SecurityWeek

Hackers could exploit Lamassu Douro ATM vulnerabilities to take over devices, steal bitcoin from users.

AI testing platform RagaAI raises $4.7 million in seed funding to help identify AI issues and improve security and reliability.

The latest Splunk Enterprise releases patch multiple vulnerabilities, including a high-severity flaw in the Windows version.

AerCap, the largest aviation leasing company in the world, was hit by a ransomware attack on January 17th.

Israeli late-stage startup Silverfort raises a whopping $116 million in new financing to scale its ambitions in the identity security space.

San Francisco startup banks $14 million in Series A funding led by prominent venture capital outfit Andreesen Horowitz (a16z).

SEC says hackers used SIM swapping to take over its X (formerly Twitter) account on January 9.

Swedish government agencies and shops were disrupted by a ransomware attack believed to have been carried out by Russian hackers.

F5 names Samir Sherif as Chief Information Security Officer (CISO), taking over the role from Gail Coury who will retire March 1st.

The LockBit ransomware group claims to have stolen hundreds of gigabytes of data from US sandwich chain Subway.

Russian national sanctioned by the Australian government for his role in the Medibank attack impacting more than 10 million Australians.

Apple pushes out fresh versions of its iOS and macOS platforms to fix WebKit vulnerabilities being exploited as zero-day in the wild.

SecurityWeek interviews a wide spectrum of security experts on AI-driven cybersecurity use-cases that are worth immediate attention.

The Atlassian Confluence vulnerability CVE-2023-22527 is being exploited in the wild just days after it was disclosed. 

Lending giant LoanDepot (NYSE: LDI) said that roughly 16.6 million individuals were impacted as a result of a ransomware attack.

Varonis finds one vulnerability and three attack methods that can be used to obtain NTLM hashes via Outlook and two Windows programs.

Conor Brian Fitzpatrick, the owner of the cybercrime website BreachForums, was sentenced to time served and supervised release.

CVE-2023-34048, a vCenter Server vulnerability patched in October 2023, had been exploited as zero-day for a year and a half.

France's data protection watchdog fines Yahoo 10 million euros for not respecting users' refusals of internet-tracking "cookies"

Noteworthy stories that might have slipped under the radar: WhatsApp privacy issue remains unpatched, spying via tablet ambient light sensors, and the Bigpanzi botnet.