Government

Windows NTLM vulnerability exploited in multiple attack campaigns (CVE-2025-24054)

0patch, APT, Check Point, Don't miss, enterprise, exploit, Government, HarfangLab, Hot stuff, News, phishing, vulnerability, Windows /

Windows NTLM vulnerability exploited in multiple attack campaigns (CVE-2025-24054) 2025-04-17 at 16:52 By Zeljka Zorz CVE-2025-24054, a Windows NTLM hash disclosure vulnerability that Microsoft has issued patches for last month, has been leveraged by threat actors in campaigns targeting government and private institutions in Poland and Romania. “Active exploitation in the wild has been observed […]

React to this headline:

Loading spinner

Windows NTLM vulnerability exploited in multiple attack campaigns (CVE-2025-24054) Read More »

MITRE CVE Program Gets Last-Hour Funding Reprieve

CISA, CVE, CVE Program, Featured, Government, MITRE, Vulnerabilities /

MITRE CVE Program Gets Last-Hour Funding Reprieve 2025-04-16 at 19:36 By Ryan Naraine The US government’s cybersecurity agency CISA has “executed the option period on the contract” to keep the vulnerability catalog operational. The post MITRE CVE Program Gets Last-Hour Funding Reprieve appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

React to this headline:

Loading spinner

MITRE CVE Program Gets Last-Hour Funding Reprieve Read More »

Ransomware Group Claims Hacking of Oregon Regulator After Data Breach Denial

data breach, Data Breaches, DEQ, Government, Oregon, Ransomware /

Ransomware Group Claims Hacking of Oregon Regulator After Data Breach Denial 2025-04-16 at 15:21 By Eduard Kovacs The Rhysida ransomware gang claims to have stolen 2.5 Tb of files from the Oregon Department of Environmental Quality. The post Ransomware Group Claims Hacking of Oregon Regulator After Data Breach Denial appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

Ransomware Group Claims Hacking of Oregon Regulator After Data Breach Denial Read More »

MITRE Warns CVE Program Faces Disruption Amid US Funding Uncertainty

CVE, Featured, Government, MITRE, NIST, NVD, Vulnerabilities /

MITRE Warns CVE Program Faces Disruption Amid US Funding Uncertainty 2025-04-15 at 23:46 By Ryan Naraine MITRE warns of a deterioration of national vulnerability databases and advisories, slowed vendor reaction and limited response operations. The post MITRE Warns CVE Program Faces Disruption Amid US Funding Uncertainty appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

MITRE Warns CVE Program Faces Disruption Amid US Funding Uncertainty Read More »

China Admitted to US That It Conducted Volt Typhoon Attacks: Report

China, critical infrastructure, Featured, Government, Nation-State, US, Volt Typhoon /

China Admitted to US That It Conducted Volt Typhoon Attacks: Report 2025-04-11 at 13:14 By Eduard Kovacs In a secret meeting between Chinese and US officials, the former confirmed conducting cyberattacks on US infrastructure. The post China Admitted to US That It Conducted Volt Typhoon Attacks: Report appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

China Admitted to US That It Conducted Volt Typhoon Attacks: Report Read More »

Trump Revokes Security Clearance for Ex-CISA Director Chris Krebs

CC Krebs, CISA, Election, Government, Krebs Stamos Group, Management & Strategy, SentinelOne /

Trump Revokes Security Clearance for Ex-CISA Director Chris Krebs 2025-04-10 at 17:48 By Ryan Naraine Trump orders a termination of any active security clearances held by Krebs and a suspension of clearances held by individuals at SentinelOne. The post Trump Revokes Security Clearance for Ex-CISA Director Chris Krebs appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

Trump Revokes Security Clearance for Ex-CISA Director Chris Krebs Read More »

Trump orders revocation of security clearances for Chris Krebs, SentinelOne

Don't miss, Government, Hot stuff, News, SentinelOne, USA /

Trump orders revocation of security clearances for Chris Krebs, SentinelOne 2025-04-10 at 15:50 By Zeljka Zorz US President Donald Trump has signed an Executive Order on Wednesday to revoke security clearance held by Chris Krebs, the former director of the Cybersecurity and Infrastructure Security Agency (CISA), and his colleagues at SentinelOne. “The Order also suspends

