Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Latest Cybersecurity News

Cupertino’s security response team said the flaw was used in “an extremely sophisticated attack against specific targeted individuals.” 

French organizers said “the summit aims at promoting an ambitious French and European AI strategy” as advances in the sector have been led by the U.S. and China.

A critical vulnerability found in Orthanc servers can pose a serious risk to medical data and healthcare operations.

Microsoft has added more Copilot consumer products to its bug bounty program and is offering higher rewards for medium-severity vulnerabilities.

HPE is notifying an unknown number of individuals that Russian hackers accessed their personal information in a December 2023 attack.

Evan Light was sentenced to 20 years in federal prison for hacking an investment holdings company and stealing $37 million in cryptocurrency.

Memorial Hospital and Manor says 120,000 people had their personal information stolen in a November 2024 ransomware attack.

News analysis: The big AI platforms are emerging as frontline early warning systems, detecting nation-state hackers at the outset of their campaigns. Can this help save the threat intel industry?

SolarWinds will become a privately held company following its acquisition by Turn/River Capital for $4.4 billion in cash. 

ThreatMate has raised $3.2 million in seed funding for its AI-powered attack surface management solution for MSPs.

Noteworthy stories that might have slipped under the radar: NanoLock Security ceases operations, NSO publishes transparency report, cybersecurity salaries data.  

People on the Move

Software giant Atlassian has named David Cross as its new CISO.

Dan Pagel has been named the new CEO of risk management and remediation firm Brinqa.

The City of Phoenix has promoted Mitch Kohlbecker to the role of Chief Information Security Officer.

Gigamon has promoted Tony Jarjoura to CFO and Ram Bhide has been hired as Senior VP of engineering.

Cloud security firm Mitiga has appointed Charlie Thomas as Chief Executive Officer.

More People On The Move
iPhone security iPhone security

Cupertino’s security response team said the flaw was used in “an extremely sophisticated attack against specific targeted individuals.” 

Threat Intelligence Report Threat Intelligence Report

News analysis: The big AI platforms are emerging as frontline early warning systems, detecting nation-state hackers at the outset of their campaigns. Can this help save the threat intel industry?

Turn/River Capital acquires SolarWinds Turn/River Capital acquires SolarWinds

SolarWinds will become a privately held company following its acquisition by Turn/River Capital for $4.4 billion in cash. 

Top Cybersecurity Headlines

Hospital Sisters Health System says the personal information of 883,000 individuals was compromised in a 2023 crippling cyberattack.

A bipartisan duo in the the U.S. House is proposing legislation to ban the Chinese artificial intelligence app DeepSeek from federal devices.

Spanish authorities have arrested an individual who allegedly hacked several high-profile organizations, including NATO and the US army.

SecurityWeek Industry Experts

More Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Examine the state of cybersecurity in the context of quantum computing and artificial intelligence. Discuss the implications of the new White House administration’s cybersecurity policies and how they will influence the industry’s direction in 2025 and beyond.

Register

Dive into critical topics such as incident response, threat intelligence, and attack surface management. Learn how to align cyber resilience plans with business objectives to reduce potential impacts and secure your organization in an ever-evolving threat landscape.

Watch Now

Upcoming Cybersecurity Events

The AI Risk Summit brings together security and risk management executives, AI researchers, policy makers, software developers and influential business and government stakeholders. [June 2025, Stay Tuned]

Learn More

SecurityWeek’s CISO Forum Summer Summit & Golf Classic will take place June 25-26 at the Ritz-Carlton, Half Moon Bay, CA

Learn More

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.(February 26, 2025)

Learn More

Supply Chain Security Summit
Join us as we explore the critical nature of software and vendor supply chain security issues with a focus on understanding how attacks against identity infrastructure come with major cascading effects. (March 19, 2025)

Learn More

Vulnerabilities

Cybercrime

Mocana, a San Francisco based company that focuses on mobile and smart device security solutions, announced today that it has received a strategic investment from Intel Capital, the global investment arm of chip giant Intel.

VMware and Samsung announced a partnership this week to deliver virtual desktops to mobile devices, enabling a new class of “dual persona” devices that could provide seamless and secure use of employee-owned IT devices for accessing both work and personal data.At the VMworld 2011 conference, the companies said they would collaborate by integrating both the VMware View desktop virtualization platform, and VMware Horizon Mobile with Samsung mobile devices, including its Galaxy S II and Galaxy Tab devices.

2011 State of Security Survey Investigates What Businesses are Doing About SecurityWith data breaches and cyber attacks constantly making headlines, it’s clear businesses continue to face challenges when it comes to securing IT assets and protecting company data. The good news – a new survey commissioned by Symantec has found IT security budgets and workforces appear to be reacting accordingly.

Antivirus Strategies for Virtualized EnvironmentsWe know by now that virtualized data centers and cloud deployments require more than the traditional physical security measures. They require security components that have been specifically developed for virtualization. These include firewalls, intrusion detection engines, compliance enforcement mechanisms, and antivirus protections.

A new worm targeting Microsoft Windows is squiggling its way around computer networks courtesy of weak passwords. Dubbed Morto, the worm doesn’t use a vulnerability, but instead propagates by compromising Remote Desktop connections on a network through brute forcing attacks. So far, the overall number of detections is relatively low - researchers at F-Secure put the number in the thousands – but reports of increased traffic on port 3389 prompted Microsoft to issue an advisory about the worm Aug. 28.

Netherlands-based DigiNotar, a subsidiary of VASCO Data Security, disclosed that an intrusion into its Certificate Authority (CA) infrastructure resulted in the fraudulent issuance of SSL certificates for several domains, including Google.com and CIA.gov.The fraudulent SSL certificate could be used by an attacker to masquerade as any subdomain of google.com, and could be used to spoof content, perform phishing attacks, or perform man-in-the-middle attacks against Web browsers.

Today at VMworld Dell announced its first public and hybrid cloud offering, with the availability of the Dell Cloud based on VMware vCloud Datacenter Services. Designed to provide a multi-tenant environment for running virtual systems, the new cloud services from Dell offer enterprise-class, secure, public, private and hybrid clouds.

Hurricane Irene Scams: Be Cautious as Cybercriminals Look to CapitalizeAs hurricane Irene makes landfall, we once again find ourselves on the brink of a natural disaster triggering millions of people to search the Web and social media channels for news and additional information, both out of necessity, and curiosity. Such events are prime opportunities for scammers and other cybercriminals to line their pockets.

Anonymous & San Francisco’s BART ProtestsI was in the middle of my high school years when the song “San Francisco (Be Sure to Wear Some Flowers in Your Hair)” by The Mamas & the Papas became an instant hit in the United States, England and most of Europe. It even became a rallying song for Czechoslovakia’s 1968 Prague Spring uprising. The world changed.

Managing Risks of Social Media in the EnterpriseBetween the launch of Google + and recent announcements from Twitter and Facebook, social network security has been front and center in the press during the past several days. While the changes are unlikely to diminish attackers’ interest in social networks, the talk about privacy once again underscores the importance of developing sound acceptable use policies for your organization.

Event image poster

The leading global conference series for Operations, Control Systems and IT/OT Security professionals to connect on SCADA, DCS PLC and field controller cybersecurity.

Learn More

Application Security

Cloud Security

Application Security

APIs are easy to develop, simple to implement, and frequently attacked. They are  prime and lucrative targets for cybercriminals. 

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.