Ionut Arghire

Five Eyes Agencies Release Guidance on Detecting Active Directory Intrusions

Five Eyes cybersecurity agencies have released joint guidance on identifying Active Directory compromises.

September 27, 2024

US Announces Charges, Sanctions Against Russian Administrator of Carding Website

US offers up to $10 million for information on Timur Shakhmametov, charging him with running the carding website Joker’s Stash.

September 27, 2024

Millions of Kia Cars Were Vulnerable to Remote Hacking

Security researchers detail vulnerabilities in Kia owners’ portal that allowed them to control vehicles remotely.

September 27, 2024

Kaspersky, Pango Respond to User Backlash as Transition to UltraAV Nearly Complete

Users continue to flame Kaspersky and Pango Group as the automatic, forced transition to UltraAV gradually progresses.

September 27, 2024

Cisco Patches High-Severity Vulnerabilities in IOS Software

Cisco has released patches for seven high-severity vulnerabilities affecting products running IOS and IOS XE software.

September 26, 2024

Google Sees Drop in Memory Safety Bugs in Android as Code Matures

Memory safety bugs in Android have decreased significantly as old code matures and new code uses memory-safe languages.

September 26, 2024

US Transportation and Logistics Firms Targeted With Infostealers, Backdoors

A malicious campaign is targeting transportation and logistics organizations in North America with various malware families.

September 26, 2024

Security Firm Shows How Threat Actors Could Abuse Google’s Gemini AI Assistant

HiddenLayer has discovered that Google Gemini for Workspace is prone to indirect prompt injection attacks.

September 25, 2024

DefectDojo Raises $7 Million for Application Security Platform

Application security and vulnerability management platform DefectDojo has raised $7 million in Series A funding.

September 25, 2024

India-Linked Hackers Targeting Pakistani Government, Law Enforcement

The India-linked threat actor SloppyLemming has been targeting government, law enforcement, and other entities in Pakistan.

September 25, 2024

Second Pwn2Own Automotive Contest Offers Over $1 Million in Prizes

ZDI offers over $1 million in cash and prizes at the next Pwn2Own Automotive hacking contest, set for January 2025 in Tokyo.

September 25, 2024

Iranian APT Operating as Initial Access Provider to Networks in the Middle East

Iranian state-sponsored threat actor UNC1860 is operating as an initial access provider to high-profile networks in the Middle East.

September 24, 2024

Cyberattack Causes MoneyGram Service Outage

MoneyGram’s money transfer services are down after the company took systems offline to contain a cyberattack.

September 24, 2024

Kansas Water Facility Switches to Manual Operations Following Cyberattack

Ransomware possibly involved in a cybersecurity incident at Arkansas City’s water treatment facility.

September 24, 2024

Kaspersky’s US Exit Sparks Outrage as UltraAV Takes Over Systems Without Consent

Many US users are voicing concerns over the silent, forced transition from Kaspersky’s security products to UltraAV.

September 24, 2024

Necro Trojan Infects Google Play Apps With Millions of Downloads

The Necro trojan was found in two Android applications in Google Play with a combined downloads count of over 11 million.

September 23, 2024

ESET Patches Privilege Escalation Vulnerabilities in Windows, macOS Products

ESET has released patches for two local privilege escalation vulnerabilities in security products for Windows and macOS.

September 23, 2024

Versa Networks Patches Vulnerability Exposing Authentication Tokens

Versa Networks has released patches for a Versa Director vulnerability for which proof-of-concept (PoC) code exists.

September 23, 2024

Cybersecurity Products Conking Out After macOS Sequoia Update

macOS Sequoia updates are causing cybersecurity software failures and breaking network connectivity for many.

September 23, 2024

Google Now Syncing Passkeys Across Desktop, Android Devices

Users can now save passkeys to Google Password Manager on computers running Windows, macOS, and Linux, in addition to Android devices.

September 20, 2024

SECURITYWEEK NETWORK:

ICS:

Ionut Arghire

Five Eyes Agencies Release Guidance on Detecting Active Directory Intrusions

US Announces Charges, Sanctions Against Russian Administrator of Carding Website

Millions of Kia Cars Were Vulnerable to Remote Hacking

Kaspersky, Pango Respond to User Backlash as Transition to UltraAV Nearly Complete

Cisco Patches High-Severity Vulnerabilities in IOS Software

Google Sees Drop in Memory Safety Bugs in Android as Code Matures

US Transportation and Logistics Firms Targeted With Infostealers, Backdoors

Security Firm Shows How Threat Actors Could Abuse Google’s Gemini AI Assistant

DefectDojo Raises $7 Million for Application Security Platform

India-Linked Hackers Targeting Pakistani Government, Law Enforcement

Second Pwn2Own Automotive Contest Offers Over $1 Million in Prizes

Iranian APT Operating as Initial Access Provider to Networks in the Middle East

Cyberattack Causes MoneyGram Service Outage

Kansas Water Facility Switches to Manual Operations Following Cyberattack

Kaspersky’s US Exit Sparks Outrage as UltraAV Takes Over Systems Without Consent

Necro Trojan Infects Google Play Apps With Millions of Downloads

ESET Patches Privilege Escalation Vulnerabilities in Windows, macOS Products

Versa Networks Patches Vulnerability Exposing Authentication Tokens

Cybersecurity Products Conking Out After macOS Sequoia Update

Google Now Syncing Passkeys Across Desktop, Android Devices

Featured

Vulnerabilities

Microsoft Working on Patch for ‘RoguePlanet’ Zero-Day

Vulnerabilities

3 Recently Patched Fortinet FortiSandbox Vulnerabilities in Hacker Crosshairs

Hacker Conversations

Hacker Conversations: Isira Adithya, the Evolution of an Ethical Hacker

Artificial Intelligence

AI and Cybersecurity – Everything You Wanted to Know, But Were Afraid to Ask

ICS/OT

Cal Water Investigating Iranian Hackers’ Claims

Network Security

Cisco Patches Another SD-WAN Zero-Day Exploited in Attacks

Ransomware

Ransomware Attack Shuts Down Mills of Australia’s Second-Largest Sugar Producer

Latest News

Identity & Access

Webinar Today: How Modern Breaches Bypass MFA and Evade Detection

Funding/M&A

1Password Acquires Apono in Reported $250M-$300M Deal

Artificial Intelligence

Tenet Security Emerges From Stealth With $6 Million Seed Funding

ICS/OT

Rockwell Automation Patches Vulnerabilities in ICS Controllers and Software

Malware & Threats

Microsoft Teams Relay Servers Abused in DragonForce Ransomware Attack

Vulnerabilities

Oracle’s Second Monthly Security Updates Deliver 245 Patches

Vulnerabilities

Chrome and Firefox Updated to Patch Critical, High-Severity Vulnerabilities

Daily Briefing Newsletter