Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Latest Cybersecurity News

Blackbaud was ordered to pay $6.75 million to the California Attorney General’s Office over the 2020 data breach.

SecurityWeek’s AI Risk Summit + CISO Forum bring together business and government stakeholders to provide meaningful guidance on risk management and cybersecurity in the age of artificial intelligence.

The US cybersecurity agency CISA has conducted a tabletop exercise with the private sector focused on AI cyber incident response.

Keytronic confirms that personal information was compromised after a ransomware group leaked allegedly stolen data.

US insurance company Globe Life is investigating a data breach involving unauthorized access to consumer and policyholder information. 

Aim Security has raised a total of $28 million to date and is on a mission to help companies to implement AI products with confidence.

The LA County’s Department of Public Health says the personal information of 200,000 was compromised in a data breach.

A British man has been arrested in Spain for allegedly being the ringleader of the notorious Scattered Spider cybercrime group.

Nigerian national Ebuka Raphael Umeti was convicted in the US for operating a business email compromise (BEC) scheme.

Republican Gov. Phil Scott said the legislation would have made Vermont “a national outlier and more hostile than any other state to many businesses and non-profits.”

Security researchers at Cisco Talos and Volexity flag two Pakistani espionage campaigns targeting Indian government entities.

People on the Move

Merlin Ventures has appointed cybersecurity executive Andrew Smeaton as the firm’s CISO-in-Residence.

Retired U.S. Army General and former NSA Director Paul M. Nakasone has joined the Board of Directors at OpenAI.

NSA has announced Kristina Walter as the new chief of the agency’s Cybersecurity Collaboration Center.

Jill Passalacqua has been appointed Chief Legal Officer at autonomous security solutions provider Horizon3.ai.

Cisco has appointed Sean Duca as CISO and Practice Leader for the APJC region.

More People On The Move
Hacker arrested Hacker arrested

A British man has been arrested in Spain for allegedly being the ringleader of the notorious Scattered Spider cybercrime group.

Windows Recall security Windows Recall security

Microsoft is not rolling out Recall with Copilot+ PCs as it’s seeking additional feedback and working on improving security.

ICS vulnerabilities ICS vulnerabilities

Analysis and insights on the prevalence and impact of password exposure vulnerabilities in ICS and other OT products.

Top Cybersecurity Headlines

Microsoft’s June 2024 Patch Tuesday updates resolve a zero-click Outlook vulnerability leading to remote code execution.

The TellYouThePass ransomware gang started exploiting a recent code execution flaw in PHP days after public disclosure.

Apple has released a visionOS update that patches CVE-2024-27812, which may be the first flaw specific to the VR headset.

SecurityWeek Industry Experts

More Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join this webinar to learn how you can transform your security strategy to build your organization’s resilience in the face of evolving threats.

Register

The AI Risk Summit brings together security and risk management executives, AI researchers, policy makers, software developers and influential business and government stakeholders.

Register

Upcoming Cybersecurity Events

The AI Risk Summit brings together security and risk management executives, AI researchers, policy makers, software developers and influential business and government stakeholders. [June 25-26, Ritz-Carlton, Half Moon Bay, CA]

Learn More

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.

Learn More

Designed for senior level cybersecurity leaders to discuss, share and learn innovative information security and risk management strategies, SecurityWeek’s CISO Forum, will take place June 25-26 at the Ritz-Carlton, Half Moon Bay, CA

Learn More

SecurityWeek’s Threat Detection and Incident Response (TDIR) Summit dives into Threat hunting tools and frameworks, and explores the value of threat intelligence data in the defender’s security stack.

Learn More

Vulnerabilities

Cybercrime

After enterprise software firm Sybase released patches to address critical vulnerabilities in its relational database management system over the summer, it turned out the security holes had not been completely closed. Months later, the flaws still remain, database security experts said.

Symantec recently published a blog post detailing two new methods being deployed to avoid malware detection and analytics. According to research, criminals are taking a low-cost / low-tech approach and using sleep loops along with basic monitoring to avoid getting caught.

SAN FRANCISCO - A New York man with a shady past was arrested on Friday for using a forged contract with Facebook co-founder Mark Zuckerberg to lay claim to half of the world's leading online social network. Paul Ceglia, 39, faces a pair of fraud charges that each carries a maximum sentence of 20 years in prison, according to federal prosecutors.

Rapid7, the Boston-based security firm behind the popular Metasploit and Nexpose testing frameworks, today announced tha Mike Tuchen has stepped down from his role as CEO and will be replaced by Corey Thomas who will serve as President and CEO of the company.

Stoke-on-Trent City Council (UK) has been smacked with a £120,000 fine for failing to secure sensitive information that was being transmitted electronically. The data, child protection documents, was accidentally delivered to a person not related to the case, and wasn’t properly encrypted the Information Commissioner’s Office (ICO) said, posing a significant breach of the Data Protection Act.

WASHINGTON - Defense Secretary Leon Panetta on Thursday demanded Congress take action after November elections to ensure stable funding for the US military and to break a partisan deadlock over the country's budget deficit. "When Congress returns to town after the election, there is a great deal of critical work that needs to be done," Panetta told a news conference.

According to a new report from the Anti-Phishing Working Group (APWG), an industry organization focused on combating phishing and cybercrime, the average uptime of phishing websites dropped during the first half of 2012. That’s a good thing, as the longer a site hosting phishing attack remains online and accessible, the more money and data cybercriminals can pilfer from victims.

LAS VEGAS - McAfee FOCUS - Xerox and McAfee unveiled a new layer of security protection for printers at the McAfee FOCUS 12 conference this week in Las Vegas. The two companies discussed how McAfee's Embedded Control software – a filtering method that allows only approved programs to get through - will be used by multifunction printers to prevent attacks.

LAS VEGAS - McAfee FOCUS 2012 - Solving security challenges to critical infrastructure companies requires partnerships between vendors, a panel of solution providers and experts said today at McAfee's Focus conference in Las Vegas. Working closely with suppliers, explained Gary Woodward, director of business development at Emerson Process Management and Water Solutions, ensures that products are integrated and working optimally.

Event image poster

The leading global conference series for Operations, Control Systems and IT/OT Security professionals to connect on SCADA, DCS PLC and field controller cybersecurity.

Learn More

Application Security

Application Security

A critical vulnerability tracked as CVE-2024-34359 and dubbed Llama Drama can allow hackers to target AI product developers.

Cloud Security