Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Latest Cybersecurity News

If the deal is sealed, SpaceX would provide encryption services for the Italian government and communications infrastructure for the military and emergency services.

Noteworthy stories that might have slipped under the radar: 2025 trucking cybersecurity report, Bank of America discloses data breach, Silk Typhoon behind US Treasury hack.

The latest version of the Banshee macOS information stealer no longer checks if the infected systems have the Russian language installed.

Substance abuse treatment provider BayMark Health Services says patient personal information was compromised in a data breach.

Fortinet warns of a phishing campaign that uses legitimate links to take over the victims’ PayPal accounts.

A research project into vulnerabilities affecting Microsoft’s PlayReady DRM raises some questions on responsible disclosure.

Darktrace has announced the proposed acquisition of UK-based incident investigation firm Cado Security, reportedly for up to $100 million. 

Medical billing solutions provider Medusind has revealed that a data breach discovered in December 2023 impacts over 360,000 individuals.

Threat actors are exploiting a recent GFI KerioControl firewall vulnerability that leads to remote code execution.

SonicWall has released patches for multiple vulnerabilities in SonicOS, including high-severity authentication bypass flaws.

Some of the innovative products presented at CES can pose a serious risk to data and privacy.

People on the Move

Cloud security giant Wiz has named Fazal Merchant as President and Chief Financial Officer.

Cybersecurity and data protection company Acronis has appointed Gerald Beuchelt as CISO.

Adam Zoller has joined CrowdStrike as Chief Information Security Officer.

Ekta Singh-Bushell is the first COO of industrial cybersecurity company Dragos.

Threat intelligence firm Flashpoint has appointed David Lemon as President.

More People On The Move
Streaming platform DRM hacking Streaming platform DRM hacking

A research project into vulnerabilities affecting Microsoft’s PlayReady DRM raises some questions on responsible disclosure.

Ivanti vulnerability exploited Ivanti vulnerability exploited

Google Cloud’s Mandiant has linked the exploitation of CVE-2025-0282, a new Ivanti VPN zero-day, to Chinese cyberspies.

Ivanti vulnerability Ivanti vulnerability

Ivanti confirms zero-day exploitation of a remotely exploitable code execution flaw in its Connect Security product line.

Top Cybersecurity Headlines

After its CEO was arrested last summer, Telegram has been increasingly sharing user data at the request of authorities.

The insider threat problem will worsen, and the solutions will widen, in the age of generative-AI.

CISA says two recently disclosed path traversal vulnerabilities in the Mitel MiCollab collaboration platform have been exploited in attacks.

SecurityWeek Industry Experts

More Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Explore trends and technologies that will shape the future of cybersecurity. Discover strategies for vendor selection, integration to minimize redundancies, and maximizing ROI from your cybersecurity investments. Gain actionable insights to ensure your stack is ready for tomorrow’s challenges.

Register

Dive into critical topics such as incident response, threat intelligence, and attack surface management. Learn how to align cyber resilience plans with business objectives to reduce potential impacts and secure your organization in an ever-evolving threat landscape.

Register

Upcoming Cybersecurity Events

The AI Risk Summit brings together security and risk management executives, AI researchers, policy makers, software developers and influential business and government stakeholders. [June 2025, Stay Tuned]

Learn More

SecurityWeek’s CISO Forum Summer Summit & Golf Classic will take place June 25-26 at the Ritz-Carlton, Half Moon Bay, CA

Learn More

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.(February 26, 2025)

Learn More

Supply Chain Security Summit
Join us as we explore the critical nature of software and vendor supply chain security issues with a focus on understanding how attacks against identity infrastructure come with major cascading effects. (March 19, 2025)

Learn More

Vulnerabilities

Cybercrime

Just before the launch date of Apple’s latest and greatest, Mac OS X 10.8 (Mountain Lion), security vendors were in a flutter over the claimed discovery of a new piece of malware that targets Mac users. Yet, the malware hasn't been found in the wild, and it was discovered within a repository designed to share potentially malicious samples with the security community.

LAS VEGAS - BLACK HAT USA – RSA, the security arm of storage giant EMC, today unveiled a new service designed to stop malicious applications on mobile devices. The offering, the company says, comes at a time where there is a need to counter the emergence of malicious and unauthorized apps appearing in mobile app stores.

LAS VEGAS - BLACK HAT USA - Security and data protection solutions provider Websense, today launched new CyberSecurity Intelligence™ (CSI) services that give IT security teams access to an online sandbox environment, along with education and research services from the company’s Security Labs team, to help protect organizations from cyber attacks and data loss.

Saying it was the board's judgment that it was in the best interests to make a change in the CEO position, Symantec today said that Enrique Salem, president and CEO, has stepped down effective immediately and would be replaced by Steve Bennett who will take over the role as president and chief executive officer, in addition to his continued role as chairman of the board.

Dropbox Still Investigating Possible Breach – Nothing Conclusive As of Yet Dropbox, a widely popular cloud storage platform, is still investing a possible breach after users in the U.K. and the EU started receiving spam messages on accounts used exclusively for the service. The most recent update from the company asks for more time, and notes that they have found nothing yet.

Silver Tail Systems, a provider of web session intelligence and behavioral analytics for fraud and cybercrime detection, today announced the launch of Silver Tail Systems Forensics 3.0, the latest version of its flagship platform.

A Vermont-based security start-up, Pwnie Express, will be in Vegas this week showcasing their hardware during Black Hat and Def Con. For those unfamiliar with the company, they produce some of the most innovative penetration testing tools on the market.

Kaspersky Lab, the Russian Internet security software maker behind highly rated consumer security software for PCs, on Monday announced Kaspersky Security for Mac, the Company’s new security suite designed to protect Mac OS X based systems. The company says its latest Mac security offering combines real-time scanning, proactive detection and cloud-based threat intelligence to help protect Mac OS X users.

Survey Shows That 40 Percent of Adults Consumers Don’t Always Update Software When Initially Prompted To A trio comprised of Skype, Symantec and TomTom today publicized the kickoff of “International Technology Upgrade Week” (ITUW), an initiative designed to encourage consumers to download software updates to their computers and electronic devices more often.

Event image poster

The leading global conference series for Operations, Control Systems and IT/OT Security professionals to connect on SCADA, DCS PLC and field controller cybersecurity.

Learn More

Application Security

Application Security

Google has announced the open source availability of Vanir, a patch validation tool for Android platform developers.

Cloud Security

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.