Incident Response

Microsoft Patch Tuesday Covers WebDAV Flaw Marked as ‘Already Exploited’

CVE-2025-33053, Incident Response, Malware & Threats, Microsoft, Microsoft Office, Patch Tuesday, Vulnerabilities, WebDAV, Zero-Day /

Microsoft Patch Tuesday Covers WebDAV Flaw Marked as ‘Already Exploited’ 2025-06-10 at 21:20 By Ryan Naraine Redmond warns that external control of a file name or path in WebDAV “allows an unauthorized attacker to execute code over a network.” The post Microsoft Patch Tuesday Covers WebDAV Flaw Marked as ‘Already Exploited’ appeared first on SecurityWeek. […]

React to this headline:

Loading spinner

Microsoft Patch Tuesday Covers WebDAV Flaw Marked as ‘Already Exploited’ Read More »

The legal questions to ask when your systems go dark

CISO, conferences, cybersecurity, Don't miss, Features, Hot stuff, Incident Response, law, law firms, News, regulation, Span, strategy /

The legal questions to ask when your systems go dark 2025-06-10 at 09:16 By Mirko Zorz At Span Cyber Security Arena, I sat down with Iva Mišković, Partner at the ISO-certified Mišković & Mišković law firm, to discuss the role of legal teams during cyber incidents. She shared why lawyers should assume the worst, coordinate

React to this headline:

Loading spinner

The legal questions to ask when your systems go dark Read More »

Chinese Espionage Crews Circle SentinelOne in Year-Long Reconnaissance Campaign

APT41, China, Incident Response, Malware & Threats, Nation-State, PurpleHaze, SentinelLabs, SentinelOne, Shadowpad /

Chinese Espionage Crews Circle SentinelOne in Year-Long Reconnaissance Campaign 2025-06-09 at 20:58 By Ryan Naraine Anti-malware vendor said it spent the past twelve months deflecting a stream of network reconnaissance probes from China-nexus threat actors The post Chinese Espionage Crews Circle SentinelOne in Year-Long Reconnaissance Campaign appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

Chinese Espionage Crews Circle SentinelOne in Year-Long Reconnaissance Campaign Read More »

Guardz Banks $56M Series B for All-in-One SMB Security

Endpoint Security, Funding/M&A, Guardz, Incident Response, Managed Services, MSPs, Series B, SMB /

Guardz Banks $56M Series B for All-in-One SMB Security 2025-06-09 at 17:38 By SecurityWeek News The Israeli company said the Series B raise was led by ClearSky and included equity stakes for new backer Phoenix Financial. The post Guardz Banks $56M Series B for All-in-One SMB Security appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Guardz Banks $56M Series B for All-in-One SMB Security Read More »

Victoria’s Secret Says It Will Postpone Earnings Report After Recent Security Breach

data breach, Incident Response, Victoria's Secret /

Victoria’s Secret Says It Will Postpone Earnings Report After Recent Security Breach 2025-06-04 at 13:32 By Associated Press Victoria’s Secret is postponing the release of its quarterly earnings following a security breach that disrupted the popular lingerie brand’s corporate operations. The post Victoria’s Secret Says It Will Postpone Earnings Report After Recent Security Breach appeared

React to this headline:

Loading spinner

Victoria’s Secret Says It Will Postpone Earnings Report After Recent Security Breach Read More »

ConnectWise Discloses Suspected State-Sponsored Hack

ConnectWise, Incident Response, Nation-State /

ConnectWise Discloses Suspected State-Sponsored Hack 2025-05-30 at 13:51 By Ionut Arghire The IT software provider says ScreenConnect users were impacted by the attack, which exploited a high-severity ASP.NET vulnerability. The post ConnectWise Discloses Suspected State-Sponsored Hack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this headline:

React to this headline:

Loading spinner

ConnectWise Discloses Suspected State-Sponsored Hack Read More »

Victoria’s Secret Website Taken Offline After Cyberattack

cybercrime, Featured, Incident Response, Ransomware /

Victoria’s Secret Website Taken Offline After Cyberattack 2025-05-29 at 14:31 By Ionut Arghire Website remains offline following suspected cyber incident, as experts warn of escalating threats targeting major retailers The post Victoria’s Secret Website Taken Offline After Cyberattack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this

React to this headline:

Loading spinner

Victoria’s Secret Website Taken Offline After Cyberattack Read More »

Vulnerabilities in CISA KEV Are Not Equally Critical: Report

CISA, CISA KEV, Incident Response, Ox Security, Vulnerabilities, Zero-Day /

Vulnerabilities in CISA KEV Are Not Equally Critical: Report 2025-05-28 at 13:13 By Ionut Arghire New report says organizations should always consider environmental context when assessing the impact of vulnerabilities in CISA KEV catalog. The post Vulnerabilities in CISA KEV Are Not Equally Critical: Report appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Vulnerabilities in CISA KEV Are Not Equally Critical: Report Read More »

Zscaler to Acquire MDR Specialist Red Canary

Incident Response, Management & Strategy, MDR, Red Canary, security operations, SOC, Zscaler /

Zscaler to Acquire MDR Specialist Red Canary 2025-05-28 at 00:32 By SecurityWeek News Zscaler signals a big push into the security-operations market with the announcement of plans to buy Denver-based Red Canary. The post Zscaler to Acquire MDR Specialist Red Canary appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

React to this headline:

Loading spinner

Zscaler to Acquire MDR Specialist Red Canary Read More »

Iranian Man Pleads Guilty to Role in Baltimore Ransomware Attack

Baltimore, Data Breaches, Incident Response, Iran, Justice Department, Ransomware, robbinhood /

