strategy

In Other News: Google Security Layoffs, AudiA6 Takedown, $400 Million Coupang Fine

Artificial Intelligence

Industry Reactions to Claude Fable 5: Feedback Friday

Vulnerabilities

Ivanti Sentry Exploitation Attempts Hitting Honeypots

Vulnerabilities

Chrome 149 Update Patches 28 Vulnerabilities

Artificial Intelligence

Anthropic Disputes Fable 5 AI Jailbreak

Cybercrime

Google Confirms Exploitation of Oracle PeopleSoft Zero-Day by ShinyHunters

Daily Briefing Newsletter