SecurityWeek

Prosecutors want a Massachusetts Air National Guard member who leaked highly classified military documents to serve 17 years in prison.

CyberPanel vulnerabilities have been exploited to compromise thousands of instances as part of ransomware attacks.

MIND has emerged from stealth mode with a data loss prevention (DLP) solution and $11 million in seed funding.

Microsoft says a new spear-phishing campaign by Russia’s Midnight Blizzard uses RDP files, a new vector for this threat group.

The FakeCall Android banking trojan now employs advanced evasion tactics and expanded surveillance capabilities, posing heightened risks for banks and enterprises.

Voting system passwords were mistakenly put on the Colorado Secretary of State’s website for several months before being spotted and taken down.

Version 2.5 of WhiteRabbitNeo is designed to think like a seasoned red team expert, capable of identifying and exploiting vulnerabilities with remarkable speed and precision.

While there are similar security challenges that parallel traditional security, we must understand that AI requires new ways to approach security.

A newer version of the LightSpy malware for iOS includes over a dozen new plugins, many with destructive capabilities.

Google has patched CVE-2024-10487, a critical Chrome vulnerability, and Mozilla has patched high-severity flaws in Firefox.

Synology, QNAP and TrueNAS have started patching and mitigating the vulnerabilities exploited recently at Pwn2Own Ireland 2024.

Prosecutors say the data of at least 800,000 Italians was compromised in breaches dating from 2022 by a private investigative agency.

Enterprise cybersecurity giant Proofpoint is acquiring data security posture management (DSPM) company Normalyze. 

Authorities announce server shutdowns, domain seizures, and arrests in RedLine and Meta infostealers takedown operation.

Agentic AI security startup Zenity has raised $38 million in a Series B funding round led by Third Point Ventures and DTCP.

Le Monde found that some U.S. Secret Service agents use the Strava fitness app, including in recent weeks after two assassination attempts on Trump.

CISOs need an AI visibility and KPI plan that supports a “just right” balance to enable optimal security and productivity outcomes.

Canada says multiple government and critical infrastructure organizations have been targeted in Chinese reconnaissance scans.

Apple has released security updates for iOS 18 and macOS Sequoia 15 to address dozens of vulnerabilities.

New jailbreak technique tricked ChatGPT into generating Python exploits and a malicious SQL injection tool.