Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Latest Cybersecurity News

The prospect of criminal charges comes as the Justice Department has raised alarms about aggressive efforts by countries including Russia and Iran to meddle in the presidential election.

Google is rolling out new features in Chrome to better protect users online and to improve their control over personal data.

Operant AI, a startup specializing in runtime protection for cloud applications, APIs, and AI systems, secures new $10 million investment.

Realm.Security has emerged from stealth with $5 million in funding and a solution that helps organizations manage security data. 

Relentless in their methods, attackers will continue employing evasion tactics to circumvent traditional security measures.

Palo Alto Networks has fixed medium- and high-severity vulnerabilities in PAN-OS, Cortex XDR, ActiveMQ Content Pack, and Prisma Access Browser.

Aembit has raised $25 million in Series A funding to protect non-human identities and minimize attack surface.

Financial services giant Mastercard is acquiring Recorded Future from private equity firm Insight Partners for $2.6 billion.

Cisco has announced security updates that patch eight vulnerabilities in IOS XR software, including six high-severity bugs.

Hackers believed to be operating on behalf of the Iranian government have deployed malware to Iraqi government networks. 

Lehigh Valley Health Network has agreed to pay a $65 million settlement in a class-action suit filed over a 2023 data breach.

People on the Move

Barbara Larson has joined SentinelOne as Chief Financial Officer.

Amy Howland has been named Partner and CISO at Guidehouse.

Exabeam has appointed Kish Dill as Chief Customer Success Officer.

Cloud networking firm Aviatrix has named John Qian as CISO.

CrowdStrike has appointed Kartik Shahani as vice president of India and SAARC.

More People On The Move
Mastercard acquires Recorded Future Mastercard acquires Recorded Future

Financial services giant Mastercard is acquiring Recorded Future from private equity firm Insight Partners for $2.6 billion.

Iran Iraq hacking Iran Iraq hacking

Hackers believed to be operating on behalf of the Iranian government have deployed malware to Iraqi government networks. 

Intel CPU attack Intel CPU attack

Intel on Tuesday published advisories covering more than 20 vulnerabilities affecting processors and other products.

Top Cybersecurity Headlines

Patch Tuesday: Microsoft raises an alarm for in-the-wild exploitation of a critical flaw in Windows Update.

Signed on September 5, 2024, the AI Convention is a laudable intent but suffers from the usual exclusions and exemptions necessary to satisfy multiple nations.

An academic researcher has devised a new method of exfiltrating data from air-gapped systems using radio signals from memory buses.

SecurityWeek Industry Experts

More Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Hear from cybersecurity experts as they explore the latest trends, challenges and innovations in Attack Surface Management.

Register

The leading industrial cybersecurity conference for Operations, Control Systems and IT/OT Security professionals to connect on SCADA, DCS PLC and field controller cybersecurity.

Register

Upcoming Cybersecurity Events

The AI Risk Summit brings together security and risk management executives, AI researchers, policy makers, software developers and influential business and government stakeholders. [June 25-26, Ritz-Carlton, Half Moon Bay, CA]

Learn More

SecurityWeek’s CISO Forum Summer Summit & Golf Classic will take place June 25-26 at the Ritz-Carlton, Half Moon Bay, CA

Learn More

The Attack Surface Management Summit will dig into the transformative trends driving data security and provide insights and strategies to take full advantage of attack surface management technologies. (September 18, 2024)

Learn More

SecurityWeek’s Identity & Zero Trust Strategies Summit is laser focused on helping organizations to level up their Identity and Zero Trust security strategies. (Oct. 9, 2024)

Learn More

Vulnerabilities

Cybercrime

The direct costs related to global consumer cybercrime has dropped to $110 billion, according to the latest cybercrime survey. The same report last year estimated direct costs of $114 billion.

A cyber-attack on Bitfloor, a Bitcoin exchange, yielded access to an unencrypted backup of wallet keys that were used to steal roughly $250,000, according to the company. According to Roman Shtylman, founder of Bitfloor, trading has been suspended in light of the breach. The attack occurred Monday night, and compromised servers belonging to the firm, Shtylman explained Tuesday in a post on a user forum. 

The FBI has issued a flat-out denial on the claims made Tuesday by AntiSec,which said the law enforcement agency was hoarding personal information on some 12 million Apple customers. However, the statement leads to more questions than answers.

While the majority of corporate email moves through Exchange and GMail, there are plenty organizations that rely on Linux as their platform of choice. However, most Linux mail deployments rely on spotty AV protection and Spam filtering. To address that gap, Kaspersky has launched a service that works alongside all of the common Linux-based email packages.

The main website of news network Al-Jazeera was hacked Tuesday afternoon by Syrian government loyalists in retaliation for the network's recent news coverage of the conflict in Syria.

Hours after Oracle patched vulnerabilities in Java with an emergency out-of-band update, researchers managed to uncover another security flaw that would give attackers complete control of victim computers.

A hacker group has claimed to have obtained personal data from 12 million Apple iPhone and iPad users by breaching an FBI computer, raising concerns about government tracking. The group called AntiSec, linked to the hacking collective known as Anonymous, posted one million Apple user identifiers claimed to be part of a larger group of 12 million, purportedly obtained from an FBI laptop.

Shamoon is still busy infecting computers throughout the world, this time with an updated variant, according to new findings by Symantec. The new version of the malware – detected by the firm as W32.Disttrack – wipes files by overwriting them with 192KB blocks of randomly generated data as opposed to the previous version, which used a 192KB block filled with a partial image of a burning U.S. flag.

In Network Security We are Always in a Battle of Wits Against the Attackers...This week marks the official start of a new school year and all that comes with it. Personally, I was always in that strange group of kids that looked forward to the beginning of school.

According to state media in Iran, the nation has teamed with North Korea in order to cooperate on science and technology. The joint effort will include student exchanges, as well as labs where scientists on both sides can conduct research.

Event image poster

The leading global conference series for Operations, Control Systems and IT/OT Security professionals to connect on SCADA, DCS PLC and field controller cybersecurity.

Learn More

Application Security

Application Security

SaaS applications are so easy to use, the decision, and the deployment, is sometimes undertaken by the business unit user with little reference to,...