Latest News

Whistleblowers: Should CISOs Consider Them a Friend or Foe?

Are whistleblowers traitors to the company, a danger to corporate brand image, and a form of insider threat? Or are they an early warning safety valve that can be used to strengthen cybersecurity and compliance?

October 30, 2023

Biden Wants to Move Fast on AI Safeguards and Will Sign an Executive Order to Address His Concerns

President Joe Biden on Monday will sign a sweeping executive order to guide the development of artificial intelligence — requiring industry to develop safety and security standards, and introducing new consumer protections.

October 30, 2023

In Other News: Ex-NSA Employee Spying for Russia, EU Threat Landscape, Cyber Education Funding

Noteworthy stories that might have slipped under the radar: Ex-NSA employee spying for Russia, EU threat landscape report, cyber education funding

October 27, 2023

Advanced ‘StripedFly’ Malware With 1 Million Infections Shows Similarities to NSA-Linked Tools

The StripedFly malware has APT-like capabilities, but remained unnoticed for five years, posing as a cryptocurrency miner.

October 27, 2023

F5 Warns of Critical Remote Code Execution Vulnerability in BIG-IP

A critical-severity vulnerability in F5 BIG-IP CVE-2023-46747 allows unauthenticated attackers to execute code remotely.

October 27, 2023

UN Chief Appoints 39-Member Panel to Advise on International Governance of Artificial Intelligence

U.N. Secretary-General António Guterres assembled a global advisory panel to report on international governance of artificial intelligence and its risks, challenges and key opportunities.

October 27, 2023

Critical Mirth Connect Vulnerability Could Expose Sensitive Healthcare Data

Mirth Connect versions prior to 4.4.1 are vulnerable to CVE-2023-43208, a bypass for an RCE vulnerability.

October 26, 2023

Hackers Earn $350k on Second Day at Pwn2Own Toronto 2023

Smart speakers, printers, routers, NAS devices, and mobile phones were hacked on the second day at Pwn2Own Toronto 2023.

October 26, 2023

AI Security Firm Cranium Raises $25 Million

AI cybersecurity firm Cranium has raised $25 million in Series A funding, which brings the total investment in the company to $32 million.

October 26, 2023

Key Learnings from “Big Game” Ransomware Campaigns

There are key steps every organization should take to leverage threat and event data across the lifecycle of a cyber incident.

October 26, 2023

Kansas Court System Down Nearly 2 Weeks in ‘Security Incident’ That Has Hallmarks of Ransomware

Kansas is calling a massive computer outage that’s kept most of the state’s courts offline for 2 weeks a “security incident” and experts say it's likely ransomware.

October 26, 2023

CISA, HHS Release Cybersecurity Healthcare Toolkit

CISA and the HHS have released resources for healthcare and public health organizations to improve their security.

October 26, 2023

iLeakage Attack Exploits Safari to Steal Sensitive Data From Macs, iPhones

New iLeakage side-channel speculative execution attack exploits Safari to steal sensitive information from Macs and iPhones.

October 26, 2023

Google Announces Bug Bounty Program and Other Initiatives to Secure AI

Google announces a bug bounty program and other initiatives for increasing the safety and security of AI.

October 26, 2023

Japanese Watchmaking Giant Seiko Confirms Personal Data Stolen in Ransomware Attack

Japanese watchmaking giant Seiko has confirmed that personal information was stolen in a recent ransomware attack.

October 26, 2023

Weapons Systems Provide Valuable Lessons for ICS/OT Security

Cybersecurity techniques and penetration testing used in the field of weapons systems can provide valuable lessons for ICS/OT security.

October 26, 2023

SECURITYWEEK NETWORK:

ICS:

Latest News

Whistleblowers: Should CISOs Consider Them a Friend or Foe?

Biden Wants to Move Fast on AI Safeguards and Will Sign an Executive Order to Address His Concerns

In Other News: Ex-NSA Employee Spying for Russia, EU Threat Landscape, Cyber Education Funding

Advanced ‘StripedFly’ Malware With 1 Million Infections Shows Similarities to NSA-Linked Tools

F5 Warns of Critical Remote Code Execution Vulnerability in BIG-IP

UN Chief Appoints 39-Member Panel to Advise on International Governance of Artificial Intelligence

Critical Mirth Connect Vulnerability Could Expose Sensitive Healthcare Data

Hackers Earn $350k on Second Day at Pwn2Own Toronto 2023

AI Security Firm Cranium Raises $25 Million

Key Learnings from “Big Game” Ransomware Campaigns

Kansas Court System Down Nearly 2 Weeks in ‘Security Incident’ That Has Hallmarks of Ransomware

CISA, HHS Release Cybersecurity Healthcare Toolkit

iLeakage Attack Exploits Safari to Steal Sensitive Data From Macs, iPhones

Google Announces Bug Bounty Program and Other Initiatives to Secure AI

Japanese Watchmaking Giant Seiko Confirms Personal Data Stolen in Ransomware Attack

Weapons Systems Provide Valuable Lessons for ICS/OT Security

Application Security

Application Security

Can CISOs Trust Their Applications? TrustCloud Wants to Replace the Questionnaire

Application Security

Tech Coalition ‘Athena’ Targets OSS Vulnerabilities Ahead of Disclosure

Application Security

After AI Reaches Production: 12 Ways Security Teams Can Take Control

Application Security

New Platform Uses Cryptographic Invisibility to Protect AI-Built Applications

Cloud Security

Artificial Intelligence

Google Addresses Vertex Security Issues After Researchers Weaponize AI Agents

Application Security

TeamPCP Moves From OSS to AWS Environments

Cloud Security

Cloud Security Startup Native Exits Stealth With $42 Million in Funding

Cloud Security

Wiz Joins Google Cloud as Landmark Acquisition Closes

ICS/OT

Funding/M&A

Accenture to Acquire Majority Stake in Dragos, All of runZero, NetRise in $4.1 Billion OT Cybersecurity Push

ICS/OT

Rockwell Automation Patches Vulnerabilities in ICS Controllers and Software

ICS/OT

Cal Water Investigating Iranian Hackers’ Claims

ICS/OT

Iranian Cyber Group Handala Claims Cal Water Hack

Daily Briefing Newsletter