Ionut Arghire

London startup Tracebit has raised $5 million in seed funding for its cloud-native threat detection and deception solution.

A threat actor tracked as CrystalRay has hit 1,500 victims since February, stealing credentials and deploying backdoors.

GitLab issues an advisory for a critical-severity vulnerability that allows an attacker to trigger a pipeline as another user.

In response to recent intrusions, CISA and the FBI are urging businesses and device manufacturers to eliminate OS command injection vulnerabilities at the source.

Palo Alto Networks patched a critical vulnerability in its Expedition tool and addressed the impact of the recently disclosed BlastRADIUS vulnerability.

Citrix rolls out patches for multiple security vulnerabilities, including critical and high-severity issues in the NetScaler product line.

The US and allies blame Russian state-sponsored threat actors for using Meliorator AI software to create a social media bot farm.

Several ICS vendors released advisories on Tuesday to inform customers about vulnerabilities found in industrial and OT products.

Command Zero has emerged from stealth mode with $21 million in a seed funding round led by Andreessen Horowitz.

Patch Tuesday: Enterprise software vendor SAP releases patches for high-severity vulnerabilities in multiple products and tools.

Evolve Bank says personal information of more than 7.6 million individuals was compromised in a ransomware attack.

The Ransomhub ransomware gang has claimed the theft of 100GB of data from the Florida Department of Health.

Seven nations are backing Australia in calling out a China-linked hacking group for compromising government networks.

A threat actor sent over 35,000 phishing emails after hacking into Ethereum Foundation's account on a mailing list platform.

Kaspersky said the CloudSorcerer APT has been abusing public cloud services to exfiltrate data from Russian government entities.

A class action lawsuit was filed against Geisinger for failing to properly secure patients’ personal and health information.

Vulnerability in Ghostscript (CVE-2024-29510) allows attackers to bypass sandbox for remote code execution.

OVHcloud says it mitigated the largest ever DDoS attack leveraging packet rate, which peaked at 840 Mpps.

Censys has discovered more than 380,000 hosts, including major platforms, still referencing the malicious polyfill.io domain.

Enterprise data security platform Odaseva raises $54 million in a Series C funding round led by Silver Lake Waterman.