CONFERENCE Cyber AI & Automation Summit - Watch Sessions
Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Latest Cybersecurity News

Europol announced an operation targeting a cybercrime marketplace and phishing websites, including the arrests of two suspects.

More than 100 Cisco products are affected by an NX-OS vulnerability that allows attackers to bypass image signature verification.

Development firm Chemonics International has disclosed a year-old data breach impacting over 260,000 people.

System Two Security has emerged from stealth mode with a threat detection engineering solution and $7 million in seed funding.

A top White House official said at least eight U.S. telecom firms and dozens of nations have been impacted by a Chinese hacking campaign.

UK telecoms company BT has launched an investigation after the Black Basta ransomware group claimed the theft of 500 Gb of data.

Veeam releases patches for two vulnerabilities in Service Provider Console, including a critical-severity remote code execution bug.

Russia’s Turla hackers hijacked 33 command servers operated by Pakistani hackers who had themselves breached Afghanistan and Indian targets.

Crimenetwork, the largest German-speaking online crime marketplace, has been shut down and one of its admins has been arrested.

Tuskira is working on an AI-powered security mesh promising to integrate fragmented security tools and mitigate risk exposure in real time.

A second vulnerability in Zyxel firewalls has been exploited in Helldown ransomware attacks over the past weeks.

People on the Move

Shanta Kohli has been named CMO at Sysdig.

Cloud security firm Sysdig has appointed Sergej Epp as CISO.

F5 has appointed John Maddison as Chief Product Marketing and Technology Alliances Officer.

Video platform Vimeo has appointed Ryan Weeks as Chief Information Security Officer.

LPL Financial has welcomed Renana Friedlich as Chief Information Security Officer.

More People On The Move
China Telecom Hack China Telecom Hack

A top White House official said at least eight U.S. telecom firms and dozens of nations have been impacted by a Chinese hacking campaign.

Russian APT zero-day Russian APT zero-day

Russia’s Turla hackers hijacked 33 command servers operated by Pakistani hackers who had themselves breached Afghanistan and Indian targets.

Solana Web3 supply chain attack Solana Web3 supply chain attack

Supply chain attack leads to decentralized application developers downloading backdoored versions of the Solana Web3.js library.

Top Cybersecurity Headlines

McInerney’s path to becoming a hacker is subtly different to many other hackers. He started as a 22-year old psychology graduate rather than a computer-obsessed 9-year old kid.

The ‘Bootkitty’ prototype UEFI bootkit contains an exploit for LogoFAIL and was created in a South Korea university program.

Russian authorities have reportedly arrested Mikhail Matveev, who is wanted by the US for ransomware attacks against critical infrastructure.

SecurityWeek Industry Experts

More Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Don’t miss this Live Attack Demonstration to learn how hackers operate and gain knowledge to strengthen your defenses against deepfake and BEC fraud.

Register

Learn how to develop a holistic solution that provides you and your team the power to mitigate cyber threats effectively within your OT environment.

Register

Upcoming Cybersecurity Events

The AI Risk Summit brings together security and risk management executives, AI researchers, policy makers, software developers and influential business and government stakeholders. [June 2025, Stay Tuned]

Learn More

SecurityWeek’s CISO Forum Summer Summit & Golf Classic will take place June 25-26 at the Ritz-Carlton, Half Moon Bay, CA

Learn More

Huddle with your peers to measure the costs, benefits, and risks of deploying machine learning and predictive AI tools in the enterprise, the threat from adversarial AI and deepfakes, and preparation for the inevitable compliance and regulations. (December 4, 2024)

Learn More

SecurityWeek’s Identity & Zero Trust Strategies Summit is laser focused on helping organizations to level up their Identity and Zero Trust security strategies. (Oct. 9, 2024)

Learn More

Vulnerabilities

Cybercrime

Total Defense, a provider of Internet security solutions, today launched Total Defense for Business, a solution that the company calls a “complete cloud security solution”. Total Defense for Business delivers multi-layered protection by bundling together endpoint anti-malware and application controls, Web filtering and malware protection, and cloud-based anti-spam and email threat prevention.

GUATEMALA CITY - US anti-virus software pioneer John McAfee escaped immediate deportation to Belize on Wednesday as Guatemala decided to expel the American back to the United States instead. "Mr McAfee will be expelled to the United States shortly," said immigration spokesman Fernando Lucer, as an AFP photographer witnessed him being taken from his detention center to the airport by police convoy.

With the holiday season in full swing, and as shoppers rush out for those last minute gifts, a new type of malware is attempting to spoil the festivities. Dubbed "Dexter", this malware targets Point-of-Sale systems, and captures card data as it is transmitted, acting as a middleman in the sales process.

Defense contractor Raytheon today said that it has acquired the Government Solutions business of SafeNet, a privately held provider of network security and data protection solutions. The move to acquire the Torrance, California-based unit, which has approximately 170 employees, was to increase Raytheon's ability to provide encryption capabilities needed by government customers to protect classified data.

The U.S. Department of Justice said on Tuesday that they’ve arrested ten suspects involved in a global botnet operation that infected more than 11 million systems. According to the agency, Facebook was instrumental in case, providing critical information that later led to the arrests.

New Enhancements Help Identify Suspicious Mobile Apps and Block Malicious CommunicationsKindsight, an Alcatel-Lucent company, has expanded its mobile security offering with anti-theft features and new network-based security scanning.

BeyondTrust, a Carlsbad, California-based provider identity management and security intelligence solutions, today announced that it has acquired Blackbird Group, a provider Windows system management software, for an undisclosed sum.

Exploit Hub, an exploit marketplace orginally launched by NSS Labs in 2010, but spun off by the testing firm in March of this year, said on Tuesday that they were compromised by a quasi-rival group going by the name Inj3ct0r Team.

Event image poster

The leading global conference series for Operations, Control Systems and IT/OT Security professionals to connect on SCADA, DCS PLC and field controller cybersecurity.

Learn More

Application Security

Application Security

GitHub has launched a $1.25 million fund to be invested in improving the security of 125 open source projects.

Cloud Security

Cloud Security

Veeam releases patches for two vulnerabilities in Service Provider Console, including a critical-severity remote code execution bug.

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.