SecurityWeek

Two Polish government websites were hacked Wednesday and used briefly to spread false information about a non-existent radioactive threat, in what a Polish government official said had the hallmarks of a Russian cyberattack.

China-linked cyber-espionage group Mustang Panda is targeting telecommunications companies in Asia, Europe, and the United States for espionage purposes, according to a warning from security researchers at McAfee.

I’ve always enjoyed Adam and Jamie’s approach on the Discovery Channel show MythBusters. One by one, Adam and Jamie have taken commonly held, but seldom challenged, beliefs and tested their validity. What I like most about the show is its scientific rigor. Adam and Jamie approach testing each belief as a controlled experiment - trying their hardest to get as accurate an evaluation as possible.

Vulnerability remediation orchestration provider Vulcan Cyber today announced that it has raised $21 million in Series B funding. To date, the company has raised $35 million.

Over the past month, a variant of the Mirai botnet was observed targeting new security vulnerabilities within hours after they had been disclosed publicly, researchers with Palo Alto Networks reveal.

A Florida teenager accused of masterminding a Twitter hack of celebrity accounts in a crypto currency scheme has been sentenced to three years in juvenile prison in a plea agreement, officials said.

Email security company Mimecast on Tuesday said it completed its forensic investigation into the impact of the SolarWinds supply chain attack, and revealed that the threat actor managed to steal some source code.

San Francisco-based cyber insurance and security company Coalition has achieved unicorn status after raising $175 million at a $1.75 billion valuation.

An alert issued on Tuesday by the FBI warns about an increase in PYSA ransomware attacks on education institutions in the United States and the United Kingdom.

Network and asset discovery provider Rumble this week announced that it has raised $5 million in VC funding. The round was led by Jon Sakoda and Dan Nguyen-Huu at Cisco-backed Decibel Partners.

Russian authorities said Tuesday they would block Twitter in a month if it doesn’t take steps to remove banned content, a move that escalates the Russian government’s drawn-out standoff with social media platforms that have played a major role in amplifying dissent in Russia.

Threat Intelligence Firm Recorded Future Buys Company Started by Former Employee in $52 Million Deal

Twitter on Monday announced that users with two-factor authentication (2FA) enabled can now use multiple security keys to protect their accounts.

FIDO-certified multi-factor authentication provider LoginID this week announced that it raised $6 million in seed funding.

Argon, an Israel-based company that provides solutions for securing the software development process, on Tuesday announced emerging from stealth mode.

Roughly 80,000 Exchange servers have yet to receive patches for the actively exploited vulnerabilities, Microsoft says.

Swiss authorities on Monday confirmed a police raid at the home of a Swiss software engineer who took credit for helping to break into a U.S. security-camera company’s online networks, part of what the activist hacker cited as an effort to raise awareness about the dangers of mass surveillance.

For the third time this year, Google has shipped an urgent fix to block in-the-wild zero-day attacks hitting its flagship Chrome browser.

Most security agencies fail to properly sanitize Portable Document Format (PDF) files before publishing them, thus exposing potentially sensitive information and opening the door for attacks, researchers have discovered.