Featured

Second Ivanti EPMM Zero-Day Vulnerability Exploited in Targeted Attacks

Featured, Ivanti, Malware & Threats, Vulnerabilities, Zero-Day /

Second Ivanti EPMM Zero-Day Vulnerability Exploited in Targeted Attacks 31/07/2023 at 13:31 By Eduard Kovacs Ivanti EPMM customers have been warned of CVE-2023-35081, a second zero-day vulnerability that has been exploited in targeted attacks. The post Second Ivanti EPMM Zero-Day Vulnerability Exploited in Targeted Attacks appeared first on SecurityWeek. This article is an excerpt from […]

React to this headline:

Loading spinner

Second Ivanti EPMM Zero-Day Vulnerability Exploited in Targeted Attacks Read More »

Two New Vulnerabilities Could affect 40% of Ubuntu Cloud Workloads

cloud security, Featured, Ubuntu, Vulnerabilities, vulnerability /

Two New Vulnerabilities Could affect 40% of Ubuntu Cloud Workloads 27/07/2023 at 17:20 By Kevin Townsend Researchers discovered two vulnerabilities in the Ubuntu OverlayFS module: CVE-2023-2640 and CVE-2023-32629 (together dubbed ‘GameOver(lay)’). The post Two New Vulnerabilities Could affect 40% of Ubuntu Cloud Workloads appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Two New Vulnerabilities Could affect 40% of Ubuntu Cloud Workloads Read More »

Ivanti Zero-Day Vulnerability Exploited in Attack on Norwegian Government

cybercrime, exploited, Featured, Ivanti, Vulnerabilities, Zero-Day /

Ivanti Zero-Day Vulnerability Exploited in Attack on Norwegian Government 25/07/2023 at 13:04 By Eduard Kovacs An Ivanti EPMM product zero-day vulnerability tracked as CVE-2023-35078 has been exploited in an attack aimed at the Norwegian government. The post Ivanti Zero-Day Vulnerability Exploited in Attack on Norwegian Government appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

Ivanti Zero-Day Vulnerability Exploited in Attack on Norwegian Government Read More »

Microsoft Cloud Hack Exposed More than Exchange, Outlook Emails

Azure, cloud security, email authentication, email security, Featured, Government, Microsoft, MSA key /

Microsoft Cloud Hack Exposed More than Exchange, Outlook Emails 21/07/2023 at 20:19 By Ryan Naraine Cloud security researcher warns that stolen Microsoft signing key was more powerful and not limited to Outlook.com and Exchange Online. The post Microsoft Cloud Hack Exposed More than Exchange, Outlook Emails appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

Microsoft Cloud Hack Exposed More than Exchange, Outlook Emails Read More »

Citrix Zero-Day Exploited Against Critical Infrastructure Organization

Citrix, exploited, Featured, Vulnerabilities, Zero-Day /

Citrix Zero-Day Exploited Against Critical Infrastructure Organization 21/07/2023 at 13:33 By Eduard Kovacs CISA says the new Citrix zero day vulnerability tracked as CVE-2023-3519 has been exploited against a critical infrastructure organization. The post Citrix Zero-Day Exploited Against Critical Infrastructure Organization appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

React to this headline:

Loading spinner

Citrix Zero-Day Exploited Against Critical Infrastructure Organization Read More »

Two New Adobe ColdFusion Vulnerabilities Exploited in Attacks

Adobe, ColdFusion, exploited, Featured, Vulnerabilities /

Two New Adobe ColdFusion Vulnerabilities Exploited in Attacks 18/07/2023 at 14:19 By Eduard Kovacs At least two new Adobe ColdFusion vulnerabilities have been exploited in the wild, including one that has not been completely patched by the software giant. The post Two New Adobe ColdFusion Vulnerabilities Exploited in Attacks appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

Two New Adobe ColdFusion Vulnerabilities Exploited in Attacks Read More »

Hacker Conversations: Inside the Mind of Daniel Kelley, ex-Blackhat

cybercrime, Featured, Hacker Conversations, Tracking & Law Enforcement /

Hacker Conversations: Inside the Mind of Daniel Kelley, ex-Blackhat 18/07/2023 at 14:19 By Kevin Townsend Daniel Kelley was just 18 years old when he was arrested and charged on thirty counts – most infamously for the 2015 hack of UK telecoms firm TalkTalk. In 2019 he was convicted and sentenced to four years in prison. 

