SecurityWeek

Bankrupt and out of financing options, IronNet has terminated all employees and plan to file for Chapter 7 protection.

AWS says an internal threat intel decoy system called MadPot has successfully trapped nation state-backed APTs like Volt Typhoon and Sandworm.

Nexusflow scores funding to build an open-source LLM that can deliver high accuracy when retrieving data from multiple security sources.

Noteworthy stories that might have slipped under the radar: new RSA encryption attack, Meta’s AI privacy safeguards, and ShinyHunters hackers’ guilty plea. 

A group of academic researchers devised a technique to extract sounds from still images captured using smartphone cameras with rolling shutter and movable lens structures.

The NSA is starting an artificial intelligence security center — a crucial mission as AI capabilities are increasingly acquired, developed and integrated into U.S. defense and intelligence systems.

CISA has added CVE-2018-14667, an old critical JBoss RichFaces flaw to its known exploited vulnerabilities catalog.

Hackers have set their sights on CVE-2023-34468, an RCE vulnerability in Apache NiFi that impacts thousands of organizations. 

Gaps in Cloudflare’s security controls allow users to bypass protections and target others from the platform itself.

A sharply divided privacy oversight board is recommending that the FBI and other agencies be required to get court approval before reviewing the communications of U.S. citizens collected through a secretive foreign surveillance program.

NIST has published the final version of the SP 800-82 Revision 3 guide to operational technology (OT) security.

The FBI warns organizations of cyberattacks that employ multiple ransomware families or deploy dormant data wipers.