Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Latest Cybersecurity News

While reintegration of formerly incarcerated people into the workforce is important, the government should be cautious about what positions those with a criminal history are put into.

OpenAI is setting up a new safety and security committee and has begun training a new artificial intelligence model to supplant the GPT-4 system that underpins its ChatGPT chatbot.

ABN Amro discloses data breach after third-party services provider AddComm suffers a ransomware attack.

While Red Teams can expose and root out organization specific weaknesses, there is another growing class of vulnerability at an industry level.

Auction house Christie’s has confirmed suffering a data breach following a ransomware attack launched earlier this month.

Private equity company Hg has acquired audit, compliance and risk management firm AuditBoard for over $3 billion.

A threat actor is asking $50,000 for data allegedly stolen from Australian digital prescription services provider MediSecure.

Pharmacy prescription services provider Sav-Rx says the personal information of 2.8 million was stolen in a cyberattack.

Check Point is warning customers that threat actors are targeting insecure VPN instances for initial access to enterprise networks. 

Only one of seven bills aimed at preventing AI’s penchant to discriminate when making consequential decisions — including who gets hired, money for a home or medical care — has passed.

Backdoored JAVS courtroom recording and management software installer puts thousands at risk of complete takeover.

People on the Move

Fastly announced that Scott Lovett will join the company as Chief Revenue Officer, effective June 3, 2024.

Digital transformation consulting firm Synechron has hired Aaron Momin as CISO.

Wendy Zheng named as CFO and Joe Diamond as CMO at cyber asset management firm Axonius.

Intelligent document processing company ABBYY has hired Clayton C. Peddy as CISO.

Digital executive protection services provider BlackCloak has appointed Ryan Black as CISO.

More People On The Move
OpenAI Safety and Security Committee OpenAI Safety and Security Committee

OpenAI is setting up a new safety and security committee and has begun training a new artificial intelligence model to supplant the GPT-4 system that underpins its ChatGPT chatbot.

Christie's ransomware data breach Christie's ransomware data breach

Auction house Christie’s has confirmed suffering a data breach following a ransomware attack launched earlier this month.

CVE-2024-5274 CVE-2024-5274

Exploited in the wild, Chrome vulnerability CVE-2024-5274 is a high-severity flaw described as a type confusion in the V8 JavaScript and WebAssembly engine.

Top Cybersecurity Headlines

While reintegration of formerly incarcerated people into the workforce is important, the government should be cautious about what positions those with a criminal history…

OpenAI is setting up a new safety and security committee and has begun training a new artificial intelligence model to supplant the GPT-4 system…

ABN Amro discloses data breach after third-party services provider AddComm suffers a ransomware attack.

While Red Teams can expose and root out organization specific weaknesses, there is another growing class of vulnerability at an industry level.

SecurityWeek Industry Experts

More Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join this webinar to learn how you can transform your security strategy to build your organization’s resilience in the face of evolving threats.

Register

The AI Risk Summit brings together security and risk management executives, AI researchers, policy makers, software developers and influential business and government stakeholders.

Register

Upcoming Cybersecurity Events

The AI Risk Summit brings together security and risk management executives, AI researchers, policy makers, software developers and influential business and government stakeholders. [June 25-26, Ritz-Carlton, Half Moon Bay, CA]

Learn More

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.

Learn More

Designed for senior level cybersecurity leaders to discuss, share and learn innovative information security and risk management strategies, SecurityWeek’s CISO Forum, will take place June 25-26 at the Ritz-Carlton, Half Moon Bay, CA

Learn More

SecurityWeek’s Threat Detection and Incident Response (TDIR) Summit dives into Threat hunting tools and frameworks, and explores the value of threat intelligence data in the defender’s security stack.

Learn More

Vulnerabilities

Cybercrime

Mobile Application Development - Security Concerns Slowing Development and AdoptionConcerns about security issues are preventing companies from implementing features on mobile applications that are commonly available for the desktop, according to a new Ziff Davis study commissioned by Entrust, Inc. For mobile applications that feature transaction-based capabilities, these concerns are particularly acute.

SonicWALL, Inc. today announced the addition of two new secure wireless access points to its SonicPoint™ Series. These new devices are designed to provide clean wireless connections through integration with a collection of existing SonicWALL products: Gateway Anti-Virus, Intrusion Prevention, Anti-Spyware and Content Filtering.

A survey conducted at the recent DEF CON Hacker conference in Las Vegas revealed that hackers see the cloud as an attractive hacking target.The survey, carried out amongst 100 of the IT professionals attending DEF CON, revealed that 96 percent think the cloud will open up more hacking opportunities for them.

Afilias, a global provider of Internet infrastructure services, today announced that it will deploy Domain Name System Security Extensions (DNSSECs) across its registry platforms, signing 13 more top-level domains (TLDs) and increasing the total number of DNSSEC deployments among domain registries to 39.

Autonomy today unveiled a new, end-to-end, “meaning-based” platform designed to automate many time-consuming tasks law firms must deal with in order to manage documents in electronic form. The Autonomy Risk Management platform leverages Autonomy's Intelligent Data Operating Layer (IDOL), already deployed today in over 2,000 law firms.

Social Media Acceptable Usage Policy - Why Allow Web 2.0 to Be Used in Business?The consumerization of IT is affecting all aspects of the way we work.  As Web 2.0 technologies continue to gain popularity amongst employees, IT departments are struggling to understand and manage the challenges.

Variant of Popular ZeuS Malware Targets U.S. Military Around the WorldMalware created with the ZeuS toolkit is targeting members of the U.S. military with an email asking them to update their account information online.Members of the U.S. Military have been receiving emails similar to the following: Targets of this scam will receive an email with the following text:Dear Bank of America Military Bank customer:

Do these firms really care about McAfee shareholders, or is this just an attempt to rake in some cash for the firms themselves?Intel, the world’s largest computer chipmaker, will pay $48 per share in cash for McAfee – a whopping 60 percent premium over McAfee's $29.93 closing price on Wednesday, and one that’s in line with other recent valuations in software and tech deals.

Intel on Thursday said it has entered into a definitive agreement to buy McAfee, the computer security software company, for $7.68 billion in cash, puchasing of all of the company’s common stock at $48 per share. McAfee shares closed at $29.93 at the end of trading on Wednesday.

Event image poster

The leading global conference series for Operations, Control Systems and IT/OT Security professionals to connect on SCADA, DCS PLC and field controller cybersecurity.

Learn More

Application Security

Application Security

A critical vulnerability tracked as CVE-2024-34359 and dubbed Llama Drama can allow hackers to target AI product developers.

Cloud Security

Cloud Security

Google is invoking the 'monoculture' word in response to a scathing U.S. government report on Microsoft's inadequate cybersecurity practices.