SecurityWeek

Palo Alto Networks (NYSE: PANW) announced on Monday that it has agreed to acquire incident response and digital forensics consulting firm The Crypsis Group.

Video app TikTok said on Monday it had filed a lawsuit challenging the US government's crackdown on the popular Chinese-owned platform, which Washington accuses of being a national security threat

Researchers at developer security company Snyk claim to have identified malicious behavior in an advertising SDK that is present in more than 1,200 iOS applications offered in the Apple App Store.

The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) have issued an alert to warn of a voice phishing (vishing) campaign targeting the employees of multiple organizations.

Freepik Company, the organization behind the Freepik and Flaticon websites, has disclosed a data breach that impacted approximately 8.3 million of their users.

Video app TikTok said Saturday it will challenge in court a Trump administration crackdown on the popular Chinese-owned platform, which Washington accuses of being a national security threat.

Attorney General William Barr said he would be “vehemently opposed” to any attempt to pardon former National Security Agency contractor Edward Snowden, after the president suggested he might consider it.

Recent Dharma ransomware attacks show that more Iranian hackers have started to engage in financially-motivated operations, threat hunting firm Group-IB reports.

Trend Micro’s Zero Day Initiative (ZDI) this week celebrated its 15-year anniversary and the company has shared some “crazy” and “odd” stories with SecurityWeek.

Microsoft this week announced that the Transport Layer Security (TLS) 1.3 protocol is now enabled by default in Windows 10 Insider Preview builds, and that it will be rolled out to all Windows 10 systems.

Adobe has made available in open source a tool designed to identify randomly generated strings in any plain text.Dubbed Stringlifier, the tool was written in Python and leverages machine learning to differentiate random character sequences from normal text sequences.

Mozilla announced on Thursday that it has expanded its bug bounty program with a new category that focuses on bypass methods for the exploit mitigations, security features and defense-in-depth measures in Firefox.

A top US official for election security said his biggest worry is the possibility of outside interference in a likely slow count of the votes the day after the November 3 presidential contest.

The University of Utah on Thursday revealed that it paid approximately $457,000 to ransomware operators after servers in its College of Social and Behavioral Science (CSBS) were compromised.

The CERT Coordination Center (CERT/CC) at Carnegie Mellon University has published alerts on several vulnerabilities that impact Diebold Nixdorf ProCash and NCR SelfServ automated teller machines (ATMs).

The U.S. Department of Justice announced on Thursday that former Uber Chief Security Officer (CSO) Joe Sullivan has been charged over his alleged role in the cover-up of the 2016 data breach that resulted in the information of millions of Uber drivers and users getting stolen by hackers.

A newly discovered sophisticated peer-to-peer (P2P) botnet targeting SSH servers is using a proprietary protocol, Guardicore Labs security researchers explain.

Google released a patch for an email spoofing vulnerability affecting Gmail and G Suite seven hours after it was publicly disclosed, but the tech giant knew about the flaw since April.

European Union privacy regulators are wrangling over the penalty Ireland’s data privacy watchdog was set to issue Twitter for a data breach, pushing back the case’s long awaited conclusion under the bloc’s tough new data privacy rules.

Pentest-as-a-Service (PtaaS) company Cobalt announced on Thursday that it has raised $29 million in a Series B funding round.