Now on Demand: Zero Trust Strategies Summit - Access All Sessions
Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Latest Cybersecurity News

CISOs from Box and Smartsheet discuss the route toward, the role within, and the future of being a successful CISO.

Splunk has released patches for multiple vulnerabilities in Splunk Enterprise, including two high-severity remote code execution flaws.

Door access controllers remain vulnerable to remote hacker attacks for extended periods of time, a researcher has found.

Automattic has rolled out updates for 101 Jetpack versions released over the past eight years to resolve a critical vulnerability.

Entry points in packages across multiple programming languages are susceptible to exploitation in supply chain attacks.

Intel and AMD respond to new attack methods named TDXDown and CounterSEVeillance that can be used against TDX and SEV technology.

With all sessions now available on demand, the online summit is laser focused on helping organizations to level up their Identity and Zero Trust security strategies.

Gryphon Healthcare and Tri-City Medical Center have disclosed data breaches collectively impacting over 500,000 individuals.

Fortinet believes state-sponsored threat actors are behind the recent attacks involving exploitation of Ivanti CSA zero-days.

The Iran-linked APT OilRig has intensified cyber operations against the United Arab Emirates and the broader Gulf region.

Juniper Networks has announced patches for dozens of vulnerabilities in Junos OS, Junos OS Evolved, and third-party components.

People on the Move

Former Darktrace CEO Poppy Gustafsson has joined the UK government as Minister for Investment.

Nupur Goyal has joined cloud identity security and management solutions provider Saviynt as VP of Product Marketing.

Threat intelligence firm Intel 471 has appointed Mark Huebeler as its COO and CFO.

Omkhar Arasaratnam, former GM at OpenSSF, is LinkedIn’s first Distinguised Security Engineer

Defense contractor Nightwing has appointed Tricia Fitzmaurice as Chief Growth Officer.

More People On The Move
Trusted execution environment (TEE) vulnerabilities Trusted execution environment (TEE) vulnerabilities

Intel and AMD respond to new attack methods named TDXDown and CounterSEVeillance that can be used against TDX and SEV technology.

Iran cyberattacks Iran cyberattacks

The Iran-linked APT OilRig has intensified cyber operations against the United Arab Emirates and the broader Gulf region.

Fidelity Data Breach Fidelity Data Breach

Fidelity Investments is notifying 77,000 individuals that their personal information was compromised in a data breach.

Top Cybersecurity Headlines

OpenAI has disrupted 20 cyber and influence operations this year, including the activities of Iranian and Chinese state-sponsored hackers.

SecurityWeek talked to David Weston, VP enterprise and OS security at Microsoft, to discuss Windows kernel access and safe deployment practices.

Mozilla has released a Firefox 131 update to resolve CVE-2024-9680, a code execution vulnerability exploited in the wild as a zero-day.

SecurityWeek Industry Experts

More Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join SecurityWeek and Hitachi Vantara for this this webinar to gain valuable insights and actionable steps to enhance your organization’s data security and resilience.

Register

The leading industrial cybersecurity conference for Operations, Control Systems and IT/OT Security professionals to connect on SCADA, DCS PLC and field controller cybersecurity.

Register

Upcoming Cybersecurity Events

The AI Risk Summit brings together security and risk management executives, AI researchers, policy makers, software developers and influential business and government stakeholders. [June 25-26, Ritz-Carlton, Half Moon Bay, CA]

Learn More

SecurityWeek’s CISO Forum Summer Summit & Golf Classic will take place June 25-26 at the Ritz-Carlton, Half Moon Bay, CA

Learn More

The Attack Surface Management Summit will dig into the transformative trends driving data security and provide insights and strategies to take full advantage of attack surface management technologies. (September 18, 2024)

Learn More

SecurityWeek’s Identity & Zero Trust Strategies Summit is laser focused on helping organizations to level up their Identity and Zero Trust security strategies. (Oct. 9, 2024)

Learn More

Vulnerabilities

Cybercrime

While companies increasingly rely on social media for business marketing, support and collaboration, they often ignore the associated risks such as non-compliance, data loss and legal issues. Autonomy Corporation, an enterprise software company with dual headquarters in Cambridge, United Kingdom and San Francisco, CA, hopes to help organizations manage these risks. Autonomy today announced the availability of “Autonomy Social Media Governance,” a solution designed to monitor, govern, and protect organizations with employees engaging on social media sites.

Passware, Inc., a provider of password recovery, decryption, and electronic evidence discovery software for corporations and law enforcement organizations, announced Passware Kit 10, the first commercially available software to accelerate distributed password recovery using both graphics processing units (GPUs) and Tableau TACC1441 hardware.

BIND, the Berkeley Internet Name Domain, is the market share leader for domain name system (DNS) server software, with something like 85 per cent of installations worldwide. That's getting into Windows' market-share territory, so it's hardly surprising that the software has received more than its fair share of security criticism over the years.

Malvertising Attacks Put as Much as $600 Million in Digital Advertising Revenue at Risk in A Single Month; Anti-Malvertising Technology Helps Publishers Fight BackDigital advertising firm, the Rubicon Project, today announced it has acquired SiteScout, a provider of anti-malware security technology based in Seattle.

Online fraud prevention software firm, Guardian Analytics, today announced that it has raised $9 million in funding, led by Sutter Hill Ventures with participation by existing investor Foundation Capital. In conjunction with the funding, Greg Sands of Sutter Hill Ventures will join the board of directors at Guardian Analytics.

Anti-spam industry organization, the Messaging Anti-Abuse Working Group (MAAWG), announced today that it is offering free training to educate messaging professionals on the latest technologies to help prevent spam and fraudulent messages from reaching consumers.

Event image poster

The leading global conference series for Operations, Control Systems and IT/OT Security professionals to connect on SCADA, DCS PLC and field controller cybersecurity.

Learn More

Application Security

Application Security

Application security and vulnerability management platform DefectDojo has raised $7 million in Series A funding.

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.