Featured

New Research Shows Potential of Electromagnetic Fault Injection Attacks Against Drones

drone, Featured, IoT, IoT Security /

New Research Shows Potential of Electromagnetic Fault Injection Attacks Against Drones 13/06/2023 at 16:53 By Eduard Kovacs New research conducted by IOActive shows the potential of electromagnetic fault injection (EMFI) attacks against drones. The post New Research Shows Potential of Electromagnetic Fault Injection Attacks Against Drones appeared first on SecurityWeek. This article is an excerpt […]

React to this headline:

Loading spinner

New Research Shows Potential of Electromagnetic Fault Injection Attacks Against Drones Read More »

Fortinet Warns Customers of Possible Zero-Day Exploited in Limited Attacks

Featured, Fortinet, Vulnerabilities, Zero-Day /

Fortinet Warns Customers of Possible Zero-Day Exploited in Limited Attacks 13/06/2023 at 11:50 By Eduard Kovacs Fortinet has warned customers that the critical CVE-2023-27997 vulnerability that was patched recently could be a zero-day exploited in limited attacks. The post Fortinet Warns Customers of Possible Zero-Day Exploited in Limited Attacks appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

Fortinet Warns Customers of Possible Zero-Day Exploited in Limited Attacks Read More »

New MOVEit Vulnerabilities Found as More Zero-Day Attack Victims Come Forward

Featured, MOVEit, Ransomware, Vulnerabilities /

New MOVEit Vulnerabilities Found as More Zero-Day Attack Victims Come Forward 12/06/2023 at 13:34 By Eduard Kovacs Researchers discover new MOVEit vulnerabilities related to the zero-day, just as more organizations hit by the attack are coming forward. The post New MOVEit Vulnerabilities Found as More Zero-Day Attack Victims Come Forward appeared first on SecurityWeek. This

React to this headline:

Loading spinner

New MOVEit Vulnerabilities Found as More Zero-Day Attack Victims Come Forward Read More »

BBC, British Airways, Novia Scotia Among First Big-Name Victims in Global Supply-Chain Hack

cybercrime, Featured, Ransomware /

BBC, British Airways, Novia Scotia Among First Big-Name Victims in Global Supply-Chain Hack 08/06/2023 at 04:52 By Associated Press The Cl0p cyber-extortion gang’s hack of the MOVEit file-transfer program popular with enterprises could have widespread global impact. The post BBC, British Airways, Novia Scotia Among First Big-Name Victims in Global Supply-Chain Hack appeared first on

React to this headline:

Loading spinner

BBC, British Airways, Novia Scotia Among First Big-Name Victims in Global Supply-Chain Hack Read More »

Verizon 2023 DBIR: Human Error Involved in Many Breaches, Ransomware Cost Surges

Data Breaches, DBIR, Featured, Ransomware, Verizon /

Verizon 2023 DBIR: Human Error Involved in Many Breaches, Ransomware Cost Surges 06/06/2023 at 15:02 By Eduard Kovacs Verizon’s 16th annual Data Breach Investigations Report (DBIR) provides data on ransomware costs, the frequency of human error in breaches, and BEC trends. The post Verizon 2023 DBIR: Human Error Involved in Many Breaches, Ransomware Cost Surges

React to this headline:

Loading spinner

Verizon 2023 DBIR: Human Error Involved in Many Breaches, Ransomware Cost Surges Read More »

Google Patches Third Chrome Zero-Day of 2023

Chrome, Featured, Vulnerabilities, Zero-Day /

Google Patches Third Chrome Zero-Day of 2023 06/06/2023 at 12:03 By Eduard Kovacs Google has released a Chrome 114 security update that patches CVE-2023-3079, the third zero-day vulnerability patched in the browser in 2023. The post Google Patches Third Chrome Zero-Day of 2023 appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Google Patches Third Chrome Zero-Day of 2023 Read More »

SBOMs – Software Supply Chain Security’s Future or Fantasy?