React to this headline:

Loading spinner

Trump orders revocation of security clearances for Chris Krebs, SentinelOne Read More »

Treasury’s OCC Says Hackers Had Access to 150,000 Emails

email security, Featured, Government, OCC, Treasury /

Treasury’s OCC Says Hackers Had Access to 150,000 Emails 2025-04-09 at 14:48 By Eduard Kovacs The Office of the Comptroller of the Currency (OCC) has disclosed an email security incident in which 100 accounts were compromised for over a year.  The post Treasury’s OCC Says Hackers Had Access to 150,000 Emails appeared first on SecurityWeek.

React to this headline:

Loading spinner

Treasury’s OCC Says Hackers Had Access to 150,000 Emails Read More »

Part of EU’s New €1.3 Billion Investment Going to Cybersecurity

EU, funding, Government /

Part of EU’s New €1.3 Billion Investment Going to Cybersecurity 2025-03-31 at 14:46 By Eduard Kovacs The European Commission plans on investing €1.3 billion ($1.4 billion) in cybersecurity, artificial intelligence and digital skills.  The post Part of EU’s New €1.3 Billion Investment Going to Cybersecurity appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Part of EU’s New €1.3 Billion Investment Going to Cybersecurity Read More »

NIST Still Struggling to Clear Vulnerability Submissions Backlog in NVD

CISA, CVE, Government, NIST, NVD, Vulnerabilities /

NIST Still Struggling to Clear Vulnerability Submissions Backlog in NVD 2025-03-24 at 18:21 By Ryan Naraine The effects of the backlog is already being felt in vulnerability management circles where NVD data promises an enriched source of truth. The post NIST Still Struggling to Clear Vulnerability Submissions Backlog in NVD appeared first on SecurityWeek. This

React to this headline:

Loading spinner

NIST Still Struggling to Clear Vulnerability Submissions Backlog in NVD Read More »

US Lifts Sanctions Against Crypto Mixer Tornado Cash

Cryptocurrency, Government, Sanctions, Tornado Cash /

US Lifts Sanctions Against Crypto Mixer Tornado Cash 2025-03-24 at 14:46 By Ionut Arghire The US Department of the Treasury has removed sanctions against the fully decentralized cryptocurrency mixer service Tornado Cash. The post US Lifts Sanctions Against Crypto Mixer Tornado Cash appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

React to this headline:

Loading spinner

US Lifts Sanctions Against Crypto Mixer Tornado Cash Read More »

FCC Probes Whether Banned Chinese Telecom Providers Still Operating in US

Ban, China, fcc, Featured, Government, Network Security, telecoms /

FCC Probes Whether Banned Chinese Telecom Providers Still Operating in US 2025-03-24 at 14:31 By Eduard Kovacs The FCC is investigating whether Chinese firms such as Huawei, ZTE and China Telecom are still operating in the US. The post FCC Probes Whether Banned Chinese Telecom Providers Still Operating in US appeared first on SecurityWeek. This

React to this headline:

Loading spinner

FCC Probes Whether Banned Chinese Telecom Providers Still Operating in US Read More »

Protecting your iCloud data after Apple’s Advanced Data Protection removal in the UK

apple, cybersecurity, data security, Don't miss, Encryption, Government, how-to, News, Privacy, tips, UK /

Protecting your iCloud data after Apple’s Advanced Data Protection removal in the UK 2025-03-19 at 07:16 By Help Net Security Advanced Data Protection (ADP) secures iCloud data with end-to-end encryption. This ensures that no one, not even Apple, can access the encrypted data, which remains secure even in the event of a cloud breach. As

React to this headline:

Loading spinner

Protecting your iCloud data after Apple’s Advanced Data Protection removal in the UK Read More »

