Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Latest Cybersecurity News

A Go module is used to load PowerShell code that fetches a resolver from public dead drops to execute Windows malware.

The Israeli company has developed a cryptographic posture and post-quantum cryptography management platform.

Two announcements on July 7, 2026, demonstrate the government’s determination to improve the level of cybersecurity within the UK.

Buffer overflow, DoS, command injection, SSRF, authentication bypass, and other types of vulnerabilities have been found in PAN-OS software.

Hackers exploited a zero-day vulnerability in a third-party system to access a KDDI email system for ISPs.

Affecting every major distribution since 2011, the Linux kernel vulnerability allows attackers to gain root access.

The privilege escalation vulnerability tracked as CVE-2026-50656 has been patched with a Microsoft Malware Protection Engine update.

Hackers accessed the institution’s internal network and deleted two drives containing employee, student, and university data.

Wiz has disclosed the details of a new AI coding assistant attack method it has dubbed GhostApproval.

The security refresh resolves 13 use-after-free bugs, including two critical-severity flaws found by Google.

The Spanish startup has closed an extended pre-seed funding round two months after launching its digital identity protection platform.

Tracked as CVE-2026-11405, the vulnerability allows unauthenticated attackers to access a device’s web management interface.

The professional services giant says it contained the incident, remediated its source, and experienced no operational or service delivery impact.

Linux vulnerability Linux vulnerability

Affecting every major distribution since 2011, the Linux kernel vulnerability allows attackers to gain root access.

Windows security Windows security

The privilege escalation vulnerability tracked as CVE-2026-50656 has been patched with a Microsoft Malware Protection Engine update.

AI coding hack AI coding hack

Wiz has disclosed the details of a new AI coding assistant attack method it has dubbed GhostApproval.

Top Cybersecurity Headlines

The professional services giant says it contained the incident, remediated its source, and experienced no operational or service delivery impact.

Cisco says the threat actor behind the LapDogs campaign has expanded its SOHO router malware toolkit with LongLeash, DogLeash, and JarLeash backdoors.

Two newly disclosed critical vulnerabilities in Adobe ColdFusion and Langflow join two Joomla extension flaws in CISA’s Known Exploited Vulnerabilities catalog, with federal agencies given until July 10 to patch.

SecurityWeek Industry Experts

More Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join this live webinar as we break down why email-layer defenses alone can’t keep pace with the modern phishing ecosystem, how agentic AI is changing the capacity equation for security teams, and more.

Register

This year’s summit will help organizations learn how to utilize tools, controls, and design models needed to properly secure cloud environments. Interact with leading solution providers and other end users facing similar challenges in securing a variety of cloud deployments.

Register

Upcoming Cybersecurity Events

Cloud Security Summit 2026

SecurityWeek’s 2026 Cloud Security Summit will help organizations learn how to utilize tools, controls, and design models needed to properly secure cloud environments.
[July 15, 2026 | Virtual]

Read More
AI Risk Summit: Aug 11-12, 2026 (In-Person)

SecurityWeek’s AI Risk Summit is the leading conference where technology, security, and risk leaders converge with AI researchers, developers, and policy makers shaping the future of enterprise AI.
[August 11-12, 2026 | In-Person]

Learn More
CodeSecCon 2026

SecurityWeek’s CodeSecCon 2026 will bring together developers and cybersecurity professionals to revolutionize the way applications are built, secured, and maintained.
[August 19, 2026 | Virtual]

Read More
Attack Surface Management Summit 2026

SecurityWeek’s 2026 Attack Surface Management Summit will evaluate how organizations can protect corporate assets and reduce their attack surface in a modern security program.
[September 16, 2026 | Virtual]

Read More

Vulnerabilities

Cybercrime

Many organizations are putting their virtual infrastructures at risk as a result of hypervisor privileges and ‘data sprawl’ in virtual environments not being adequately addressed by current adoption of security technologies and policies, according to a study released today by CA Technologies.The study, "Security-An Essential Prerequisite for Success in Virtualization," surveyed 335 decision makers in 15 countries across Europe and the US.

Facebook is able to see a customer’s User ID, IP address and operating system if the customer is logged into Facebook at the time they visit a site that uses certain features of Facebook Social Plug-Ins. Does this sharing pose a serious privacy risk? “Those who cannot remember the past are condemned to repeat it.” - George Santayana

CellTrust, a provider of secure messaging and secure applications for mobile phones, announced that it is partnering with NewNet, a telecom infrastructure solutions company with deployments in more than 60 countries, in creating an integrated Short Message Service Center (SMSC) and Secure SMS solution for mobile operators worldwide.

Bredolab and Koobface Botnet Takedowns Lead to Lower Spam Levels in November Fortinet’s November 2010 Threat Landscape Report shows a 12 percent reduction in global spam in November after Dutch authorities took down the Bredolab network by taking more than 140 servers offline.

Palo Alto Networks' CEO Agrees to Resign Due to Differences in Leadership Philosophy Palo Alto Networks, the company best known for its next generation firewalls, is in search of a new CEO. The company announced that “due to differences in leadership philosophy,” the Board of Directors and CEO and President Lane Bess have agreed that he will resign from his position. Bess has served as CEO of Palo Alto Networks since July 2008.

Internet Routing - The Internet's leading architects have considered the rapid growth and fragmentation of core routing tables one of the most significant threats to the long-term stability and scalability of the Internet

Acquisition Helps Red Hat Move Ahead with Technology to Deploy, Manage and auto-scale Applications in The Cloud Red Hat today announced that it has acquired Makara, a Redwood City, California based developer of deployment and management solutions for applications in the cloud.

Event image poster

The leading global conference series for Operations, Control Systems and IT/OT Security professionals to connect on SCADA, DCS PLC and field controller cybersecurity.

Learn More

Cloud Security

Cloud Security

Hackers were seen making over 81 million login attempts originating from systems associated with hosting provider LSHIY.

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.