Featured, Government, Government Policy, open source, SBOM, software, Supply Chain Security, Vulnerabilities /

SBOMs – Software Supply Chain Security’s Future or Fantasy? 05/06/2023 at 14:39 By Kevin Townsend If after eighteen months, meaningful use of SBOMs is unachievable, we need to ask what needs to be done to fulfill Biden’s executive order. The post SBOMs – Software Supply Chain Security’s Future or Fantasy? appeared first on SecurityWeek. This

React to this headline:

Loading spinner

SBOMs – Software Supply Chain Security’s Future or Fantasy? Read More »

Ransomware Group Used MOVEit Exploit to Steal Data From Dozens of Organizations

cybercrime, Featured, MOVEit, Ransomware /

Ransomware Group Used MOVEit Exploit to Steal Data From Dozens of Organizations 05/06/2023 at 13:39 By Eduard Kovacs The recent MOVEit zero-day attack has been linked to a known ransomware group, which reportedly stole data from dozens of organizations. The post Ransomware Group Used MOVEit Exploit to Steal Data From Dozens of Organizations appeared first

React to this headline:

Loading spinner

Ransomware Group Used MOVEit Exploit to Steal Data From Dozens of Organizations Read More »

Zero-Day in MOVEit File Transfer Software Exploited to Steal Data From Organizations

Featured, MOVEit, Vulnerabilities, Zero-Day /

Zero-Day in MOVEit File Transfer Software Exploited to Steal Data From Organizations 02/06/2023 at 12:41 By Eduard Kovacs A zero-day vulnerability in Progress Software’s MOVEit Transfer product has been exploited to hack organizations and steal their data. The post Zero-Day in MOVEit File Transfer Software Exploited to Steal Data From Organizations appeared first on SecurityWeek.

React to this headline:

Loading spinner

Zero-Day in MOVEit File Transfer Software Exploited to Steal Data From Organizations Read More »

Russia Blames US Intelligence for iOS Zero-Click Attacks

apple, Cyberwarfare, exploit, Featured, iOS, Malware & Threats, Russia /

Russia Blames US Intelligence for iOS Zero-Click Attacks 01/06/2023 at 17:48 By Eduard Kovacs Kaspersky said its corporate network has been targeted with a zero-click iOS exploit, just as Russia’s FSB said iPhones have been targeted by US intelligence. The post Russia Blames US Intelligence for iOS Zero-Click Attacks appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

Russia Blames US Intelligence for iOS Zero-Click Attacks Read More »

Organizations Warned of Backdoor Feature in Hundreds of Gigabyte Motherboards

backdoor, Endpoint Security, Featured, Gigabyte, Malware & Threats /

Organizations Warned of Backdoor Feature in Hundreds of Gigabyte Motherboards 31/05/2023 at 18:34 By Eduard Kovacs A backdoor feature found in hundreds of Gigabyte motherboard models can pose a significant supply chain risk to organizations. The post Organizations Warned of Backdoor Feature in Hundreds of Gigabyte Motherboards appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Organizations Warned of Backdoor Feature in Hundreds of Gigabyte Motherboards Read More »

Barracuda Zero-Day Exploited to Deliver Malware for Months Before Discovery

Barracuda, Featured, Vulnerabilities, Zero-Day /

Barracuda Zero-Day Exploited to Deliver Malware for Months Before Discovery 31/05/2023 at 12:49 By Eduard Kovacs The recently discovered Barracuda zero-day vulnerability CVE-2023-2868 has been exploited to deliver malware and steal data since at least October 2022. The post Barracuda Zero-Day Exploited to Deliver Malware for Months Before Discovery appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

Barracuda Zero-Day Exploited to Deliver Malware for Months Before Discovery Read More »

New Russia-Linked CosmicEnergy ICS Malware Could Disrupt Electric Grid

CosmicEnergy, Featured, ICS, ICS/OT, OT /

New Russia-Linked CosmicEnergy ICS Malware Could Disrupt Electric Grid 25/05/2023 at 17:48 By Eduard Kovacs Mandiant has analyzed a new Russia-linked ICS malware named CosmicEnergy that is designed to cause electric power disruption. The post New Russia-Linked CosmicEnergy ICS Malware Could Disrupt Electric Grid appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

New Russia-Linked CosmicEnergy ICS Malware Could Disrupt Electric Grid Read More »

