Latest News

Unpatched Flaw in Legacy D-Link NAS Devices Exploited Days After Disclosure

Exploitation attempts targeting CVE-2024-10914, a recently disclosed ‘won’t fix’ vulnerability affecting outdated D-Link NAS devices.

November 14, 2024

Google Cloud to Assign CVEs to Critical Vulnerabilities

Google Cloud will be assigning CVE identifiers to serious cloud vulnerabilities, even ones that don’t require patching.

November 13, 2024

Citrix, Cisco, Fortinet Zero-Days Among 2023’s Most Exploited Vulnerabilities

Most of the top frequently exploited vulnerabilities in 2023 were initially exploited as zero-days, according to data from government agencies.

November 13, 2024

Chipmaker Patch Tuesday: Intel Publishes 44 and AMD Publishes 8 New Advisories

Intel and AMD have published November 2024 Patch Tuesday security advisories to inform customers about vulnerabilities found recently in their products.

November 13, 2024

Ivanti Patches 50 Vulnerabilities Across Several Products

Ivanti has released fixes for dozens of vulnerabilities in Endpoint Manager, Avalanche, Connect Secure, Policy Secure, and Secure Access Client.

November 13, 2024

High-Severity Vulnerabilities Patched in Zoom, Chrome

Zoom Apps security updates resolve six vulnerabilities and Chrome 131 stable is rolling out with 12 security fixes.

November 13, 2024

Chinese Hackers Target Tibetan Websites in Malware Attack, Cybersecurity Group Says

A hacking group believed to be Chinese state-sponsored has compromised two websites with ties to the Tibetan community in an attack meant to install malware on computers.

November 13, 2024

Citrix, Fortinet Patch High-Severity Vulnerabilities

Citrix and Fortinet have released patches for multiple vulnerabilities, including high-severity bugs in NetScaler and FortiOS.

November 13, 2024

ICS Patch Tuesday: Security Advisories Released by CISA, Schneider, Siemens, Rockwell

CISA, Schneider Electric, Siemens, and Rockwell Automation have released November 2024 Patch Tuesday security advisories.

November 13, 2024

China’s Volt Typhoon Rebuilding Botnet

Security researchers say the botnet created by China’s Volt Typhoon re-emerged recently, leveraging the same core infrastructure and techniques.

November 13, 2024

Pentagon Secrets Leaker Jack Teixeira Sentenced to 15 Years in Prison by a Federal Judge

Teixeira pleaded guilty in March to six counts of the willful retention and transmission of national defense information under the Espionage Act.

November 12, 2024

Microsoft Confirms Zero-Day Exploitation of Task Scheduler Flaw

Patch Tuesday: Microsoft patches 90 security flaws across the Windows ecosystem and warns of zero-day exploitation and code execution risks.

November 12, 2024

Patch Tuesday: Critical Flaws in Adobe Commerce, Photoshop, InDesign, Illustrator

Adobe patches critical-severity bugs in multiple products, including the Adobe Commerce and Magento Open Source platforms.

November 12, 2024

GitLoker Strikes Again: New “Goissue” Tool Targets GitHub Developers and Corporate Supply Chains

GoIssue is a new tool for cybercriminals that allows attackers to extract email addresses from GitHub profiles and send bulk emails to users.

November 12, 2024

Ahold Delhaize Cybersecurity Incident Impacts Giant Food, Hannaford

Cybersecurity incident impacts Giant Food, Hannaford, and other Ahold Delhaize USA brands, including pharmacies and e-commerce services.

November 12, 2024

SAP Patches High-Severity Vulnerability in Web Dispatcher

SAP has released eight new security notes on November 2024 patch day, including one addressing a high-severity vulnerability in Web Dispatcher.

November 12, 2024

SECURITYWEEK NETWORK:

ICS:

Latest News

Unpatched Flaw in Legacy D-Link NAS Devices Exploited Days After Disclosure

Google Cloud to Assign CVEs to Critical Vulnerabilities

Citrix, Cisco, Fortinet Zero-Days Among 2023’s Most Exploited Vulnerabilities

Chipmaker Patch Tuesday: Intel Publishes 44 and AMD Publishes 8 New Advisories

Ivanti Patches 50 Vulnerabilities Across Several Products

High-Severity Vulnerabilities Patched in Zoom, Chrome

Chinese Hackers Target Tibetan Websites in Malware Attack, Cybersecurity Group Says

Citrix, Fortinet Patch High-Severity Vulnerabilities

ICS Patch Tuesday: Security Advisories Released by CISA, Schneider, Siemens, Rockwell

China’s Volt Typhoon Rebuilding Botnet

Pentagon Secrets Leaker Jack Teixeira Sentenced to 15 Years in Prison by a Federal Judge

Microsoft Confirms Zero-Day Exploitation of Task Scheduler Flaw

Patch Tuesday: Critical Flaws in Adobe Commerce, Photoshop, InDesign, Illustrator

GitLoker Strikes Again: New “Goissue” Tool Targets GitHub Developers and Corporate Supply Chains

Ahold Delhaize Cybersecurity Incident Impacts Giant Food, Hannaford

SAP Patches High-Severity Vulnerability in Web Dispatcher

Application Security

Application Security

Can CISOs Trust Their Applications? TrustCloud Wants to Replace the Questionnaire

Application Security

Tech Coalition ‘Athena’ Targets OSS Vulnerabilities Ahead of Disclosure

Application Security

After AI Reaches Production: 12 Ways Security Teams Can Take Control

Application Security

New Platform Uses Cryptographic Invisibility to Protect AI-Built Applications

Cloud Security

Artificial Intelligence

Google Addresses Vertex Security Issues After Researchers Weaponize AI Agents

Application Security

TeamPCP Moves From OSS to AWS Environments

Cloud Security

Cloud Security Startup Native Exits Stealth With $42 Million in Funding

Cloud Security

Wiz Joins Google Cloud as Landmark Acquisition Closes

ICS/OT

ICS/OT

Rockwell Automation Patches Vulnerabilities in ICS Controllers and Software

ICS/OT

Cal Water Investigating Iranian Hackers’ Claims

ICS/OT

Iranian Cyber Group Handala Claims Cal Water Hack

ICS/OT

Siemens Says Desigo CC Files Flagged as Malware by Security Engines

Daily Briefing Newsletter