React to this headline:

Loading spinner

Hacker Conversations: Inside the Mind of Daniel Kelley, ex-Blackhat Read More »

SecurityWeek Analysis: Over 210 Cybersecurity M&A Deals Announced in First Half of 2023

Featured, Funding/M&A, M&A, M&A analysis, M&A Tracker /

SecurityWeek Analysis: Over 210 Cybersecurity M&A Deals Announced in First Half of 2023 17/07/2023 at 15:16 By Eduard Kovacs An analysis conducted by SecurityWeek shows that more than 210 cybersecurity-related mergers and acquisitions were announced in the first half of 2022. The post SecurityWeek Analysis: Over 210 Cybersecurity M&A Deals Announced in First Half of

React to this headline:

Loading spinner

SecurityWeek Analysis: Over 210 Cybersecurity M&A Deals Announced in First Half of 2023 Read More »

Google Researchers Discover In-the-Wild Exploitation of Zimbra Zero-Day

Featured, Vulnerabilities, Zero-Day, Zimbra /

Google Researchers Discover In-the-Wild Exploitation of Zimbra Zero-Day 14/07/2023 at 13:06 By Eduard Kovacs Google researchers have discovered that a Zimbra zero-day vulnerability has been exploited in the wild, with users being advised to manually patch their installations. The post Google Researchers Discover In-the-Wild Exploitation of Zimbra Zero-Day appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

Google Researchers Discover In-the-Wild Exploitation of Zimbra Zero-Day Read More »

APT Exploit Targeting Rockwell Automation Flaws Could Threaten Critical Infrastructure

exploit, Featured, ICS, ICS/OT, Malware & Threats, Rockwell Automation, Vulnerabilities /

APT Exploit Targeting Rockwell Automation Flaws Could Threaten Critical Infrastructure 13/07/2023 at 13:32 By Eduard Kovacs Two Rockwell Automation product vulnerabilities have been used for a new exploit by an APT group that could use it to target critical infrastructure. The post APT Exploit Targeting Rockwell Automation Flaws Could Threaten Critical Infrastructure appeared first on

React to this headline:

Loading spinner

APT Exploit Targeting Rockwell Automation Flaws Could Threaten Critical Infrastructure Read More »

Orca Sues Wiz Over Alleged Cloud Security Patent Violations

cloud security, Featured, Funding/M&A, Orca Security, patent infringement, Wiz /

Orca Sues Wiz Over Alleged Cloud Security Patent Violations 12/07/2023 at 23:18 By Ryan Naraine Orca Security sues its main rival, claiming patent infringements, intellectual property theft and even marketing copycat behavior. The post Orca Sues Wiz Over Alleged Cloud Security Patent Violations appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Orca Sues Wiz Over Alleged Cloud Security Patent Violations Read More »

A Cybersecurity Wish List Ahead of NATO Summit

Cyberwarfare, Featured, Nation-State, NATO, Russia, Ukraine /

A Cybersecurity Wish List Ahead of NATO Summit 10/07/2023 at 17:17 By Kevin Townsend Assuming NATO can play a greater part in the cybersecurity of its members, possibly through a more formal NATO Cyber Command, the question then becomes ‘what should we hope for?’ The post A Cybersecurity Wish List Ahead of NATO Summit appeared

React to this headline:

Loading spinner

A Cybersecurity Wish List Ahead of NATO Summit Read More »

Shell Confirms MOVEit-Related Breach After Ransomware Group Leaks Data

cybercrime, Featured, MOVEit, Ransomware, Shell /

Shell Confirms MOVEit-Related Breach After Ransomware Group Leaks Data 06/07/2023 at 16:05 By Eduard Kovacs Shell confirms that employee personal information has been stolen after the Cl0p ransomware group leaked data allegedly stolen from the energy giant. The post Shell Confirms MOVEit-Related Breach After Ransomware Group Leaks Data appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

