Upcoming Virtual Event: Cloud Security Summit | July 17 - Register Now
Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Latest Cybersecurity News

CISA says it has evidence that a recent critical-severity vulnerability in GeoServer is exploited in the wild.

The Void Banshee APT exploited the CVE-2024-38112 Windows zero-day to infect systems with the Atlantida stealer.

A team of former GitHub engineers has secured $20 million in venture capital funding from Sequoia to build AI-powered security tools.

Frank Kim and Charles Blauner are responsible for security at both their own company and for the companies in which their firms invest.

Car dealership AutoNation has informed the SEC that the CDK Global ransomware attack impacted its quarterly earnings.

Hackers exploited a flaw to hijack cryptocurrency domains that were migrated from Google Domains to Squarespace.

Disney has launched an investigation after a hacker group named NullBulge leaked data allegedly stolen from the company.

Kaspersky is shutting down operations in the US and laying off employees following the recent Commerce Department ban.

Over 310 GB of data from mSpy, including 2.4 million email addresses and other user data, was leaked online.

IoT cybersecurity company Exein has raised €15 million (~$16.3 million) in a Series B funding round led by 33N.

The massive AT&T breach has been linked to an American hacker living in Turkey and reports say the telecom giant paid a $370,000 ransom.

People on the Move

Craig Boundy has left Experian to join McAfee as President and CEO.

Forcepoint has promoted Ryan Windham from Chief Customer and Strategy Officer to Chief Executive Officer.

ICS and OT cybersecurity solutions provider TXOne Networks appointed Stephen Driggers as its new CRO.

Identity orchestration provider Strata Identity has appointed Aldo Pietropaolo as Field CTO.

Cybersecurity provider for the aviation industry Cyviation has appointed Eliran Almog as Chief Executive Officer.

More People On The Move
Kaspersky software ban Kaspersky software ban

Kaspersky is shutting down operations in the US and laying off employees following the recent Commerce Department ban.

AT&T Data Breach AT&T Data Breach

The massive AT&T breach has been linked to an American hacker living in Turkey and reports say the telecom giant paid a $370,000 ransom.

Google in Advanced Talks to Buy Wiz for $23B: WSJ Report

Google’s parent company Alphabet is reportedly in advanced talks to acquire the hotshot Israeli data security startup.

Top Cybersecurity Headlines

Data breach exposed records of call and text interactions for nearly all AT&T’s wireless customers and has been linked to the recent attacks targeting Snowflake customers.

Few people understand AI, nor how to use nor control it, nor where it is going. Yet politicians wish to regulate it.

Security vendor InkBridge Networks calls urgent attention to the discovery of a decades-old design flaw (CVE-2024-3596) in the popular RADIUS protocol.

SecurityWeek Industry Experts

More Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Learn how to utilize tools, controls, and design models needed to properly secure cloud environments.

Register

The leading industrial cybersecurity conference for Operations, Control Systems and IT/OT Security professionals to connect on SCADA, DCS PLC and field controller cybersecurity.

Register

Upcoming Cybersecurity Events

The AI Risk Summit brings together security and risk management executives, AI researchers, policy makers, software developers and influential business and government stakeholders. [June 25-26, Ritz-Carlton, Half Moon Bay, CA]

Learn More

SecurityWeek’s CISO Forum Summer Summit & Golf Classic will take place June 25-26 at the Ritz-Carlton, Half Moon Bay, CA

Learn More

SecurityWeek’s annual cloud security virtual summit returns with a deliberate focus on exposed attack surfaces and weaknesses in public cloud infrastructure and APIs.

Learn More

SecurityWeek’s Identity & Zero Trust Strategies Summit is laser focused on helping organizations to level up their Identity and Zero Trust security strategies.

Learn More

Vulnerabilities

Cybercrime

Updated 2:40PM - In the comments, some of you mentioned you wanted pointers. Since we are mainly a b2b focused site for security professionals, we originally didn't include pointers. We did add pointers to help those who asked.

LogLogic, a provider of SIEM and IT data management solutions, today announced the official release of its virtual SIEM solution. The product was released in a preview version back in June, but is now generally available.

Political Site Says Iran May Have Executed Nuclear Staffers over Stuxnet Rumors are circulating that Iran may have executed a number of scientists and technicians working at nuclear facilities in the country after accusing them of helping to spread the Stuxnet malware in its systems.

Oracle Critical Patch Update for October, 2010 to fix 81 VulnerabilitiesOracle issued a Pre-Release Announcement this week, providing advance information about the Oracle Critical Patch Update to be released on Tuesday, October 12, 2010.

Google Account Security ChecklistGoogle today pushed a “Security Checklist,” primarily designed for Gmail users but something useful for all Google Accounts and Google Apps users. Several of the tips are obvious, but some tips and features that Google references may not be commonly used or paid attention to.

New Information Security Resource Provides Guidance that Addresses the People, Process, Organization and Technology Aspects of Information Security. The ISACA this week published the Business Model for Information Security (BMIS), as an educational resource for security professionals and to provide comprehensive guidance that addresses the people, process, organization and technology aspects of information security.

Symantec's New LogoSymantec today officially launched its new company logo. The company says that the new logo “symbolizes the company's focus on enabling confidence and ensuring customers have simple and secure access to their information from anywhere, seamlessly moving between their personal and professional lives.”

Event image poster

The leading global conference series for Operations, Control Systems and IT/OT Security professionals to connect on SCADA, DCS PLC and field controller cybersecurity.

Learn More

Application Security

Application Security

CISA says a SILENTSHIELD red team assessment found gaping holes in the security posture of a federal civilian executive branch organization.