Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Latest Cybersecurity News

The US government shared exploit chains, IOCs and post-incident forensics data to help network defenders hunt for signs of Chinese hacking gangs.

The Trump administration has disbanded the Cyber Safety Review Board (CSRB), ending one of the few bright spots at CISA.

DryRun Security has raised $8.7 million in a seed funding round for its AI-powered application security solutions. 

Doti’s platform uses AI to improve, automate, and streamline standard office and business processes across distributed and hybrid environments. 

Join Us in Shaping the Future of Supply Chain Security – Don’t miss this chance to be part of the conversation addressing one of the most pressing cybersecurity challenges .

APIs are easy to develop, simple to implement, and frequently attacked. They are  prime and lucrative targets for cybercriminals. 

$380,000 paid out on the first day of Pwn2Own Automotive 2025 for exploits targeting car infotainment units, operating systems, and chargers. 

The Mirai-based Murdoc botnet has been actively targeting Avtech and Huawei devices for roughly half a year.

Oracle has released 318 new security patches to address roughly 200 unique CVEs as part of its January 2025 Critical Patch Update.

Cloudflare saw a 53% increase in DDoS attack frequency last year, when it blocked a record-breaking 5.6 Tbps attack.

ABB has patched building control product vulnerabilities that can expose many facilities to remote attacks.

People on the Move

Karl Triebes has joined Ivanti as Chief Product Officer.

Steven Hernandez has joined USAID as CISO and Deputy CIO.

Data security and privacy firm Protegrity has named Michael Howard as its CEO.

Anand Ramanathan has been appointed as Chief Product Officer at Deepwatch.

Managed security platform provider Deepwatch has appointed Sammie Walker as CMO.

More People On The Move
Ivanti vulnerability Ivanti vulnerability

The US government shared exploit chains, IOCs and post-incident forensics data to help network defenders hunt for signs of Chinese hacking gangs.

DDoS attack DDoS attack

Cloudflare saw a 53% increase in DDoS attack frequency last year, when it blocked a record-breaking 5.6 Tbps attack.

PowerSchool data breach PowerSchool data breach

PowerSchool says the personal information of students and educators was stolen in a December 2024 data breach.

Top Cybersecurity Headlines

HPE is investigating claims by the hacker IntelBroker, who is offering to sell source code and other data allegedly stolen from the tech giant.

The Treasury Department announced sanctions in connection with a massive Chinese hack of American telecommunications companies and a breach of its own computer network.

In 2024 organizations informed the US government about 720 healthcare data breaches affecting a total of 186 million user records.

SecurityWeek Industry Experts

More Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Explore trends and technologies that will shape the future of cybersecurity. Discover strategies for vendor selection, integration to minimize redundancies, and maximizing ROI from your cybersecurity investments. Gain actionable insights to ensure your stack is ready for tomorrow’s challenges.

Register

Dive into critical topics such as incident response, threat intelligence, and attack surface management. Learn how to align cyber resilience plans with business objectives to reduce potential impacts and secure your organization in an ever-evolving threat landscape.

Register

Upcoming Cybersecurity Events

The AI Risk Summit brings together security and risk management executives, AI researchers, policy makers, software developers and influential business and government stakeholders. [June 2025, Stay Tuned]

Learn More

SecurityWeek’s CISO Forum Summer Summit & Golf Classic will take place June 25-26 at the Ritz-Carlton, Half Moon Bay, CA

Learn More

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.(February 26, 2025)

Learn More

Supply Chain Security Summit
Join us as we explore the critical nature of software and vendor supply chain security issues with a focus on understanding how attacks against identity infrastructure come with major cascading effects. (March 19, 2025)

Learn More

Vulnerabilities

Cybercrime

In an effort to combat the growing threat of financial loss through ATM Skimming, ATM maker Diebold has re-engineered components in some of its ATMs, including a re-engineered bezel and has launched a service to detect and prevent skimming activity.

In the third quarter of 2011, PandaLabs, Panda Security's malware research laboratory, said five million new malware samples were created, which, according to my math, breaks down to about 55,000 per day. It’s not news new to report that malware continues to be cranked out and an alarming rate. 

EMC today announced the availability of EMC SourceOne eDiscovery – Kazeon 4.6, the company’s eDiscovery solution that helps corporations, legal service providers, law firms and consultants provide eDiscovery, litigation support and other investigations.

Check Point Software Technologies is set to acquire governance, risk management and compliance (GRC) vendor Dynasec to help customers handle regulatory requirements.According to Check Point, the buy will bolster 3D Security, Check Point’s vision for combining policies, people and enforcement in the name of security. The financial terms of the deal are not being made public. However, Check Point did give hints regarding its plans for the new acquisition.

Internet security firm Bitdefender announced the availability of its new cloud-based endpoint security offering this week.Designed to deliver the benefits of an on-premise enterprise security solution, “Cloud Security for Endpoints by Bitdefender” is built to provide a simple and flexible solution to protect end-user systems and servers without the overhead of additional software, hardware and IT staff.

Event image poster

The leading global conference series for Operations, Control Systems and IT/OT Security professionals to connect on SCADA, DCS PLC and field controller cybersecurity.

Learn More

Application Security

Application Security

DryRun Security has raised $8.7 million in a seed funding round for its AI-powered application security solutions. 

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.