SecurityWeek

As SecOps Teams Increasingly Take on Proactive Risk Reduction, Posture Fatigue Will Grow 

Cybersecurity company Fortinet has acquired Secure Access Service Edge (SASE) cloud provider OPAQ Networks.

Senior US Democrats have demanded an urgent intelligence briefing for lawmakers from the FBI over what they said was a concerted foreign campaign to spread disinformation to interfere in November's elections.

A threat actor believed to be working for the Iranian government recently launched another round of attacks on Israel’s water sector, and a source tells SecurityWeek that the attackers used vulnerable cellular equipment as a point of entry.

The Emotet Trojan has resumed activity after more than five months of absence from the threat landscape, security researchers warn.

Industrial cybersecurity solutions provider Claroty announced on Monday that Yaniv Vardi has been named the company’s chief executive officer.

A Cypriot national was extradited to the United States last week to face charges related to various computer intrusions, including the hacking into Ripoff Report.

Cloud software provider Blackbaud has admitted that it paid cybercriminals to regain control of data following a ransomware attack in May 2020.The company, which is known for its fundraising suites aimed at educational institutions and charities, offers a diverse portfolio of management and payment services to help process donations and fundraises.

British Foreign Secretary Dominic Raab said on Sunday he was "absolutely confident" in allegations by the UK and its allies that Russia targeted labs conducting coronavirus research, branding the behaviour "outrageous and reprehensible".

The developers of the Mac malware named ThiefQuest continue to improve their creation and researchers noticed that the latest versions of the threat no longer include ransomware functionality.

Social media platform Twitter has confirmed that attackers downloaded user data from some of the accounts compromised in last week’s security incident.

Security researchers at ESET have identified a new campaign targeting Mac users with trojanized cryptocurrency trading apps designed to deliver the GMERA malware.

Germany's highest court on Friday said security services had too much unfettered access to people's online data and ordered legislation to be revised to set higher hurdles.

The US Cybersecurity and Infrastructure Security Agency (CISA) has instructed government agencies to immediately address a vulnerability affecting Windows DNS servers.

Virtual private network service ExpressVPN this week announced the launch of a bug bounty program managed by crowdsourced security testing platform Bugcrowd.

Apple this week released patches to address numerous vulnerabilities across its products, including five arbitrary code execution issues affecting the audio components used by its operating systems.The five bugs were found to affect macOS Catalina, with four of them also impacting iOS and iPadOS, tvOS, and watchOS.

Several high-profile Twitter accounts were targeted recently in an attack that involved the hackers accessing internal Twitter systems and tools.

Someone has been scanning the internet in search of SAP systems affected by the recently disclosed vulnerability dubbed RECON. The scanning activity started just as a researcher released a proof-of-concept (PoC) exploit.

Approximately 130 accounts were targeted during the recent attack on Twitter, the social media giant has revealed.