Latest News

Exploit Code Published for Potentially Dangerous Windows LDAP Vulnerability

Proof-of-concept (PoC) code was published for CVE-2024-49113, a denial-of-service (DoS) vulnerability in Windows LDAP.

January 3, 2025

US Imposes Sanctions on Russian and Iranian Groups Over Disinformation Targeting American Voters

The United States has imposed sanctions on two groups linked to Iranian and Russian efforts to target American voters with disinformation ahead of this year’s election.

January 3, 2025

New York Hospital Says Ransomware Attack Data Breach Impacts 670,000

Richmond University Medical Center has been investigating a ransomware attack since May 2023 and it recently determined that it affects 670,000 people.

January 3, 2025

Apple to Pay $95 Million to Settle Lawsuit Accusing Siri of Eavesdropping

Apple isn’t acknowledging any wrongdoing in the settlement, which must be approved by a Judge and represents a sliver of the $705 billion in profits that Apple has pocketed since September 2014.

January 2, 2025

US Arrests Army Soldier Over AT&T, Verizon Hacking

US soldier Cameron John Wagenius was arrested and charged over his suspected connection to presidential phone records leaks.

January 2, 2025

Rhode Islanders’ Data Was Leaked From a Cyberattack on State Health Benefits Website

Cybercriminals who hacked Rhode Island’s system for health and benefits programs have released files to a site on the dark web,

December 31, 2024

Cyberhaven Chrome Extension Hack Linked to Widening Supply Chain Campaign

The recent compromise of Cyberhaven’s Chrome extension appears to be part of a broad campaign that started over a year ago.

December 31, 2024

Chinese Hackers Accessed US Treasury Workstations in ‘Major’ Cybersecurity Incident

Chinese hackers remotely accessed US Treasury Department workstations after compromising a cloud-based service operated by BeyondTrust.

December 31, 2024

Palo Alto Networks Patches Firewall Zero-Day Exploited for DoS Attacks

Palo Alto Networks has patched CVE-2024-3393, a vulnerability that has been exploited for DoS attacks against the company’s firewalls.

December 30, 2024

Four-Faith Industrial Router Vulnerability Exploited in Attacks

Threat actors are exploiting a command injection vulnerability in Four-Faith industrial routers to deploy a reverse shell.

December 30, 2024

US Issues Final Rule for Protecting Personal Data Against Foreign Adversaries

The DoJ has issued a final rule addressing adversaries’ access to and exploitation of Americans’ bulk sensitive personal information.

December 30, 2024

Several Chrome Extensions Compromised in Supply Chain Attack

Cyberhaven and other Chrome extensions were compromised in a supply chain attack targeting Facebook advertising users.

December 30, 2024

Cisco Confirms Authenticity of Data After Second Leak

Cisco has confirmed that 4 Gb of data leaked by a hacker is authentic and related to a recently disclosed security incident.

December 30, 2024

A 9th Telecoms Firm Has Been Hit by a Massive Chinese Espionage Campaign, the White House Says

A top White House official said at least eight U.S. telecom firms and dozens of nations have been impacted by a Chinese hacking campaign.

December 29, 2024

The Intersection of AI and OSINT: Advanced Threats On The Horizon

Artificial Intelligence (A) is revolutionizing intelligence gathering, empowering cybersecurity defenders, and amplifying threat actor capabilities.

December 26, 2024

Defense Giant General Dynamics Says Employees Targeted in Phishing Attack

General Dynamics says several benefits accounts were hacked after threat actors targeted employees in a phishing campaign.

December 26, 2024

SECURITYWEEK NETWORK:

ICS:

Latest News

Exploit Code Published for Potentially Dangerous Windows LDAP Vulnerability

US Imposes Sanctions on Russian and Iranian Groups Over Disinformation Targeting American Voters

New York Hospital Says Ransomware Attack Data Breach Impacts 670,000

Apple to Pay $95 Million to Settle Lawsuit Accusing Siri of Eavesdropping

US Arrests Army Soldier Over AT&T, Verizon Hacking

Rhode Islanders’ Data Was Leaked From a Cyberattack on State Health Benefits Website

Cyberhaven Chrome Extension Hack Linked to Widening Supply Chain Campaign

Chinese Hackers Accessed US Treasury Workstations in ‘Major’ Cybersecurity Incident

Palo Alto Networks Patches Firewall Zero-Day Exploited for DoS Attacks

Four-Faith Industrial Router Vulnerability Exploited in Attacks

US Issues Final Rule for Protecting Personal Data Against Foreign Adversaries

Several Chrome Extensions Compromised in Supply Chain Attack

Cisco Confirms Authenticity of Data After Second Leak

A 9th Telecoms Firm Has Been Hit by a Massive Chinese Espionage Campaign, the White House Says

The Intersection of AI and OSINT: Advanced Threats On The Horizon

Defense Giant General Dynamics Says Employees Targeted in Phishing Attack

Application Security

Application Security

Can CISOs Trust Their Applications? TrustCloud Wants to Replace the Questionnaire

Application Security

Tech Coalition ‘Athena’ Targets OSS Vulnerabilities Ahead of Disclosure

Application Security

After AI Reaches Production: 12 Ways Security Teams Can Take Control

Application Security

New Platform Uses Cryptographic Invisibility to Protect AI-Built Applications

Cloud Security

Artificial Intelligence

Google Addresses Vertex Security Issues After Researchers Weaponize AI Agents

Application Security

TeamPCP Moves From OSS to AWS Environments

Cloud Security

Cloud Security Startup Native Exits Stealth With $42 Million in Funding

Cloud Security

Wiz Joins Google Cloud as Landmark Acquisition Closes

ICS/OT

Funding/M&A

Accenture to Acquire Majority Stake in Dragos, All of runZero, NetRise in $4.1 Billion OT Cybersecurity Push

ICS/OT

Rockwell Automation Patches Vulnerabilities in ICS Controllers and Software

ICS/OT

Cal Water Investigating Iranian Hackers’ Claims

ICS/OT

Iranian Cyber Group Handala Claims Cal Water Hack

Daily Briefing Newsletter