SecurityWeek

Ilya Sutskever's new company is focused on safely developing “superintelligence” - a reference to AI systems that are smarter than humans.

Pomerium raises $13.75 million in Series A funding for dynamic user identity verification and access management platform.

LockBit appears to once again be the most active ransomware group, but experts believe the hackers may just be inflating their numbers. 

Hundreds of PC and server models may be affected by CVE-2024-0762, a privilege escalation and code execution flaw in Phoenix SecureCore UEFI firmware.

AI model weights govern outputs from the system, but altered or ‘poisoned’, they can make the output erroneous and, in extremis, useless and dangerous.

Enterprise identity company raises new capital from JP Morgan and Hercules Capital as it prepares for an IPO exit.

A threat actor targeting Chinese-speaking victims has been using the SquidLoader malware loader in recent attacks.

Atlassian has released Confluence, Crucible, and Jira updates to address multiple high-severity vulnerabilities.

Post-quantum cryptography (PQC) company PQShield has raised $37 million in Series B funding for its quantum-safe cryptography solutions.

A statewide outage of the Massachusetts 911 system was the result of a firewall that blocked calls from reaching emergency responders.

Roundup of the cybersecurity-related merger and acquisition (M&A) deals announced in the first half of June 2024.

National passenger railroad company Amtrak is notifying customers that hackers have breached their Guest Rewards Accounts.

Government agencies in the US, New Zealand, and Canada have published new guidance on improving network security.

CISA has notified RAD after finding a PoC exploit targeting a high-severity vulnerability in an outdated industrial switch.

As organizations grapple with the implications of cybersecurity on their bottom line and reputation, the question of whether the CISO role is worth the inherent risks looms large.

Google has released a Chrome 126 security update with six fixes, including four for externally reported high-severity flaws.

AMD has launched an investigation after a notorious hacker announced selling sensitive data allegedly belonging to the company.

Sagar Steven Singh and Nicholas Ceraolo pleaded guilty to hacking a database maintained by a US federal law enforcement agency.

The BadSpace backdoor is being distributed via drive-by attacks involving infected websites and JavaScript downloaders.

Entro’s platform is designed to bring order to the increasingly chaotic management of non-human identities.