SecurityWeek

Security researchers detail vulnerabilities in Kia owners’ portal that allowed them to control vehicles remotely.

Users continue to flame Kaspersky and Pango Group as the automatic, forced transition to UltraAV gradually progresses.

A researcher has disclosed the details of an unpatched vulnerability that was expected to pose a serious threat to many Linux systems.

Social media platform X published its first transparency report since the company was purchased by Elon Musk.

Join the webinar to gain insights and learn actionable steps to enhance your organization's data security and resilience.

Nvidia confirms risk of code execution, denial of service, escalation of privileges, information disclosure, and data tampering. CVSS 9/10.

Critical and high-severity vulnerabilities that can be exploited for DoS attacks and remote code execution have been patched in OpenPLC.

Cisco has released patches for seven high-severity vulnerabilities affecting products running IOS and IOS XE software.

Memory safety bugs in Android have decreased significantly as old code matures and new code uses memory-safe languages.

An investigation has been launched into a Wi-Fi service hack that has impacted many train stations in the United Kingdom.

A malicious campaign is targeting transportation and logistics organizations in North America with various malware families.

As organizations have fortified their defenses against direct network attacks, hackers have shifted their focus to exploiting vulnerabilities in the supply chain to gain backdoor access to systems.

Unsophisticated methods can still be used to hack ICS/OT — even so, many cyberattack claims are likely exaggerated. 

Mira Murati, who served a few days as its interim CEO during a period of turmoil last year, said she’s leaving the artificial intelligence company.

A clear, consistent vision, along with reliable experts, are the two essential ingredients for startup founders to achieve success—both in cyber and beyond.

Tamnoon has raised $12 million in Series A funding for its Managed Cloud Security Remediation service.

HiddenLayer has discovered that Google Gemini for Workspace is prone to indirect prompt injection attacks.

Joe Grand is the epitome of a hacker. Childhood curiosity followed by mischief-making tipping over into illegal behavior before developing into a responsible good faith hacker.

Application security and vulnerability management platform DefectDojo has raised $7 million in Series A funding.

A researcher analyzing building access control vulnerabilities says a US healthcare facility has yet to patch security holes one year after being notified.