Ionut Arghire

Hacker Claims Theft of 30M User Records From Australia Ticketing Company TEG

A hacker claims to have stolen the information of 30 million users from TEG subsidiary Ticketek.

June 24, 2024

Santander Employee Data Breach Linked to Snowflake Attack

Santander US is notifying over 12,000 employees that their personal information was compromised in a data breach.

June 21, 2024

Recent SolarWinds Serv-U Vulnerability Exploited in the Wild

Threat actors are exploiting a recent path traversal vulnerability in SolarWinds Serv-U using public PoC code.

June 21, 2024

Personal and Chemical Facility Information Potentially Accessed in CISA Hack

CISA says CFATS program data was likely accessed after an Ivanti Connect Secure appliance was hacked in January.

June 21, 2024

Cyber Assault on Asian Telecoms Traced to Chinese State Hackers

A years-long espionage campaign has targeted telecoms companies in Asia with tools associated with Chinese groups.

June 20, 2024

Access Management Startup Pomerium Raises $13.75 Million

Pomerium raises $13.75 million in Series A funding for dynamic user identity verification and access management platform.

June 20, 2024

LockBit Ransomware Again Most Active – Real Attack Surge or Smokescreen?

LockBit appears to once again be the most active ransomware group, but experts believe the hackers may just be inflating their numbers.

June 20, 2024

Highly Evasive SquidLoader Malware Targets China

A threat actor targeting Chinese-speaking victims has been using the SquidLoader malware loader in recent attacks.

June 20, 2024

Atlassian Patches High-Severity Vulnerabilities in Confluence, Crucible, Jira

Atlassian has released Confluence, Crucible, and Jira updates to address multiple high-severity vulnerabilities.

June 20, 2024

Amtrak Says Guest Rewards Accounts Hacked in Credential Stuffing Attacks

National passenger railroad company Amtrak is notifying customers that hackers have breached their Guest Rewards Accounts.

June 19, 2024

US, Allies Publish Guidance on Securing Network Access

Government agencies in the US, New Zealand, and Canada have published new guidance on improving network security.

June 19, 2024

Chrome 126 Update Patches Vulnerability Exploited at Hacking Competition

Google has released a Chrome 126 security update with six fixes, including four for externally reported high-severity flaws.

June 19, 2024

Two Men Plead Guilty to Hacking Law Enforcement Database for Doxing

Sagar Steven Singh and Nicholas Ceraolo pleaded guilty to hacking a database maintained by a US federal law enforcement agency.

June 18, 2024

New BadSpace Backdoor Deployed in Drive-By Attacks

The BadSpace backdoor is being distributed via drive-by attacks involving infected websites and JavaScript downloaders.

June 18, 2024

Chinese Hackers Leveraged Legacy F5 BIG-IP Appliance for Persistence

China-linked threat actor Velvet Ant leveraged a legacy F5 BIG-IP appliance for three-year access to a victim’s network.

June 18, 2024

Blackbaud Settles With California for $6.75 Million Over 2020 Data Breach

Blackbaud was ordered to pay $6.75 million to the California Attorney General’s Office over the 2020 data breach.

June 18, 2024

CISA Conducts First AI Cyber Incident Response Exercise

The US cybersecurity agency CISA has conducted a tabletop exercise with the private sector focused on AI cyber incident response.

June 17, 2024

Keytronic Says Personal Information Stolen in Ransomware Attack

Keytronic confirms that personal information was compromised after a ransomware group leaked allegedly stolen data.

June 17, 2024

200,000 Impacted by Data Breach at Los Angeles County Public Health Agency

The LA County’s Department of Public Health says the personal information of 200,000 was compromised in a data breach.

June 17, 2024

Nigerian Faces Prison in US After BEC Fraud Conviction

Nigerian national Ebuka Raphael Umeti was convicted in the US for operating a business email compromise (BEC) scheme.

June 17, 2024

SECURITYWEEK NETWORK:

ICS:

Ionut Arghire

Hacker Claims Theft of 30M User Records From Australia Ticketing Company TEG

Santander Employee Data Breach Linked to Snowflake Attack

Recent SolarWinds Serv-U Vulnerability Exploited in the Wild

Personal and Chemical Facility Information Potentially Accessed in CISA Hack

Cyber Assault on Asian Telecoms Traced to Chinese State Hackers

Access Management Startup Pomerium Raises $13.75 Million

LockBit Ransomware Again Most Active – Real Attack Surge or Smokescreen?

Highly Evasive SquidLoader Malware Targets China

Atlassian Patches High-Severity Vulnerabilities in Confluence, Crucible, Jira

Amtrak Says Guest Rewards Accounts Hacked in Credential Stuffing Attacks

US, Allies Publish Guidance on Securing Network Access

Chrome 126 Update Patches Vulnerability Exploited at Hacking Competition

Two Men Plead Guilty to Hacking Law Enforcement Database for Doxing

New BadSpace Backdoor Deployed in Drive-By Attacks

Chinese Hackers Leveraged Legacy F5 BIG-IP Appliance for Persistence

Blackbaud Settles With California for $6.75 Million Over 2020 Data Breach

CISA Conducts First AI Cyber Incident Response Exercise

Keytronic Says Personal Information Stolen in Ransomware Attack

200,000 Impacted by Data Breach at Los Angeles County Public Health Agency

Nigerian Faces Prison in US After BEC Fraud Conviction

Featured

Vulnerabilities

Microsoft Working on Patch for ‘RoguePlanet’ Zero-Day

Vulnerabilities

3 Recently Patched Fortinet FortiSandbox Vulnerabilities in Hacker Crosshairs

Hacker Conversations

Hacker Conversations: Isira Adithya, the Evolution of an Ethical Hacker

Artificial Intelligence

AI and Cybersecurity – Everything You Wanted to Know, But Were Afraid to Ask

ICS/OT

Cal Water Investigating Iranian Hackers’ Claims

Network Security

Cisco Patches Another SD-WAN Zero-Day Exploited in Attacks

Ransomware

Ransomware Attack Shuts Down Mills of Australia’s Second-Largest Sugar Producer

Latest News

Identity & Access

Webinar Today: How Modern Breaches Bypass MFA and Evade Detection

Funding/M&A

1Password Acquires Apono in Reported $250M-$300M Deal

Artificial Intelligence

Tenet Security Emerges From Stealth With $6 Million Seed Funding

ICS/OT

Rockwell Automation Patches Vulnerabilities in ICS Controllers and Software

Malware & Threats

Microsoft Teams Relay Servers Abused in DragonForce Ransomware Attack

Vulnerabilities

Oracle’s Second Monthly Security Updates Deliver 245 Patches

Vulnerabilities

Chrome and Firefox Updated to Patch Critical, High-Severity Vulnerabilities

Daily Briefing Newsletter