SecurityWeek

Compyl has raised $12 million in a Series A funding round that will be invested in go-to-market initiatives, hirings, and GRC platform expansion.

Industrial giant Honeywell has published its 2025 Cybersecurity Threat Report with information on the latest trends.

Learn why your security controls matter more than theoretical risk scores and how exposure validation helps slash massive patch lists down to the few vulnerabilities that truly demand action.

ThreatSpike will use the fresh funding to expand its engineering, go-to-market, and security operations teams.

Victoria’s Secret is postponing the release of its quarterly earnings following a security breach that disrupted the popular lingerie brand’s corporate operations.

Threat actors steal personal information from thenorthface.com user accounts in a recent credential stuffing campaign.

Researchers from Forescout have analyzed the prevalence of internet-exposed solar power devices and shared a list of the top vendors and devices.

Trustifi has raised $25 million in Series A funding to accelerate its product roadmap and go-to-market initiatives.

The UK’s 2025 Strategic Defence Review outlines a unified approach to modern warfare, integrating cyber, AI, and electromagnetic capabilities across military domains.

Mikko Hypponen has joined the Finnish anti-drone company Sensofusion as Chief Research Officer after three decades of fighting malware.

With crime-as-a-service lowering the barrier to entry and prosecution lagging behind, enterprise security teams must rethink their strategies to detect and disrupt scams at scale.

A critical command execution vulnerability has been found by a researcher in Instantel Micromate monitoring units. 

Microsegmentation provider Zero Networks has raised $55 million in a Series C funding round led by Highland Europe.

The incident occurred in March and impacted the personally identifiable information of approximately 4.65% of MainStreet Bancshares’ customers.

The latest Android updates fix vulnerabilities in Runtime, Framework, System, and third-party components of the mobile OS.

Covered organizations in Australia are now required to report ransomware and other cyber extortion payments within three days.

Reported by the Google Threat Analysis Group, the vulnerability might have been exploited by commercial spyware.

Microsoft and CrowdStrike are running a project that aims to align threat actor names, and Google and Palo Alto Networks will also contribute.

Luxury brand Cartier disclosed a data breach in which an unauthorized party gained access to its systems and obtained some client information.

Cryptocurrency mining operation hits exposed Consul dashboards, Docker Engine APIs and Gitea code-hosting instances to push Monero miner.