SecurityWeek

Excelsior Orthopaedics says the information of roughly 357,000 patients and employees was stolen in a June 2024 data breach.

Google Cloud’s Mandiant has linked the exploitation of CVE-2025-0282, a new Ivanti VPN zero-day, to Chinese cyberspies.

Ivanti confirms zero-day exploitation of a remotely exploitable code execution flaw in its Connect Security product line.

After its CEO was arrested last summer, Telegram has been increasingly sharing user data at the request of authorities.

Japan says China-linked cyberattacks were systematic attacks with an aim of stealing data on Japanese national security and advanced technology.

Consolidating from an overly burdensome number of point solutions to an easier to manage platform-based approach brings with it a number of benefits.

Casio has completed its investigation into the data breach caused by a recent ransomware attack and found that thousands of individuals are impacted.

Cybersecurity firms raised $9.5 billion in over 300 funding rounds in 2024, with Wiz scoring the largest investment at $1 billion.

The insider threat problem will worsen, and the solutions will widen, in the age of generative-AI.

The US government is rolling out a consumer labeling system designed to help Americans pick smart devices that are less vulnerable to hacking.

CISA says two recently disclosed path traversal vulnerabilities in the Mitel MiCollab collaboration platform have been exploited in attacks.

Chrome and Firefox updates released this week resolve high-severity vulnerabilities in the two popular browsers.

This year’s first batch of monthly security updates for Android resolves 36 vulnerabilities, including critical remote code execution flaws.

The deal includes certain Phylum assets, including its malicious package analysis, detection, and mitigation technology. 

The only way to advance AI safety is to increase human interactions, human values and societal governance to promote a reinforced human feedback loop, much like we do with traditional AI training methods.

DataTribe said Joyce will be a venture partner tasked with finding entrepreneurs developing new and emerging technologies for cyber defense.

The U.S. Defense Department added dozens of Chinese companies, including Tencent, SenseTime and battery maker CATL, to a list of companies it says have ties to China’s military.

MediaTek, HPE and Dell release advisories to inform customers about potentially serious vulnerabilities found and patched in their products.

Washington State Attorney General Bob Ferguson has filed a lawsuit against T-Mobile over a 2021 data breach that impacted over 76 million consumers.

CISA says no federal agencies other than Treasury were impacted by the recent compromise of a BeyondTrust cloud-based service.