US Lawmakers Reintroduce Bill to Boost Rural Water Cybersecurity

Bill, Government, Government Policy, Water /

US Lawmakers Reintroduce Bill to Boost Rural Water Cybersecurity 2025-03-18 at 13:35 By Ionut Arghire US representatives and senators have reintroduced a bipartisan bill to support the cybersecurity of small water and wastewater utilities. The post US Lawmakers Reintroduce Bill to Boost Rural Water Cybersecurity appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

US Lawmakers Reintroduce Bill to Boost Rural Water Cybersecurity Read More »

ChatGPT Vulnerability Exploited Against US Government Organizations

Artificial Intelligence, ChatGPT, exploited, Featured, Government, SSRF /

ChatGPT Vulnerability Exploited Against US Government Organizations 2025-03-18 at 12:02 By Ionut Arghire A year-old vulnerability in ChatGPT is being exploited against financial entities and US government organizations. The post ChatGPT Vulnerability Exploited Against US Government Organizations appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this headline:

React to this headline:

Loading spinner

ChatGPT Vulnerability Exploited Against US Government Organizations Read More »

Q&A with TGS President Bill Rucker on Trustwave’s FedRAMP Authorization

Compliance, Government, Managed Detection and Response, SIEM/SOC /

Q&A with TGS President Bill Rucker on Trustwave’s FedRAMP Authorization 2025-03-14 at 15:03 By Trustwave’s recent completion of the FedRAMP authorization process increases our ability to provide exceptional service to the federal government, the defense industrial base, and those with Cybersecurity Maturity Model Certification (CMMC) requirements, especially with a cloud service offering. This article is an excerpt

React to this headline:

Loading spinner

Q&A with TGS President Bill Rucker on Trustwave’s FedRAMP Authorization Read More »

Trump Administration Halts Funding for Two Cybersecurity Efforts, Including One for Elections

CISA, Election, Government, Trump /

Trump Administration Halts Funding for Two Cybersecurity Efforts, Including One for Elections 2025-03-12 at 14:30 By Associated Press The Trump administration has cut millions of dollars in federal funding from two cybersecurity initiatives, including one dedicated to helping state and local election officials. The post Trump Administration Halts Funding for Two Cybersecurity Efforts, Including One

React to this headline:

Loading spinner

Trump Administration Halts Funding for Two Cybersecurity Efforts, Including One for Elections Read More »

Russian State Actors: Development in Group Attributions

Database Protection, Government, Perspectives, Security Research, Vulnerabilities /

Russian State Actors: Development in Group Attributions 2025-03-07 at 16:33 By Pawel Knapczyk and Nikita Kazymirskyi This is the final installment of Trustwave SpiderLabs Russia-Ukraine digital battlefield series, which has spanned topics including the differences between Russia and Ukraine cyber actors, how government entities, defense organizations, and human targets were caught in the cyber crossfire,

React to this headline:

Loading spinner

Russian State Actors: Development in Group Attributions Read More »

Federal Contractor Cybersecurity Bill Passes House

Bill, contractor, Government, Government Policy /

Federal Contractor Cybersecurity Bill Passes House 2025-03-06 at 16:04 By Eduard Kovacs The House of Representatives has passed a bill aimed at requiring federal contractors to have a Vulnerability Disclosure Policy (VDP). The post Federal Contractor Cybersecurity Bill Passes House appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React

React to this headline:

Loading spinner

Federal Contractor Cybersecurity Bill Passes House Read More »

Financial Organizations Urge CISA to Revise Proposed CIRCIA Implementation

CIRCIA, CISA, Government, Government Policy /

Financial Organizations Urge CISA to Revise Proposed CIRCIA Implementation 2025-03-06 at 14:52 By Ionut Arghire A group of financial organizations is asking CISA to rescind and reissue its proposed implementation of CIRCIA. The post Financial Organizations Urge CISA to Revise Proposed CIRCIA Implementation appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

React to this headline:

Loading spinner

Financial Organizations Urge CISA to Revise Proposed CIRCIA Implementation Read More »

Scroll to Top