Ionut Arghire

Ransomware Hits Critical Infrastructure Hard, Costs Adding Up

Report finds most organizations have suffered financial impact of $500,000 or more from cyberattacks on cyber-physical systems over past year.

October 4, 2024

Google Cloud Announces General Availability of New Confidential Computing Options

Google Cloud makes new confidential computing options generally available and expands attestation support.

October 4, 2024

Google Hardens Pixel’s Baseband Security Mitigations

Pixel 9 comes with improved security hardening mitigations against common exploits on cellular basebands.

October 4, 2024

Russia Arrests 96 People Tied to US-Disrupted Cryptocurrency Exchanges

Russian authorities have arrested 96 individuals suspected of having ties to US-disrupted UAPS and Cryptex cryptocurrency exchanges.

October 4, 2024

Jenkins Patches High-Impact Vulnerabilities in Server and Plugins

Jenkins has released patches for multiple high- and medium-severity vulnerabilities impacting the automation tool and several plugins.

October 3, 2024

Cisco Patches Critical Vulnerability in Data Center Management Product

A critical-severity vulnerability in Cisco NDFC could allow attackers to execute commands with elevated privileges.

October 3, 2024

Adobe Commerce Flaw Exploited to Compromise Thousands of Sites

Over 4,000 Adobe Commerce and Magento stores unpatched against an exploited vulnerability have been compromised.

October 3, 2024

Chrome, Firefox Updates Patch High-Severity Vulnerabilities

The latest Chrome and Firefox security updates address multiple high-severity vulnerabilities affecting the popular web browsers.

October 3, 2024

MITRE Adds Mitigations to EMB3D Threat Model

MITRE has expanded the EMB3D Threat Model with essential mitigations to help organizations address threats to embedded devices.

October 2, 2024

US, Allies Release Guidance on Securing OT Environments

New guidance provides information on how to create and maintain a secure operational technology (OT) environment.

October 2, 2024

Cryptocurrency Wallets Targeted via Python Packages Uploaded to PyPI

Multiple Python packages referencing dependencies containing cryptocurrency-stealing code were published to PyPI.

October 2, 2024

Critical Zimbra Vulnerability Exploited One Day After PoC Release

A critical-severity vulnerability in Zimbra has been exploited in the wild to deploy a web shell on vulnerable servers.

October 2, 2024

T-Mobile to Pay Millions to Settle With FCC Over Data Breaches

T-Mobile has agreed to invest $15.75 million in cybersecurity and pay $15.75 million to settle an FCC investigation into four data breaches.

October 1, 2024

Organizations Warned of Exploited SAP, Gpac and D-Link Vulnerabilities

CISA warns that years-old vulnerabilities in SAP Commerce, Gpac framework, and D-Link DIR-820 routers are exploited in the wild.

October 1, 2024

Apono Raises $15.5 Million for Cloud Access Platform

Cloud access provider Apono has raised $15.5 million in a Series A funding round led by New Era Capital Partners.

October 1, 2024

UMC Health System Diverts Patients Following Ransomware Attack

UMC Health System has been forced to divert patients after a ransomware attack resulted in a network outage.

October 1, 2024

Patelco Credit Union Data Breach Impacts Over 1 Million People

Patelco Credit Union has informed authorities that data on more than 1 million individuals was stolen in a ransomware attack this summer.

September 30, 2024

Accounting Firm WMDDH Discloses Data Breach Impacting 127,000

The personal information of over 127,000 individuals was stolen in a July 2023 data breach at Wright, Moore, DeHart, Dupuis & Hutchinson (WMDDH).

September 30, 2024

Microsoft: Cloud Environments of US Organizations Targeted in Ransomware Attacks

A threat actor has been compromising the hybrid cloud environments of US organizations in multiple sectors.

September 30, 2024

British National Arrested, Charged for Hacking US Companies

UK national Robert Westbrook was charged in the US for executing a hack-to-trade scheme against five public companies.

September 30, 2024

SECURITYWEEK NETWORK:

ICS:

Ionut Arghire

Ransomware Hits Critical Infrastructure Hard, Costs Adding Up

Google Cloud Announces General Availability of New Confidential Computing Options

Google Hardens Pixel’s Baseband Security Mitigations

Russia Arrests 96 People Tied to US-Disrupted Cryptocurrency Exchanges

Jenkins Patches High-Impact Vulnerabilities in Server and Plugins

Cisco Patches Critical Vulnerability in Data Center Management Product

Adobe Commerce Flaw Exploited to Compromise Thousands of Sites

Chrome, Firefox Updates Patch High-Severity Vulnerabilities

MITRE Adds Mitigations to EMB3D Threat Model

US, Allies Release Guidance on Securing OT Environments

Cryptocurrency Wallets Targeted via Python Packages Uploaded to PyPI

Critical Zimbra Vulnerability Exploited One Day After PoC Release

T-Mobile to Pay Millions to Settle With FCC Over Data Breaches

Organizations Warned of Exploited SAP, Gpac and D-Link Vulnerabilities

Apono Raises $15.5 Million for Cloud Access Platform

UMC Health System Diverts Patients Following Ransomware Attack

Patelco Credit Union Data Breach Impacts Over 1 Million People

Accounting Firm WMDDH Discloses Data Breach Impacting 127,000

Microsoft: Cloud Environments of US Organizations Targeted in Ransomware Attacks

British National Arrested, Charged for Hacking US Companies

Featured

Vulnerabilities

Microsoft Working on Patch for ‘RoguePlanet’ Zero-Day

Vulnerabilities

3 Recently Patched Fortinet FortiSandbox Vulnerabilities in Hacker Crosshairs

Hacker Conversations

Hacker Conversations: Isira Adithya, the Evolution of an Ethical Hacker

Artificial Intelligence

AI and Cybersecurity – Everything You Wanted to Know, But Were Afraid to Ask

ICS/OT

Cal Water Investigating Iranian Hackers’ Claims

Network Security

Cisco Patches Another SD-WAN Zero-Day Exploited in Attacks

Ransomware

Ransomware Attack Shuts Down Mills of Australia’s Second-Largest Sugar Producer

Latest News

Identity & Access

Webinar Today: How Modern Breaches Bypass MFA and Evade Detection

Funding/M&A

1Password Acquires Apono in Reported $250M-$300M Deal

Artificial Intelligence

Tenet Security Emerges From Stealth With $6 Million Seed Funding

ICS/OT

Rockwell Automation Patches Vulnerabilities in ICS Controllers and Software

Malware & Threats

Microsoft Teams Relay Servers Abused in DragonForce Ransomware Attack

Vulnerabilities

Oracle’s Second Monthly Security Updates Deliver 245 Patches

Vulnerabilities

Chrome and Firefox Updated to Patch Critical, High-Severity Vulnerabilities

Daily Briefing Newsletter