Virtual Event Today: Threat Detection and Incident Response Summit

Featured, Malware & Threats, Threat Intelligence, Training & Awareness /

Virtual Event Today: Threat Detection and Incident Response Summit 24/05/2023 at 11:16 By Mike Lennon Join thousands of attendees as we dive into threat hunting tools and frameworks, and explore value of threat intelligence data in the defender’s security stack. (Register Now) The post Virtual Event Today: Threat Detection and Incident Response Summit appeared first

React to this headline:

Loading spinner

Virtual Event Today: Threat Detection and Incident Response Summit Read More »

Samsung Smartphone Users Warned of Actively Exploited Vulnerability

Featured, Mobile & Wireless, Samsung, Vulnerabilities /

Samsung Smartphone Users Warned of Actively Exploited Vulnerability 22/05/2023 at 12:50 By Eduard Kovacs Samsung smartphone users warned about CVE-2023-21492, an ASLR bypass vulnerability exploited in the wild, likely by a spyware vendor. The post Samsung Smartphone Users Warned of Actively Exploited Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Samsung Smartphone Users Warned of Actively Exploited Vulnerability Read More »

Apple Patches 3 Exploited WebKit Zero-Day Vulnerabilities

apple, Featured, Mobile & Wireless, Vulnerabilities, Zero-Day /

Apple Patches 3 Exploited WebKit Zero-Day Vulnerabilities 19/05/2023 at 13:05 By Eduard Kovacs Apple has patched 3 zero-days, two of which are the vulnerabilities patched with the tech giant’s first Rapid Security Response updates. The post Apple Patches 3 Exploited WebKit Zero-Day Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Apple Patches 3 Exploited WebKit Zero-Day Vulnerabilities Read More »

Lacroix Closes Production Sites Following Ransomware Attack

Featured, ICS/OT, Ransomware /

Lacroix Closes Production Sites Following Ransomware Attack 17/05/2023 at 15:10 By Ionut Arghire Technological equipment supplier Lacroix has closed three production sites after experiencing a ransomware attack. The post Lacroix Closes Production Sites Following Ransomware Attack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to this

React to this headline:

Loading spinner

Lacroix Closes Production Sites Following Ransomware Attack Read More »

US Offering $10M Reward for Russian Man Charged With Ransomware Attacks

cybercrime, Featured, Ransomware, Russia, Tracking & Law Enforcement /

US Offering $10M Reward for Russian Man Charged With Ransomware Attacks 17/05/2023 at 14:17 By Eduard Kovacs The US is offering a $10 million reward for information on a Russian man accused of launching ransomware attacks on critical infrastructure. The post US Offering $10M Reward for Russian Man Charged With Ransomware Attacks appeared first on

React to this headline:

Loading spinner

US Offering $10M Reward for Russian Man Charged With Ransomware Attacks Read More »

Teltonika Vulnerabilities Could Expose Thousands of Industrial Organizations to Remote Attacks

Featured, ICS, ICS/OT, Vulnerabilities, vulnerability /

Teltonika Vulnerabilities Could Expose Thousands of Industrial Organizations to Remote Attacks 16/05/2023 at 16:09 By Eduard Kovacs Critical vulnerabilities found in Teltonika products by industrial cybersecurity firms Otorio and Claroty expose thousands of internet-exposed devices to attacks. The post Teltonika Vulnerabilities Could Expose Thousands of Industrial Organizations to Remote Attacks appeared first on SecurityWeek. This

React to this headline:

Loading spinner

Teltonika Vulnerabilities Could Expose Thousands of Industrial Organizations to Remote Attacks Read More »

Executive Fired From TikTok’s Chinese Owner Says Beijing Had Access to App Data in Termination Suit

Application Security, China, Featured, Nation-State, Privacy & Compliance, TikTok /

Executive Fired From TikTok’s Chinese Owner Says Beijing Had Access to App Data in Termination Suit 13/05/2023 at 13:00 By Associated Press Former ByteDance executive said China government officials maintained access to all TikTok data, including information stored in the United States. The post Executive Fired From TikTok’s Chinese Owner Says Beijing Had Access to

React to this headline:

Loading spinner

Executive Fired From TikTok’s Chinese Owner Says Beijing Had Access to App Data in Termination Suit Read More »

Scroll to Top