Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Latest Cybersecurity News

Report finds most organizations have suffered financial impact of $500,000 or more from cyberattacks on cyber-physical systems over past year.

Noteworthy stories that might have slipped under the radar: students dox people with Meta’s Ray-Ban smart glasses, OT hunting guide for water systems, NVD backlog still significant. 

Google Cloud makes new confidential computing options generally available and expands attestation support.

Inside the collapse of IronNet: Some say the firm collapsed, in part, because it engaged in questionable business practices, produced subpar offerings, and could have been vulnerable to meddling by the Kremlin.

Roundup of the 37 cybersecurity-related merger and acquisition (M&A) deals announced in September 2024.

Pixel 9 comes with improved security hardening mitigations against common exploits on cellular basebands.

Russian authorities have arrested 96 individuals suspected of having ties to US-disrupted UAPS and Cryptex cryptocurrency exchanges.

According to a barebones Apple advisory, the new iOS 18.0.1 fixes two bugs that expose passwords and audio snippets to malicious hackers.

The coordinated action resulted in the seizure of more than 100 domains used for spear-phishing targets in the US, UK, and Europe.

CISO salaries are getting higher and experience counts. Average annual compensation for these cybersecurity leaders is more than $550K.

The hack of a police system that exposed contact details of all Dutch police officers was almost certainly carried out by hackers working for a foreign government, the justice minister said.

People on the Move

Defense contractor Nightwing has appointed Tricia Fitzmaurice as Chief Growth Officer.

Xage Security has appointed Russell McGuire as CRO and Ashraf Daqqa as VP of the META region.

Solana co-founder Stephen Akridge has been appointed the CEO of data protection firm Cyber Grant.

Mario Duarte, formerly head of security at Snowflake, has joined Aembit as CISO.

Kevin Mandia has joined Expel’s board of directors and has been named chair of the board at SpecterOps.

More People On The Move
Fall of IronNet Fall of IronNet

Inside the collapse of IronNet: Some say the firm collapsed, in part, because it engaged in questionable business practices, produced subpar offerings, and could have been vulnerable to meddling by the Kremlin.

CISOs Salaries CISOs Salaries

CISO salaries are getting higher and experience counts. Average annual compensation for these cybersecurity leaders is more than $550K.

Rackspace Breach Rackspace Breach

A breach at Rackspace exposes the fragility of the software supply chain, triggering a blame game among vendors over an exploited zero-day.

Top Cybersecurity Headlines

Cloudflare recently mitigated another record-breaking DDoS attack, peaking at 3.8 Tbps and 2.14 billion Pps. 

Previously seized LockBit websites have been used to announce more arrests, charges and infrastructure disruptions.

That dream of a decentralized privacy-retaining identity system able to combat AI-driven bots and deepfakes may not be as elusive as feared – courtesy of Tools for Humanity (TfH) and Worldcoin.

SecurityWeek Industry Experts

More Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join SecurityWeek and Hitachi Vantara for this this webinar to gain valuable insights and actionable steps to enhance your organization’s data security and resilience.

Register

The leading industrial cybersecurity conference for Operations, Control Systems and IT/OT Security professionals to connect on SCADA, DCS PLC and field controller cybersecurity.

Register

Upcoming Cybersecurity Events

The AI Risk Summit brings together security and risk management executives, AI researchers, policy makers, software developers and influential business and government stakeholders. [June 25-26, Ritz-Carlton, Half Moon Bay, CA]

Learn More

SecurityWeek’s CISO Forum Summer Summit & Golf Classic will take place June 25-26 at the Ritz-Carlton, Half Moon Bay, CA

Learn More

The Attack Surface Management Summit will dig into the transformative trends driving data security and provide insights and strategies to take full advantage of attack surface management technologies. (September 18, 2024)

Learn More

SecurityWeek’s Identity & Zero Trust Strategies Summit is laser focused on helping organizations to level up their Identity and Zero Trust security strategies. (Oct. 9, 2024)

Learn More

Vulnerabilities

Cybercrime

In November 2011, the FBI and international authorities announced the disruption a massive cybercrime scheme that infected more than four million computers with DNSChanger Malware, malicious software that actively changes an infected system's DNS resolution settings to use rogue servers that can redirect traffic to malicious servers and attempt to steal personal information and generate illegitimate ad revenu

While we must continue to invest in new technologies that provide detection of the latest threats, detection alone isn’t enough.Traditional security solutions are falling short of providing needed protection because they’re typically blind to changing conditions and new attacks. Simply put: you can’t protect what you can’t see.

