CONFERENCE Cyber AI & Automation Summit - Watch Sessions
Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Latest Cybersecurity News

Development firm Chemonics International has disclosed a year-old data breach impacting over 260,000 people.

System Two Security has emerged from stealth mode with a threat detection engineering solution and $7 million in seed funding.

A top White House official said at least eight U.S. telecom firms and dozens of nations have been impacted by a Chinese hacking campaign.

UK telecoms company BT has launched an investigation after the Black Basta ransomware group claimed the theft of 500 Gb of data.

Veeam releases patches for two vulnerabilities in Service Provider Console, including a critical-severity remote code execution bug.

Russia’s Turla hackers hijacked 33 command servers operated by Pakistani hackers who had themselves breached Afghanistan and Indian targets.

Crimenetwork, the largest German-speaking online crime marketplace, has been shut down and one of its admins has been arrested.

Tuskira is working on an AI-powered security mesh promising to integrate fragmented security tools and mitigate risk exposure in real time.

A second vulnerability in Zyxel firewalls has been exploited in Helldown ransomware attacks over the past weeks.

Government agencies issue guidance on Chinese telecoms hacking as US officials say threat actors may have yet to be expelled. 

SecurityWeek’s Cyber AI & Automation Summit takes place on December 4th, as a fully immersive online experience.

People on the Move

Shanta Kohli has been named CMO at Sysdig.

Cloud security firm Sysdig has appointed Sergej Epp as CISO.

F5 has appointed John Maddison as Chief Product Marketing and Technology Alliances Officer.

Video platform Vimeo has appointed Ryan Weeks as Chief Information Security Officer.

LPL Financial has welcomed Renana Friedlich as Chief Information Security Officer.

More People On The Move
China Telecom Hack China Telecom Hack

A top White House official said at least eight U.S. telecom firms and dozens of nations have been impacted by a Chinese hacking campaign.

Russian APT zero-day Russian APT zero-day

Russia’s Turla hackers hijacked 33 command servers operated by Pakistani hackers who had themselves breached Afghanistan and Indian targets.

Solana Web3 supply chain attack Solana Web3 supply chain attack

Supply chain attack leads to decentralized application developers downloading backdoored versions of the Solana Web3.js library.

Top Cybersecurity Headlines

McInerney’s path to becoming a hacker is subtly different to many other hackers. He started as a 22-year old psychology graduate rather than a computer-obsessed 9-year old kid.

The ‘Bootkitty’ prototype UEFI bootkit contains an exploit for LogoFAIL and was created in a South Korea university program.

Russian authorities have reportedly arrested Mikhail Matveev, who is wanted by the US for ransomware attacks against critical infrastructure.

SecurityWeek Industry Experts

More Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Don’t miss this Live Attack Demonstration to learn how hackers operate and gain knowledge to strengthen your defenses against deepfake and BEC fraud.

Register

Learn how to develop a holistic solution that provides you and your team the power to mitigate cyber threats effectively within your OT environment.

Register

Upcoming Cybersecurity Events

The AI Risk Summit brings together security and risk management executives, AI researchers, policy makers, software developers and influential business and government stakeholders. [June 2025, Stay Tuned]

Learn More

SecurityWeek’s CISO Forum Summer Summit & Golf Classic will take place June 25-26 at the Ritz-Carlton, Half Moon Bay, CA

Learn More

Huddle with your peers to measure the costs, benefits, and risks of deploying machine learning and predictive AI tools in the enterprise, the threat from adversarial AI and deepfakes, and preparation for the inevitable compliance and regulations. (December 4, 2024)

Learn More

SecurityWeek’s Identity & Zero Trust Strategies Summit is laser focused on helping organizations to level up their Identity and Zero Trust security strategies. (Oct. 9, 2024)

Learn More

Vulnerabilities

Cybercrime

Drupal.org, home to one of the Web’s most popular Content Management System (CMS) platforms, has issued an alert to community members and reset all account passwords after their infrastructure and security teams discovered malicious files on a server.

An Ohio man was sentenced to one year and a day in prison this week, plus two years of supervised release, after he attempted to extort the University of Pittsburgh. Adding a unique twist to this story, according to court documents, is the fact the man used the moniker of Anonymous in order to make his threats seem more credible.

TAIPEI - Taiwan is preparing to launch a fourth cyberwar unit, a local newspaper reported Wednesday, in response to what it claims is a growing security threat from Chinese hackers. The new unit is scheduled to open on July 1 and will work to counter cyber attacks on government websites, said the Taipei-based newspaper United Evening News.

The problem of tackling Unknown Threats at Scale and the Gulf Between the Proof of Concept and the Real World are Not Unsolvable Problems...

SYDNEY - Using the Internet to spy and steal sensitive data is standard practice by all countries, according to the security chief of controversial Chinese telecoms giant Huawei.

BEIJING - President Barack Obama appears to be a regular customer of a Chinese Internet cafe, reports said, after the manager forged an identity card in the US leader's name to help surfers avoid China's web rules.

SecurityWeek has learned that Secunia, a Danish vulnerability management firm, disclosed an unpatched vulnerability within an image viewing application used by organizations in both the private and the defense sectors to a public mailing list. Now, thanks to an email error, a vulnerability once sheltered by a coordinated disclosure program has been exposed.

NEW YORK - The United States on Tuesday unveiled the world's "largest" money laundering probe targeting the digital currency operator Liberty Reserve, striking a major blow against what a prosecutor termed the "Wild West" of virtual banking.

NEW YORK - A member of a loosely organized group of hackers accused of breaching computer networks of the FBI and a global intelligence firm pleaded guilty Tuesday to conspiracy charges, officials said.

RIYADH - Cyber hackers attacked several official Saudi websites on Saturday, posting an Algerian flag on their homepages that later vanished, local media reported. The website of the information ministry was among the hacked sites, according to state news broadcaster Al-Ekhbariya and newspapers.

Security firm Trend Micro has observed a massive spike in attempted malware infections coming from the Zeus family of Trojans. This spike, the company says, further affirms their warnings from their 2013 predictions that what was old will once again become new.

Event image poster

The leading global conference series for Operations, Control Systems and IT/OT Security professionals to connect on SCADA, DCS PLC and field controller cybersecurity.

Learn More

Application Security

Application Security

GitHub has launched a $1.25 million fund to be invested in improving the security of 125 open source projects.

Cloud Security

Cloud Security

Veeam releases patches for two vulnerabilities in Service Provider Console, including a critical-severity remote code execution bug.

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.