Shell Confirms MOVEit-Related Breach After Ransomware Group Leaks Data Read More »

Army Combat Veteran to Take Over Key Election Security Role Working With State, Local Officials

Election, Featured, Government, Nation-State /

Army Combat Veteran to Take Over Key Election Security Role Working With State, Local Officials 01/07/2023 at 20:31 By Mike Lennon Cait Conley will coordinate with federal, state and local officials responsible for ensuring elections are secure ahead of the 2024 presidential election. The post Army Combat Veteran to Take Over Key Election Security Role

React to this headline:

Loading spinner

Army Combat Veteran to Take Over Key Election Security Role Working With State, Local Officials Read More »

What is Cyberwar?

cyberwar, Cyberwarfare, Featured, geopolitical, Nation-State, Russia /

What is Cyberwar? 28/06/2023 at 18:02 By Kevin Townsend Ask any three people to define cyberwar and you will get three different answers. But as global geopolitics worsen and aggressive cyberattacks increase, this becomes more than an academic question. The post What is Cyberwar? appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

What is Cyberwar? Read More »

Gas Stations Impacted by Cyberattack on Canadian Energy Giant Suncor

cybercrime, energy, Featured, oil /

Gas Stations Impacted by Cyberattack on Canadian Energy Giant Suncor 27/06/2023 at 14:24 By Eduard Kovacs Some services at Petro-Canada gas stations have been disrupted following a cyberattack on parent company Suncor, one of North America’s largest energy companies. The post Gas Stations Impacted by Cyberattack on Canadian Energy Giant Suncor appeared first on SecurityWeek.

React to this headline:

Loading spinner

Gas Stations Impacted by Cyberattack on Canadian Energy Giant Suncor Read More »

Bipartisan Bill Proposes Cybersecurity Funds for Rural Water Systems

Featured, Government, ICS, ICS/OT, SCADA /

Bipartisan Bill Proposes Cybersecurity Funds for Rural Water Systems 22/06/2023 at 15:01 By Kevin Townsend A new bill proposes to increase cybersecurity funding for rural water systems by $7.5 million dollars per year. The post Bipartisan Bill Proposes Cybersecurity Funds for Rural Water Systems appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

Bipartisan Bill Proposes Cybersecurity Funds for Rural Water Systems Read More »

Chrome and Its Vulnerabilities – Is the Web Browser Safe to Use?

Chrome, Featured, Google Chrome, Vulnerabilities /

Chrome and Its Vulnerabilities – Is the Web Browser Safe to Use? 21/06/2023 at 15:33 By Kevin Townsend Why are there so many vulnerabilities in Chrome? Is it realistically safe to use? Can Google do anything to make the web browser safer? The post Chrome and Its Vulnerabilities – Is the Web Browser Safe to

React to this headline:

Loading spinner

Chrome and Its Vulnerabilities – Is the Web Browser Safe to Use? Read More »

Biden Discusses Risks and Promises of Artificial Intelligence With Tech Leaders in San Francisco

AI, Artificial Intelligence, Featured, Government /

Biden Discusses Risks and Promises of Artificial Intelligence With Tech Leaders in San Francisco 21/06/2023 at 07:40 By Associated Press The Biden administration wants to figure out how to regulate AI, looking for ways to nurture its potential for economic growth and national security and protect against its potential dangers. The post Biden Discusses Risks

React to this headline:

Loading spinner

Biden Discusses Risks and Promises of Artificial Intelligence With Tech Leaders in San Francisco Read More »

MOVEit Customers Urged to Patch Third Critical Vulnerability

Featured, MOVEit, Vulnerabilities /

MOVEit Customers Urged to Patch Third Critical Vulnerability 19/06/2023 at 14:17 By Ionut Arghire A critical vulnerability (CVE-2023-35708) in MOVEit software could allow unauthenticated attackers to access database content. The post MOVEit Customers Urged to Patch Third Critical Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

React to this headline:

Loading spinner

MOVEit Customers Urged to Patch Third Critical Vulnerability Read More »

Scroll to Top