Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Latest Cybersecurity News

Before engaging in a full-scope exercise, it’s important to assess whether your program, people and processes are truly ready. 

Athena marks a major leap in SOC automation, enabling real-time detection, triage, and remediation with minimal human oversight.

As Xi Jinping advances his vision for China’s dominance by 2049, cybersecurity experts warn that connected technologies—like EV batteries—may quietly serve as tools of influence, espionage, and disruption.

Cybersecurity awareness training platform Pistachio has raised $7 million in a Series A funding round led by Walter Ventures.

Browser security firm LayerX has raised $11 million in a Series A funding round extension led by Jump Capital.

More than 30 companies announced a total of $1.7 billion in funding in weeks leading up to the industry’s largest gathering.

The number of exploited zero-days seen by Google in 2024 dropped to 75, from 98 observed in the previous year.

Hundreds of companies are showcasing their products and services this week at the 2025 edition of the RSA Conference in San Francisco.

More than 400 SAP NetWeaver servers are impacted by CVE-2025-31324, an exploited remote code execution vulnerability.

CISA urges immediate patching for recently disclosed Broadcom, Commvault, and Qualitia vulnerabilities exploited in the wild.

IBM will invest more than $30 billion in research and development to advance and continue its American manufacturing of mainframe and quantum computers.

People on the Move

Tenable has appointed Eric Doerr as its Chief Product Officer.

Michael Adams has joined Docusign as the new Group Vice President and CISO.

Security awareness training firm KnowBe4 has named Bryan Palma as president and CEO effective May 5.

Threat intelligence firm Team Cymru has appointed Joe Sander as its Chief Executive Officer.

Madhu Gottumukkala has been named Deputy Director of the cybersecurity agency CISA.

More People On The Move
Xi’s Silent Weapon: The EV Batteries That Could Shut Down America Xi’s Silent Weapon: The EV Batteries That Could Shut Down America

As Xi Jinping advances his vision for China’s dominance by 2049, cybersecurity experts warn that connected technologies—like EV batteries—may quietly serve as tools of influence, espionage, and disruption.

RSA Conference 2025 RSA Conference 2025

Hundreds of companies are showcasing their products and services this week at the 2025 edition of the RSA Conference in San Francisco.

RSA Conference 2025 RSA Conference 2025

This tension between hard-edged risk realism and breathless AI evangelism sets an unmistakable tone for a bellwether conference where 40,000-plus gather to do business. 

Top Cybersecurity Headlines

A zero-day vulnerability in SAP NetWeaver potentially affects more than 10,000 internet-facing applications.

Yale New Haven Health System recently discovered that the personal information of millions of patients was stolen from its systems.

British retailer Marks & Spencer has been experiencing certain service disruptions after falling victim to a cyberattack.

SecurityWeek Industry Experts

More Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join this event as we dive into threat hunting tools and frameworks, and explore value of threat intelligence data in the defender’s security stack.

Register

This webinar will guide you in aligning your security testing strategy with the right tools, helping you move beyond identifying weaknesses to effectively validating your overall security posture.

Register

Upcoming Cybersecurity Events

The AI Risk Summit brings together security and risk management executives, AI researchers, policy makers, software developers and influential business and government stakeholders. [August 19-20, 2025 | Ritz-Carlton, Half Moon Bay]

Learn More

SecurityWeek’s CISO Forum Summer Summit & Golf Classic will take place August 19-20 at the Ritz-Carlton, Half Moon Bay, CA. (www.cisoforum.com)

Learn More

The Threat Detection & Incident Response Summit delves into big-picture strategies to reduce attack surfaces, improve patch management, conduct post-incident forensics, and tools and tricks needed in a modern organization. [May 21, 2025 – Virtual]

Learn More

SecurityWeek’s Cloud and Data Security Summit returns with a deliberate focus on exposed attack surfaces and weaknesses in public cloud infrastructure and APIs. [July 16, 2025 – Virtual]

Learn More

Vulnerabilities

Cybercrime

BRUSSELS - Europe's leaders united Thursday behind Germany and France as an escalating row over claims of US snooping on its traditional allies overshadowed a key summit. German Chancellor Angela Merkel, whose mobile phone was reportedly the latest target of covert surveillance by the US National Security Agency (NSA), set the tone.

BERLIN - Germany summoned the US ambassador Thursday amid outrage over suspicions that Washington tapped Chancellor Angela Merkel's mobile phone, as she faced allegations she had naively played down the NSA spying scandal.

If you want to remain connected—and protected—the cloud is the only way. Why? There’s a ubiquity and cohesiveness to the cloud. It connects geographies. It connects devices. It’s where information sharing happens, and can happen at scale. In fact, the cloud is the only place that can provide the scale and elasticity (without the capital expense) that’s required in a connected world where new devices are appearing by the dozens daily.

Adobe announced on Wednesday that its popular Flash Player is now protected by an OS X App Sandbox as part of this week’s release of Safari in OS X Mavericks, giving Safari users on Apple's latest OS the ability to view Flash Player content while benefiting from added security protections.

MEXICO CITY - Mexico ordered an investigation Tuesday into allegations that the United States spied on the emails of its president and his predecessor, the latest diplomatic wrangle stemming from America's intelligence-gathering efforts.

Websense released the latest version of its TRITON security platform on Tuesday, which includes new features designed to more effectively thwart targeted attacks.

STRASBOURG - European Union lawmakers on Tuesday urged heads of state and government to endorse a proposal for beefed-up data privacy laws ahead of a summit in Brussels later this week. Lawmakers voted late on Monday to enshrine a new "right to erasure" in a planned EU rewrite of privacy laws fit for the Internet age and given fresh impetus by the US spying scandal.

Security researchers have spotted a new variant of the Sazoora data-theft Trojan employing nifty tricks to avoid security sandboxes. According to Seculert CTO Aviv Raff, the malware has been fitted with packing and technical changes aimed at defeating on-premises sandboxes.

Event image poster

The leading global conference series for Operations, Control Systems and IT/OT Security professionals to connect on SCADA, DCS PLC and field controller cybersecurity.

Learn More

Application Security

Application Security

Software and AI supply chain transparency firm Manifest has raised $15 million in a Series A funding round led by Ensemble VC.

Cloud Security

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.