Security Experts:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Latest Cybersecurity News

Microsoft is urging customers to install the latest Exchange Server updates and harden their environments to prevent malicious attacks.

Iranian APT Moses Staff is leaking data stolen from Saudi Arabia government ministries under the recently created Abraham’s Ax persona

US government reminds the public that a reward of up to $10 million is offered for information on cybercriminals, including members of the Hive operation.

Websites of German airports, administration bodies and banks were hit by DDoS attacks attributed to Russian hacker group Killnet

The FBI dismantled the network of the prolific Hive ransomware gang and seized infrastructure in Los Angeles that was used for the operation.

Tenable has launched a $25 million venture fund to place bets on early-stage startups in the exposure management space.

Zacks Investment Research is informing 820,000 individuals that their personal data was compromised in a data breach.

How threat intelligence is critical when justifying budget for GRC personnel, and for threat intelligence, incident response, security operations and CISO buyers.

The Hive ransomware website has been seized as part of an operation that involved law enforcement in 10 countries.

CISA, NSA, and MS-ISAC issued an alert on the malicious use of RMM software to steal money from bank accounts.

The UK’s NCSC has issued a security advisory to warn about spearphishing campaigns conducted by two unrelated Russian and Iranian hacker groups.

Chinese threat actor DragonSpark has been using the SparkRAT open source backdoor in attacks targeting East Asian organizations.

Tens of cybersecurity companies have announced cutting staff over the past year, in some cases significant portions of their global workforce.

Hive ransomware shut down Hive ransomware shut down

The Hive ransomware website has been seized as part of an operation that involved law enforcement in 10 countries.

cybersecurity layoffs cybersecurity layoffs

Tens of cybersecurity companies have announced cutting staff over the past year, in some cases significant portions of their global workforce.

AI Prompt Engineering, Next Generation Social Engineering AI Prompt Engineering, Next Generation Social Engineering

The release of OpenAI’s ChatGPT in late 2022 has demonstrated the potential of AI for both good and bad.

Top Cybersecurity Headlines

Microsoft is urging customers to install the latest Exchange Server updates and harden their environments to prevent malicious attacks.

Iranian APT Moses Staff is leaking data stolen from Saudi Arabia government ministries under the recently created Abraham’s Ax persona

US government reminds the public that a reward of up to $10 million is offered for information on cybercriminals, including members of the Hive…

Websites of German airports, administration bodies and banks were hit by DDoS attacks attributed to Russian hacker group Killnet

SecurityWeek Industry Experts

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Upcoming Virtual Events

Attack Surface Management Summit

As network defenders adopt Attack Surface Management tools to continuously monitor for signs of weaknesses, this event will share best practices and actionable information to reduce risk from exposed attack surfaces.

Learn More
Ransomware Resilience & Recovery Summit

This event will separate hype from reality. SecurityWeek’s Ransomware Resilience and Recovery Summit will help cybersecurity teams to plan, prepare, and recover from ransomware incidents that continue to impose major costs businesses.

Learn More
Supply Chain Security Summit

The surge in software supply chain attacks has sent defenders scrambling to find mitigations and solutions. This event will address the complex nature of the problem, best practices for mitigating security issues, and tools and frameworks available.

Learn More
Zero Trust Strategies Summit

Zero Trust is more than a marketing buzzword. In this event, security experts will decipher the confusing world of Zero Trust, and share war stories on securing organizations by eliminating implicit trust and continuously validating every stage of digital interaction.

Learn More

Vulnerabilities

Cybercrime

Hackers rarely hack in anymore. They log in using stolen, weak, default, or otherwise compromised credentials. That’s why it’s so critical to break the password dependency cycle. But how can this be done?

Cybersecurity-related risk is a top concern, so boards need to know they have the proper oversight in place. Even as first-timers, successful CISOs make for successful board members.

Event image poster

The leading global conference series for Operations, Control Systems and IT/OT Security professionals to connect on SCADA, DCS PLC and field controller cybersecurity.

Learn More

Application Security

Application Security

PayPal is alerting roughly 35,000 individuals that their accounts have been targeted in a credential stuffing campaign.

Cloud Security

Cloud Security

VMware vRealize Log Insight vulnerability allows an unauthenticated attacker to take full control of a target system.