Netherlands-based AVG Technologies today announced the pricing of its initial public offering of 8.0 million ordinary shares at a priced to at $16.00 per share, an offering that in total will raise approximately $128 million, but net slightly less than $64 million in the company’s pockets after investment banking fees, underwriting discounts and commissions.

Wave Systems, a Massachusetts-based provider of encryption and security solutions, this week launched Wave Encryption Service (WES), a cloud-based encryption solution designed to be easy to deploy, manage and enforce.

More Formidable Security Threats and High-Profile Attacks Drive Enterprise Demand for Security Intelligence Services Research from International Data Corporation (IDC) on the threat intelligence market, a sector made up of advanced security event monitoring and management technologies that incorporate a variety of threat-related information sources to develop predictive security, predicts the market to grow from $198 million in 2009 to $905 million in 2014.

BlackBerry 7 Devices Get FIPS 140-2 Certification for U.S. and Canadian Governments BlackBerry maker Research In Motion (RIM) today announced that BlackBerry mobile devices running its new BlackBerry 7 and BlackBerry 7.1 Operating Systems  have been awarded FIPS (Federal Information Processing Standard) 140-2 certification by the National Institute of Standards and Technology (NIST) and the Communications Security Establishment Canada (CSEC).

Chainmail is Composed of Several Layers, as Should Your Security Strategy.Everyone has heard of the “layered” security approach, yet very few security professionals seem to fully appreciate what is actually meant by it, nor do they know how to go about designing such a strategy. The conventional view is similar to an ice cream sandwich-- each layer piled on top of the other, providing a thick pillow of protection that a would-be information assassin has to fully penetrate in order...

Akamai Technologies has released its State of the Internet report for the third quarter of 2011, based on data collected from its massive global network. In it, they observed that attack traffic online originated from 195 countries or regions, but that more than half of this traffic came from the Asia-Pacific region.

IBM Moves to Secure Mobile devices with New Endpoint Manager Suite, Announces Aquisition of Mobile Software Firm Worklight IBM, on Tuesday, announced a new endpoint management suite aimed at mobile devices, in addition to hinting at further R&D in the segment thanks to a recent acquisition. The new software is one of the first to leverage the technology portfolio obtained after Big Blue purchased BigFix software in 2010.

Researchers at M86 Security say hackers have compromised hundreds of Web sites that use Wordpress as part of an attack campaign using the Phoenix exploit kit.“A few days ago, hundreds of websites, based on WordPress 3.2.1, were compromised,” blogged Daniel Chechik, security researcher at M86 Security. “The attacker uploaded an HTML page to the standard Uploads folder and that page redirects the user to the Phoenix Exploit Kit. Its logs show that users from at least four hundred compromised sites...

Experts Say The Government and the Private Sector Need to Work Together Better, Faster and Across More Sectors.There has been a growing awareness during the past few years that cyber-security is an important element of military defense – a fact that was underscored by recent research from McAfee and Brussels-based think tank Security & Defence Agenda (SDA).

McAfee has announced McAfee Mobile Security 2.0, confirming the software’s presence in the Android Market last week, which appeared out of the blue to some users. The update is a step forward for overall resource usage and cosmetic improvements, but the base functionality remains the same.

Event image poster

The leading global conference series for Operations, Control Systems and IT/OT Security professionals to connect on SCADA, DCS PLC and field controller cybersecurity.

Learn More

Application Security

Application Security

Application security and vulnerability management platform DefectDojo has raised $7 million in Series A funding.

ICS/OT

ICS/OT

Report finds most organizations have suffered financial impact of $500,000 or more from cyberattacks on cyber-physical systems over past year.

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.