Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Latest Cybersecurity News

The backdoor’s destructive capabilities include a standalone wiper, ransomware encryption, and a multi-pass wiping command.

Researchers demonstrate adversarial hallucination squatting against popular AI assistants to achieve remote code execution.

A Go module is used to load PowerShell code that fetches a resolver from public dead drops to execute Windows malware.

The Israeli company has developed a cryptographic posture and post-quantum cryptography management platform.

Two announcements on July 7, 2026, demonstrate the government’s determination to improve the level of cybersecurity within the UK.

Buffer overflow, DoS, command injection, SSRF, authentication bypass, and other types of vulnerabilities have been found in PAN-OS software.

Hackers exploited a zero-day vulnerability in a third-party system to access a KDDI email system for ISPs.

Affecting every major distribution since 2011, the Linux kernel vulnerability allows attackers to gain root access.

The privilege escalation vulnerability tracked as CVE-2026-50656 has been patched with a Microsoft Malware Protection Engine update.

Hackers accessed the institution’s internal network and deleted two drives containing employee, student, and university data.

Wiz has disclosed the details of a new AI coding assistant attack method it has dubbed GhostApproval.

The security refresh resolves 13 use-after-free bugs, including two critical-severity flaws found by Google.

The Spanish startup has closed an extended pre-seed funding round two months after launching its digital identity protection platform.

AI hacking AI hacking

Researchers demonstrate adversarial hallucination squatting against popular AI assistants to achieve remote code execution.

Linux vulnerability Linux vulnerability

Affecting every major distribution since 2011, the Linux kernel vulnerability allows attackers to gain root access.

Windows security Windows security

The privilege escalation vulnerability tracked as CVE-2026-50656 has been patched with a Microsoft Malware Protection Engine update.

Top Cybersecurity Headlines

Wiz has disclosed the details of a new AI coding assistant attack method it has dubbed GhostApproval.

The professional services giant says it contained the incident, remediated its source, and experienced no operational or service delivery impact.

Cisco says the threat actor behind the LapDogs campaign has expanded its SOHO router malware toolkit with LongLeash, DogLeash, and JarLeash backdoors.

SecurityWeek Industry Experts

More Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join this live webinar as we break down why email-layer defenses alone can’t keep pace with the modern phishing ecosystem, how agentic AI is changing the capacity equation for security teams, and more.

Register

This year’s summit will help organizations learn how to utilize tools, controls, and design models needed to properly secure cloud environments. Interact with leading solution providers and other end users facing similar challenges in securing a variety of cloud deployments.

Register

Upcoming Cybersecurity Events

Cloud Security Summit 2026

SecurityWeek’s 2026 Cloud Security Summit will help organizations learn how to utilize tools, controls, and design models needed to properly secure cloud environments.
[July 15, 2026 | Virtual]

Read More
AI Risk Summit: Aug 11-12, 2026 (In-Person)

SecurityWeek’s AI Risk Summit is the leading conference where technology, security, and risk leaders converge with AI researchers, developers, and policy makers shaping the future of enterprise AI.
[August 11-12, 2026 | In-Person]

Learn More
CodeSecCon 2026

SecurityWeek’s CodeSecCon 2026 will bring together developers and cybersecurity professionals to revolutionize the way applications are built, secured, and maintained.
[August 19, 2026 | Virtual]

Read More
Attack Surface Management Summit 2026

SecurityWeek’s 2026 Attack Surface Management Summit will evaluate how organizations can protect corporate assets and reduce their attack surface in a modern security program.
[September 16, 2026 | Virtual]

Read More

Vulnerabilities

Cybercrime

Device Fingerprinting and Mobile Transactions Were on the Rise in 2010; What's in Store for Fraud Prevention in 2011?As companies continue to conduct more transactions online, they need tools to stop online fraud while protecting customer privacy without the use of cookies and cookie equivalents such as local stored objects.

BeyondTrust, a provider of privilege delegation and authorization management solutions, has joined forces with IT security risk and compliance solutions provider, Qualys, on a technology partnership that will enable customers to manage user access and privileges while expanding the coverage of security scans for a more complete view of IT security and compliance.

Acquisition will Expand Dell’s Services Portfolio with Security-as-a-Service Solutions Dell today announced it has signed a definitive agreement to acquire Atlanta based SecureWorks Inc., a provider of information-security services. SecureWorks provides Security-as-a-Service solutions including Managed-Security Services, Security and Risk Consulting Services and Threat Intelligence.

Managing PCI Compliance -  How to Improve Your PCI Compliance This YearSurvive the holidays? How about your company’s PCI compliance? It seems that for many businesses, the first thing that suffers during the holiday crunch is anything that doesn’t bring in additional sales and revenues. Among them, maintaining PCI compliance.

Samsung this week announced three new lines of external hard disk drives, including two new portable drives and a new desktop drive targeted to the consumer market, but also ideal for small businesses. Each new drive features "SuperSpeed USB 3.0" interfaces that provide data transfer rates of up to 5 gigabits per second, and 1TB, 1.5TB and 2TB storage capacities.

As the year comes to a close, we thought it would be appropriate to highlight some of the best stories and columns for 2010. Here is a selection of top picks for the year, based on several factors including number of reads, inbound links, tweets, and SecurityWeek staff selections. Enjoy this selection of top picks for 2010, listed in no particular order. Happy New Year!

Ohio Man Sentenced to 30 Months in Prison for Selling More Than 35,000 Illegally Copied Video Games Over the InternetThe FBI reported this week that Qiang “Michael” Bi of Powell, Ohio was sentenced to 30 months in prison for selling more than 35,000 illegally copied computer games over the Internet between 2005 and 2009.

American Honda Motor Co. Warns of Data BreachThe American Honda Motor Co., has alerted Acura and Honda Customers that have established an online account for features such as Honda Financial Services or Acura Financial Services, of a recent data breach. Additionally, people who provided information to an authorized dealer during a vehicle transaction or Requested more information through an American Honda Motor Co., Inc. web site likely had information compromised.

Event image poster

The leading global conference series for Operations, Control Systems and IT/OT Security professionals to connect on SCADA, DCS PLC and field controller cybersecurity.

Learn More

Cloud Security

Cloud Security

Hackers were seen making over 81 million login attempts originating from systems associated with hosting provider LSHIY.

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.