Ionut Arghire

SAP Patches High-Severity Vulnerabilities in PDCE, Commerce

Patch Tuesday: Enterprise software vendor SAP releases patches for high-severity vulnerabilities in multiple products and tools.

July 9, 2024

Evolve Bank Data Breach Impacts 7.6 Million People

Evolve Bank says personal information of more than 7.6 million individuals was compromised in a ransomware attack.

July 9, 2024

Ransomware Gang Leaks Data Allegedly Stolen from Florida Department of Health

The Ransomhub ransomware gang has claimed the theft of 100GB of data from the Florida Department of Health.

July 9, 2024

Global Coalition Blames China’s APT40 for Hacking Government Networks

Seven nations are backing Australia in calling out a China-linked hacking group for compromising government networks.

July 9, 2024

Hacked Ethereum Foundation Account Used to Send 35,000 Phishing Emails

A threat actor sent over 35,000 phishing emails after hacking into Ethereum Foundation's account on a mailing list platform.

July 8, 2024

Kaspersky Flags Cyberespionage APT ‘CloudSorcerer’ Targeting Russian Government

Kaspersky said the CloudSorcerer APT has been abusing public cloud services to exfiltrate data from Russian government entities.

July 8, 2024

Former Nuance Employee Arrested After Geisinger Data Breach Exposed 1.2 Million Records

A class action lawsuit was filed against Geisinger for failing to properly secure patients’ personal and health information.

July 8, 2024

Attackers Exploiting Remote Code Execution Vulnerability in Ghostscript

Vulnerability in Ghostscript (CVE-2024-29510) allows attackers to bypass sandbox for remote code execution.

July 8, 2024

OVHcloud Sees Record 840 Mpps DDoS Attack

OVHcloud says it mitigated the largest ever DDoS attack leveraging packet rate, which peaked at 840 Mpps.

July 5, 2024

Over 380k Hosts Still Referencing Malicious Polyfill Domain: Censys

Censys has discovered more than 380,000 hosts, including major platforms, still referencing the malicious polyfill.io domain.

July 3, 2024

Odaseva Raises $54 Million for Salesforce Enterprise Data Security Platform

Enterprise data security platform Odaseva raises $54 million in a Series C funding round led by Silver Lake Waterman.

July 3, 2024

300k Affected by Year-Old Data Breach at Florida Community Health Centers

Florida Community Health Centers says the information of 300,000 individuals was stolen in a June 2023 ransomware attack.

July 3, 2024

Patelco Credit Union Scrambling to Restore Systems Following Ransomware Attack

Patelco Credit Union shuts down banking systems and suspends electronic operations in response to a ransomware attack.

July 3, 2024

Google Patches 25 Android Flaws, Including Critical Privilege Escalation Bug

Google ships an Android security update with fixes for 15 vulnerabilities, including a critical-severity flaw in Framework.

July 2, 2024

Splunk Patches High-Severity Vulnerabilities in Enterprise Product

Splunk has patched multiple vulnerabilities in Splunk Enterprise, including high-severity remote code execution bugs.

July 2, 2024

Critical CocoaPods Flaws Exposed Many iOS, macOS Apps to Supply Chain Attacks

EVA Information Security has shared details on three CocoaPods vulnerabilities impacting millions of macOS and iOS applications.

July 2, 2024

Cisco Patches NX-OS Zero-Day Exploited by Chinese Cyberspies

Cisco has patched an NX-OS command injection zero-day exploited by China-linked cyberespionage group Velvet Ant.

July 2, 2024

Landmark Admin Discloses Data Breach Impacting Personal, Medical Information

Life insurance company Landmark Admin says personal, medical, and insurance information was compromised in a May data breach.

July 1, 2024

Hackers Target Vulnerability Found Recently in Long-Discontinued D-Link Routers

GreyNoise observes the first attempts to exploit a path traversal vulnerability in discontinued D-Link DIR-859 WiFi routers.

July 1, 2024

Juniper Networks Warns of Critical Authentication Bypass Vulnerability

Juniper Networks warns of a critical authentication bypass flaw impacting Session Smart routers and conductors.

July 1, 2024

SECURITYWEEK NETWORK:

ICS:

Ionut Arghire

SAP Patches High-Severity Vulnerabilities in PDCE, Commerce

Evolve Bank Data Breach Impacts 7.6 Million People

Ransomware Gang Leaks Data Allegedly Stolen from Florida Department of Health

Global Coalition Blames China’s APT40 for Hacking Government Networks

Hacked Ethereum Foundation Account Used to Send 35,000 Phishing Emails

Kaspersky Flags Cyberespionage APT ‘CloudSorcerer’ Targeting Russian Government

Former Nuance Employee Arrested After Geisinger Data Breach Exposed 1.2 Million Records

Attackers Exploiting Remote Code Execution Vulnerability in Ghostscript

OVHcloud Sees Record 840 Mpps DDoS Attack

Over 380k Hosts Still Referencing Malicious Polyfill Domain: Censys

Odaseva Raises $54 Million for Salesforce Enterprise Data Security Platform

300k Affected by Year-Old Data Breach at Florida Community Health Centers

Patelco Credit Union Scrambling to Restore Systems Following Ransomware Attack

Google Patches 25 Android Flaws, Including Critical Privilege Escalation Bug

Splunk Patches High-Severity Vulnerabilities in Enterprise Product

Critical CocoaPods Flaws Exposed Many iOS, macOS Apps to Supply Chain Attacks

Cisco Patches NX-OS Zero-Day Exploited by Chinese Cyberspies

Landmark Admin Discloses Data Breach Impacting Personal, Medical Information

Hackers Target Vulnerability Found Recently in Long-Discontinued D-Link Routers

Juniper Networks Warns of Critical Authentication Bypass Vulnerability

Featured

Vulnerabilities

Microsoft Working on Patch for ‘RoguePlanet’ Zero-Day

Vulnerabilities

3 Recently Patched Fortinet FortiSandbox Vulnerabilities in Hacker Crosshairs

Hacker Conversations

Hacker Conversations: Isira Adithya, the Evolution of an Ethical Hacker

Artificial Intelligence

AI and Cybersecurity – Everything You Wanted to Know, But Were Afraid to Ask

ICS/OT

Cal Water Investigating Iranian Hackers’ Claims

Network Security

Cisco Patches Another SD-WAN Zero-Day Exploited in Attacks

Ransomware

Ransomware Attack Shuts Down Mills of Australia’s Second-Largest Sugar Producer

Latest News

Identity & Access

Webinar Today: How Modern Breaches Bypass MFA and Evade Detection

Funding/M&A

1Password Acquires Apono in Reported $250M-$300M Deal

Artificial Intelligence

Tenet Security Emerges From Stealth With $6 Million Seed Funding

ICS/OT

Rockwell Automation Patches Vulnerabilities in ICS Controllers and Software

Malware & Threats

Microsoft Teams Relay Servers Abused in DragonForce Ransomware Attack

Vulnerabilities

Oracle’s Second Monthly Security Updates Deliver 245 Patches

Vulnerabilities

Chrome and Firefox Updated to Patch Critical, High-Severity Vulnerabilities

Daily Briefing Newsletter