Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Latest Cybersecurity News

The backdoor’s destructive capabilities include a standalone wiper, ransomware encryption, and a multi-pass wiping command.

Researchers demonstrate adversarial hallucination squatting against popular AI assistants to achieve remote code execution.

A Go module is used to load PowerShell code that fetches a resolver from public dead drops to execute Windows malware.

The Israeli company has developed a cryptographic posture and post-quantum cryptography management platform.

Two announcements on July 7, 2026, demonstrate the government’s determination to improve the level of cybersecurity within the UK.

Buffer overflow, DoS, command injection, SSRF, authentication bypass, and other types of vulnerabilities have been found in PAN-OS software.

Hackers exploited a zero-day vulnerability in a third-party system to access a KDDI email system for ISPs.

Affecting every major distribution since 2011, the Linux kernel vulnerability allows attackers to gain root access.

The privilege escalation vulnerability tracked as CVE-2026-50656 has been patched with a Microsoft Malware Protection Engine update.

Hackers accessed the institution’s internal network and deleted two drives containing employee, student, and university data.

Wiz has disclosed the details of a new AI coding assistant attack method it has dubbed GhostApproval.

The security refresh resolves 13 use-after-free bugs, including two critical-severity flaws found by Google.

The Spanish startup has closed an extended pre-seed funding round two months after launching its digital identity protection platform.

AI hacking AI hacking

Researchers demonstrate adversarial hallucination squatting against popular AI assistants to achieve remote code execution.

Linux vulnerability Linux vulnerability

Affecting every major distribution since 2011, the Linux kernel vulnerability allows attackers to gain root access.

Windows security Windows security

The privilege escalation vulnerability tracked as CVE-2026-50656 has been patched with a Microsoft Malware Protection Engine update.

Top Cybersecurity Headlines

Wiz has disclosed the details of a new AI coding assistant attack method it has dubbed GhostApproval.

The professional services giant says it contained the incident, remediated its source, and experienced no operational or service delivery impact.

Cisco says the threat actor behind the LapDogs campaign has expanded its SOHO router malware toolkit with LongLeash, DogLeash, and JarLeash backdoors.

SecurityWeek Industry Experts

More Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join this live webinar as we break down why email-layer defenses alone can’t keep pace with the modern phishing ecosystem, how agentic AI is changing the capacity equation for security teams, and more.

Register

This year’s summit will help organizations learn how to utilize tools, controls, and design models needed to properly secure cloud environments. Interact with leading solution providers and other end users facing similar challenges in securing a variety of cloud deployments.

Register

Upcoming Cybersecurity Events

Cloud Security Summit 2026

SecurityWeek’s 2026 Cloud Security Summit will help organizations learn how to utilize tools, controls, and design models needed to properly secure cloud environments.
[July 15, 2026 | Virtual]

Read More
AI Risk Summit: Aug 11-12, 2026 (In-Person)

SecurityWeek’s AI Risk Summit is the leading conference where technology, security, and risk leaders converge with AI researchers, developers, and policy makers shaping the future of enterprise AI.
[August 11-12, 2026 | In-Person]

Learn More
CodeSecCon 2026

SecurityWeek’s CodeSecCon 2026 will bring together developers and cybersecurity professionals to revolutionize the way applications are built, secured, and maintained.
[August 19, 2026 | Virtual]

Read More
Attack Surface Management Summit 2026

SecurityWeek’s 2026 Attack Surface Management Summit will evaluate how organizations can protect corporate assets and reduce their attack surface in a modern security program.
[September 16, 2026 | Virtual]

Read More

Vulnerabilities

Cybercrime

Data and voice communications provider, MegaPath, has entered the growing Managed Security Services market this week, announcing a suite of Security as a Service (SaaS) offerings.MegaPath was founded in 1996 and merged with Speakeasy and Covad Communications in 2010. MegaPath Managed Security Services customers aren’t required to be MegaPath connectivity customers, as it offers on-premises security services, allowing customers to leverage the Internet connection of their choice.

Malware targeting social networks appears to be the latest growing threat to mobile security. With people being “always connected” on mobile devices, and often not a full screen to easily see URL’s and click through destinations, it’s no surprise that mobile devices are appearing as the first device users are responding to threats with.

AirTight Delivers Managed Wi-Fi Access, PCI Scanning and Network Security in a Single Device AirTight Networks, a provider of Wireless intrusion prevention systems and services, has announced the launch of AirTight Cloud Services, a new suite of managed services which adds Wi-Fi access to its portfolio of on-demand wireless security and compliance solutions.

Strategies and Considerations for Securing Private Cloud EnvironmentsOn the back end of private cloud environments you’ll find multiple flavors of virtual software loaded directly onto hardware. This virtual software is essentially the host operating system. VM Host is the base hypervisor and hardware. Think of it as the house. The guest operating systems (Guest OSs) are the virtual machines living in the house.

Security Professionals are Plagued with Lack of Resources, too Much Work, too Little Time, and Competing Priorities. As a Result, we end up with Incomplete Security. If information security were simple, I would have been out of a job years ago. But we don't need to make it more complex than it is.

SonicWALL released its 2010 end-of-year summary of cyber-security intelligence today, revealing global trends in malicious network activity and application usage across its customer base.SonicWALL’s data, collected from over 30 countries worldwide, showed spikes in vulnerabilities on Mondays and Tuesdays, points to seasonal trends in threats associated with specific types of malware, with the most active time for threat-related traffic in the United States being between the hours of 10:00 AM. and 11:00 AM PST.

Zscaler, a provider of cloud-based security services, has hired Dr. Amit Sinha who will join the company as Chief Technology Officer to lead research and development initiatives of the company's emerging technologies.

Comprehensive Full-Disk Encryption Solution Helps Organizations Deploy, Maintain and Manage Data Security Protection Transparently Across Multiple PlatformsFull-disk encryption software provider WinMagic today launched the latest release of its full-disk encryption solution that helps organizations seamlessly data protection with existing security policies on Windows 7 (32 and 64 bit)/Vista/XP, Mac OS X Tiger/Leopard/Snow Leopard and/or Linux platforms.

Sourcefire Acquires Immunet Adding Cloud-Based Anti-Malware Technology to its PortfolioSourcefire announced late today that is has acquired Immunet, a cloud-based anti-malware technology company. Under the agreement, Sourcefire will pay $21 million in cash for Immunet, including $17 million up front and $4 million over the next 18 months upon achievement of delivery milestones.

Event image poster

The leading global conference series for Operations, Control Systems and IT/OT Security professionals to connect on SCADA, DCS PLC and field controller cybersecurity.

Learn More

Cloud Security

Cloud Security

Hackers were seen making over 81 million login attempts originating from systems associated with hosting provider LSHIY.

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.