Security Experts:

WRITE FOR US

LATEST SECURITY NEWS HEADLINES

rss icon

Apple Scraps CSAM Detection Tool for iCloud Photos
Vulnerabilities Allow Researcher to Turn Security Products Into Wipers
WAFs of Several Major Vendors Bypassed With Generic Attack Method
Iranian Hackers Deliver New 'Fantasy' Wiper to Diamond Industry via Supply Chain Attack
Lighting Giant Acuity Brands Discloses Two Data Breaches
long dotted

NEWS & INDUSTRY UPDATES

CISA Releases Final IPv6 Security Guidance for Federal Agencies
The IPv6 guidance provides federal agencies with information on IPv6 and its security features, along with security considerations on the network protocol. [Read More]
Exploits Swirling for Major Security Defect in Apache Log4j
Enterprise security response teams are bracing for impact as public exploits -- and in-the-wild attacks -- circulate for a remote code execution flaw in the Apache Log4j Java logging utility. [Read More]
Mandiant Attributes Ghostwriter APT Attacks to Belarus
Mandiant researchers says narratives used in the Ghostwriter information operations campaign are aligned with Belarusian government interests, suggesting at least partial involvement. [Read More]
GitHub Confirms Another Major NPM Security Defect
Microsoft-owned GitHub warns that a pair of newly discovered vulnerabilities continue to expose the soft underbelly of the open-source software supply chain. [Read More]
SolarWinds Outlines 'Triple Build' Software Development Model to Secure Supply Chain
SolarWinds describes a new triple build model designed to ensure that software builds can never again be compromised in the way that Nobelium injected the Sunburst malware into its Orion software. [Read More]
Mozilla Blocks Malicious Firefox Add-Ons Abusing Proxy API
Mozilla says it blocked a series of malicious Firefox add-ons that misused the proxy API that extensions use to proxy web requests. [Read More]
Endpoint Security Platform Kolide Banks $17 Million Investment
Endpoint security platform Kolide gets a fresh round of capital from venture capital investors. [Read More]
CISA, FBI Warn of Increase in Ransomware Attacks on Holidays
The two agencies warn of a noticeable increase in ransomware attacks on holidays and weekends, when offices are closed. [Read More]
New iOS Zero-Click Exploit Defeats Apple 'BlastDoor' Sandbox
The University of Toronto's Citizen Lab finds a new iOS zero-click exploit in an iPhone surveillance campaign targeting bloggers, activists and dissidents in Bahrain. [Read More]
Report: Iranian APT Hexane Targets Israeli Companies
A report from ClearSky documents a threat actor has been targeting multiple organizations in Israel using supply chain tools and impersonating known companies. [Read More]

FEATURES, INSIGHTS // Whitepapers

rss icon

Mike Lennon's picture
SecurityWeek Top 25 Picks for 2010
Mike Lennon - Cyberwarfare
Enjoy this selection of top picks for 2010, listed in no particular order. Happy New Year!
Read full story