SecurityWeek

Microsoft's security response team pushed out documentation for almost 90 vulnerabilities across Windows and OS components and marked several flaws in the actively exploited category.

Patch Tuesday: Adobe patches 72 security vulnerabilities and warns that Windows and macOS users are at risk of code execution, memory leaks, and denial-of-service attacks.

Maksim Silnikau was extradited to the US to face charges for roles in the distribution of the Angler exploit kit, malware, and the Ransom Cartel ransomware.

SAP has released 25 security notes on August 2024 Security Patch Day, including for critical vulnerabilities in BusinessObjects and Build Apps.

While ZTNA can be deployed independently, it is an integral component of the SASE architecture as well.

SecurityWeek speaks to Michael Osborne, CTO of IBM Quantum Safe, for a better understanding of the need for and principles of quantum safe cryptography.

Australian gold mining company Evolution Mining believes it was able to contain a ransomware attack targeting its IT systems last week.

Elon Musk says a cyberattack impacted a livestream interview with US Presidential candidate Donald Trump on the X social media platform.

Many AMD CPUs are affected by the new Sinkclose vulnerability, but the chipmaker noted that the flaw is not easy to exploit.

Law enforcement agencies in the US, Germany, and the UK have disrupted the Radar/Dispossessor ransomware infrastructure.

The FBI is investigating allegations that sensitive documents from Donald Trump’s presidential campaign were stolen in a cyber intrusion.

Law enforcement authorities in the U.S. have arrested a Tennessee man accused of running a “laptop farm” that helped North Korean IT workers secure remote jobs at American companies.

SafeBreach identified 10 vulnerabilities in Google Quick Share and devised a remote code execution chain targeting the file sharing utility for Windows.

The vulnerabilities, patched in OpenVPN 2.6.10, expose users on the Windows platform to remote code execution attacks.

Signal uses end-to-end encryption, making it difficult for the Russian government to intercept communications.

The personal and health information of students, staff, faculty, and parents was compromised in a data breach at East Valley Institute of Technology.

Hundreds of companies and organizations showcased their products and services last week at the 2024 edition of the Black Hat conference in Las Vegas.

The Federal Contractor Cybersecurity Vulnerability Reduction Act of 2024 would require federal contractors to adhere to NIST’s vulnerability disclosure guidelines.

A global deal on the criminal use of computer technology is moving ahead despite worries it will let governments around the world violate human rights.

Trump campaign spokesperson Steven Cheung blamed the hack on “foreign sources hostile to the United States.”