Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Latest Cybersecurity News

CrowdStrike on Saturday provided technical information and remediation guidance to help organizations impacted by the faulty software update that trigged massive IT outages across the globe on Friday.  

CrowdStrike says a routine sensor configuration update pushed to Windows OS triggered a logic error that blue-screened computers worldwide.

Judge dismissed SEC lawsuit charging SolarWinds and CISO Timothy Brown with hiding security problems before and after the SUNBURST supply chain compromise.

SonicWall warns that a simple GET request is enough to exploit a recent Splunk Enterprise vulnerability.

Over a dozen tech and cloud companies have created a new coalition for advancing security measures for AI.

Noteworthy stories that might have slipped under the radar: threats and risks to 2024 Summer Olympics, cybersecurity funding soars, Cellebrite hacked Trump shooter’s phone. 

The personal and health information of 12.9 million was stolen in a ransomware attack at Australian digital prescription services provider MediSecure.

SolarWinds has released patches for 13 vulnerabilities in Access Rights Manager, including eight critical bugs.

Organizations worldwide are reporting major outages due to Windows system crashes caused by a bad CrowdStrike update.

The Pwn2Own hacking competition is moving to Ireland and $300,000 is being offered for a zero-click exploit against WhatsApp. 

The risk of suffering a ransomware attack is high and organizations must take proactive steps to protect themselves and minimize the impact of a potential breach.

People on the Move

SaaS security company AppOmni has hired Joel Wallenstrom as its General Manager.

FTI Consulting has appointed Brett Callow as Managing Director in its Cybersecurity & Data Privacy Communications practice.

Mobile security firm Zimperium has welcomed David Natker as its VP of Global Partners and Alliances.

CISA has appointed Jeff Greene as Executive Assistant Director for Cybersecurity and Trent Frazier as Assistant Director for Stakeholder Engagement.

David Chétrit has been appointed the CEO of Kudelski Security.

More People On The Move
CrowdStrike Remediation Information CrowdStrike Remediation Information

CrowdStrike on Saturday provided technical information and remediation guidance to help organizations impacted by the faulty software update that trigged massive IT outages across the globe on Friday.  

CrowdStrike Remediation Information CrowdStrike Remediation Information

CrowdStrike says a routine sensor configuration update pushed to Windows OS triggered a logic error that blue-screened computers worldwide.

CrowdStrike BSOD outage CrowdStrike BSOD outage

Organizations worldwide are reporting major outages due to Windows system crashes caused by a bad CrowdStrike update.

Top Cybersecurity Headlines

Teixeira, who was part of the 102nd Intelligence Wing at Otis Air National Guard Base in Massachusetts, worked as a cyber transport systems specialist.

Researchers show how the Port Shadow technique against VPNs can allow MitM attacks, enabling threat actors to intercept and redirect traffic. 

Pharmacy chain Rite Aid says 2.2 million people are impacted by a recent data breach for which the RansomHub group has taken credit.

SecurityWeek Industry Experts

More Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Learn how to utilize tools, controls, and design models needed to properly secure cloud environments.

Register

The leading industrial cybersecurity conference for Operations, Control Systems and IT/OT Security professionals to connect on SCADA, DCS PLC and field controller cybersecurity.

Register

Upcoming Cybersecurity Events

The AI Risk Summit brings together security and risk management executives, AI researchers, policy makers, software developers and influential business and government stakeholders. [June 25-26, Ritz-Carlton, Half Moon Bay, CA]

Learn More

SecurityWeek’s CISO Forum Summer Summit & Golf Classic will take place June 25-26 at the Ritz-Carlton, Half Moon Bay, CA

Learn More

SecurityWeek’s annual cloud security virtual summit returns with a deliberate focus on exposed attack surfaces and weaknesses in public cloud infrastructure and APIs.

Learn More

SecurityWeek’s Identity & Zero Trust Strategies Summit is laser focused on helping organizations to level up their Identity and Zero Trust security strategies.

Learn More

Vulnerabilities

Cybercrime

Social Media Acceptable Usage Policy - Why Allow Web 2.0 to Be Used in Business?The consumerization of IT is affecting all aspects of the way we work.  As Web 2.0 technologies continue to gain popularity amongst employees, IT departments are struggling to understand and manage the challenges.

Variant of Popular ZeuS Malware Targets U.S. Military Around the WorldMalware created with the ZeuS toolkit is targeting members of the U.S. military with an email asking them to update their account information online.Members of the U.S. Military have been receiving emails similar to the following: Targets of this scam will receive an email with the following text:Dear Bank of America Military Bank customer:

Do these firms really care about McAfee shareholders, or is this just an attempt to rake in some cash for the firms themselves?Intel, the world’s largest computer chipmaker, will pay $48 per share in cash for McAfee – a whopping 60 percent premium over McAfee's $29.93 closing price on Wednesday, and one that’s in line with other recent valuations in software and tech deals.

Intel on Thursday said it has entered into a definitive agreement to buy McAfee, the computer security software company, for $7.68 billion in cash, puchasing of all of the company’s common stock at $48 per share. McAfee shares closed at $29.93 at the end of trading on Wednesday.

Top 10 Most Dangerous Celebrities OnlineLooking for some hot photos or gossip on your favorite celebrity? Be careful. If you’re looking to dig up some dirt on Cameron Diaz there is a ten percent chance you’ll end up on a malicious site, according to McAfee.

The second quarter Phishing Trends Report from Internet security provider IID  (Internet Identity) indicates that there has been a significant switch in the tactics of cyber criminals, with at least one major gang shifting its entire focus away from phishing to Zeus malware, often referred to as man-in-the-browser malware.

HP to Acquire Fortify SoftwareHP (NYSE:HPQ) announced today that it has signed a definitive agreement to acquire Fortify Software, a privately held software security assurance company based in San Mateo, California.

Entrust IdentityGuard 9.3 Released - Adds Out-of-Band AuthenticationIdentity-based security provider Entrust has announced the immediate availability of out-of-band authentication via its new mobile application, IdentityGuard Mobile. The application is now a component of the company’s Entrust IdentityGuard 9.3 layered security system for mobile devices.

"Contrary to any rumors, the security architecture is the same around the world and RIM truly has no ability to provide its customers’ encryption keys." Authorities in India, in and effort to keep militants and spies off its mobile networks, is demanding access to email and messaging services provided by Research In Motion, maker of BlackBerry.India has given Research In Motion a deadline of August 31st to comply with a request to gain access to encrypted BlackBerry messaging services within...

Mobile Virus Authors Expected to see Android Systems as a Growing TargetGoogle's Android mobile OS has been declared the fastest growing mobile platform according to recent reports, with over 160,000 Android devices being activated every day. This astronomical growth is credited to a friendly user interface and openness of the platform.However, Android's openness has turned its online app store, Android Market, into a breeding ground for malicious applications capable of stealing sensitive user information from the mobile phones. 

Event image poster

The leading global conference series for Operations, Control Systems and IT/OT Security professionals to connect on SCADA, DCS PLC and field controller cybersecurity.

Learn More

Application Security

Application Security

CISA says a SILENTSHIELD red team assessment found gaping holes in the security posture of a federal civilian executive branch organization.

Cloud Security

Cloud Security

Join us as we explore the latest trends in the world of SaaS security, cyberattacks against cloud infrastructure, data security posture management (DSPM), and...