SecurityWeek

Oracle has released 318 new security patches to address roughly 200 unique CVEs as part of its January 2025 Critical Patch Update.

Cloudflare saw a 53% increase in DDoS attack frequency last year, when it blocked a record-breaking 5.6 Tbps attack.

ABB has patched building control product vulnerabilities that can expose many facilities to remote attacks.

Part entrepreneurial adventure, part security history, Bernardo Quintero's 'Infected' documents how the VirusTotal side project became a threat-intel cornerstone.

President Donald Trump has pardoned Ross Ulbricht, the founder of Silk Road, an underground website for selling drugs.

New York/Israel startup selling threat detection, investigation, and response tools raised $30 million in a Series B led by SYN Ventures. 

Sophos warns of two ransomware groups abusing Microsoft 365 services and default configurations to contact internal enterprise users.

SecurityWeek's Cyber Insights 2025 examines expert opinions to gain their opinions on what to expect in Attack Surface Management in 2025.

PowerSchool says the personal information of students and educators was stolen in a December 2024 data breach.

Marco Raquan Honesty has pleaded guilty to his roles in several fraud schemes, including smishing, identity theft, and bank account takeover.

Social media security startup Spikerz has raised $7 million in a seed funding round led by Disruptive AI.

Kaspersky has disclosed the details of over a dozen vulnerabilities discovered in a Mercedes-Benz MBUX infotainment system. 

The FCC adopts declaratory ruling requiring telecommunications providers to secure their networks against nation-states and other threats.

CISA and the FBI have updated their guidance regarding risky software security bad practices based on feedback received from the public.

HPE is investigating claims by the hacker IntelBroker, who is offering to sell source code and other data allegedly stolen from the tech giant.

TikTok restored service to users in the United States on Sunday just hours after the popular video-sharing platform went dark in response to a federal ban.

The Treasury Department announced sanctions in connection with a massive Chinese hack of American telecommunications companies and a breach of its own computer network.

TikTok said it will have to “go dark” this weekend unless Biden assures the company it won’t enforce a shutdown after the Supreme Court upheld the ban.

CISA and other agencies call to action for the US government to take steps to close the software understanding gap.

Noteworthy stories that might have slipped under the radar: several multi-million dollar settlements, CrowdStrike-themed phishing emails, and MITRE launches D3FEND 1.0.