Latest News

The SEC announces penalties against Unisys, Avaya, Check Point and Mimecast for downplaying the impact of the SolarWinds Orion hack.

Terrance Michael Ciszek is charged with buying stolen account credentials from the Genesis Market dark web marketplace.

Stream.Security (formerly Lightlytics) has raised a total of $55 million since launching in 2020 with a cloud data security product.

Premier Industrial Cybersecurity Conference offers 80+ sessions and hands-on training to tackle critical infrastructure cyber threats.

A zero-day vulnerability in Samsung mobile processors has been abused as part of an exploit chain for arbitrary code execution.

Critical and high-severity vulnerabilities that can lead to full device compromise have been found in mbNET.mini and Helmholz industrial routers. 

The Cicada3301 ransomware shows multiple similarities with BlackCat and is believed to mark the reemergence of the threat.

Latrodectus malware has been increasingly used by cybercriminals, with recent campaigns targeting the financial, automotive and healthcare sectors. 

New malicious campaign suggests the Bumblebee malware loader might be resurfacing following the May 2024 law enforcement takedown.

Palo Alto Networks has added new remote access, virtual patching and firewall capabilities to its OT Security solution.

Johnson & Johnson has disclosed a data breach impacting the personal information of thousands of people.

For the second time in as many months, VMware patches a remote code execution vulnerability first exploited at a Chinese hacking contest in June.

Sophos plans to integrate Secureworks Taegis XDR platform into its MDR services across small, mid-sized, and enterprise segments. 

ESET has launched an investigation after a product distributor in Israel sent out emails delivering wiper malware.

More than 460 products and services are covered under Google Cloud’s new VRP, with 140 eligible for top tier bug bounty rewards.