Iranian Man Pleads Guilty to Role in Baltimore Ransomware Attack 2025-05-27 at 21:28 By SecurityWeek News Sina Gholinejad pleaded guilty to computer-fraud and wire-fraud-conspiracy charges linked to the Robbinhood ransomware hit on Baltimore. The post Iranian Man Pleads Guilty to Role in Baltimore Ransomware Attack appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Iranian Man Pleads Guilty to Role in Baltimore Ransomware Attack Read More »

Marks & Spencer Expects Ransomware Attack to Cost $400 Million

cost, cyberattack, Featured, Incident Response, M&S, Marks&Spencer, Ransomware /

Marks & Spencer Expects Ransomware Attack to Cost $400 Million 2025-05-22 at 14:32 By Eduard Kovacs UK retailer Marks & Spencer expects the disruptions caused by the recent cyberattack to continue through July.  The post Marks & Spencer Expects Ransomware Attack to Cost $400 Million appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Marks & Spencer Expects Ransomware Attack to Cost $400 Million Read More »

Coinbase Says Rogue Contractor Data Breach Affects 69,461 Users

Coinbase, Cryptocurrency, Data Breaches, data extortion, Incident Response, Insider Threat, Maine, phishing /

Coinbase Says Rogue Contractor Data Breach Affects 69,461 Users 2025-05-21 at 16:54 By Ryan Naraine A mandatory filing to the Maine Attorney General says 69,461 customers nationwide were affected and dates the breach back to last December. The post Coinbase Says Rogue Contractor Data Breach Affects 69,461 Users appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

Coinbase Says Rogue Contractor Data Breach Affects 69,461 Users Read More »

BreachRx Lands $15 Million as Investors Bet on Breach-Workflow Software

Ballistic Ventures, BreachRx, Data Breaches, Funding/M&A, Incident Response, Series A, SYN Ventures /

BreachRx Lands $15 Million as Investors Bet on Breach-Workflow Software 2025-05-19 at 22:33 By SecurityWeek News San Francisco incident response coordination startup banks $15 million in a Series A funding round led by Ballistic Ventures. The post BreachRx Lands $15 Million as Investors Bet on Breach-Workflow Software appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

BreachRx Lands $15 Million as Investors Bet on Breach-Workflow Software Read More »

From 60 to 4,000: NATO’s Locked Shields Reflects Cyber Defense Growth

Featured, Incident Response, Locked Shields, NATO /

From 60 to 4,000: NATO’s Locked Shields Reflects Cyber Defense Growth 2025-05-16 at 14:02 By Eduard Kovacs The 15th edition of NATO’s Locked Shields cyber defense exercise brought together 4,000 experts from 41 countries. The post From 60 to 4,000: NATO’s Locked Shields Reflects Cyber Defense Growth appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

From 60 to 4,000: NATO’s Locked Shields Reflects Cyber Defense Growth Read More »

Deepfake attacks could cost you more than money

Artificial Intelligence, cybersecurity, deepfakes, Don't miss, Features, Hot stuff, Incident Response, News, policy, X-PHY /

Deepfake attacks could cost you more than money 2025-05-16 at 09:04 By Mirko Zorz In this Help Net Security interview, Camellia Chan, CEO at X-PHY, discusses the dangers of deepfakes in real-world incidents, including their use in financial fraud and political disinformation. She explains AI-driven defense strategies and recommends updating incident response plans and internal

React to this headline:

Loading spinner

Deepfake attacks could cost you more than money Read More »

Production at Steelmaker Nucor Disrupted by Cyberattack

cyberattack, disruption, Incident Response, Nucor, steel /

Production at Steelmaker Nucor Disrupted by Cyberattack 2025-05-15 at 15:47 By Eduard Kovacs American steel giant Nucor on Wednesday disclosed a cybersecurity incident that bears the hallmarks of a ransomware attack. The post Production at Steelmaker Nucor Disrupted by Cyberattack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React

React to this headline:

Loading spinner

Production at Steelmaker Nucor Disrupted by Cyberattack Read More »

Adobe Patches Big Batch of Critical-Severity Software Flaws

Adobe, ColdFusion, Illustrator, Incident Response, Patch Tuesday, Photoshop, Vulnerabilities /

Adobe Patches Big Batch of Critical-Severity Software Flaws 2025-05-13 at 22:47 By Ryan Naraine Adobe Patch Tuesday headlined by a major Adobe ColdFusion update patching a wide swatch of code execution and privilege escalation attacks. The post Adobe Patches Big Batch of Critical-Severity Software Flaws appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Adobe Patches Big Batch of Critical-Severity Software Flaws Read More »

Compromised SAP NetWeaver instances are ushering in opportunistic threat actors

Don't miss, enterprise, Forescout, Government, Hot stuff, Incident Response, Mandiant, News, Onapsis, SAP, web shell /

Compromised SAP NetWeaver instances are ushering in opportunistic threat actors 2025-05-12 at 16:07 By Zeljka Zorz A second wave of attacks against the hundreds of SAP NetWeaver platforms compromised via CVE-2025-31324 is underway. “[The] attacks [are] staged by follow-on, opportunistic threat actors who are leveraging previously established webshells (from the first zero-day attack) on vulnerable

React to this headline:

Loading spinner

Compromised SAP NetWeaver instances are ushering in opportunistic threat actors Read More »

41 Countries Taking Part in NATO’s Locked Shields 2025 Cyber Defense Exercise

cyber exercise, cyber range, Incident Response, Locked Shields, NATO /

41 Countries Taking Part in NATO’s Locked Shields 2025 Cyber Defense Exercise 2025-05-07 at 10:17 By Eduard Kovacs The NATO Cooperative Cyber Defence Centre of Excellence in Estonia is hosting the Locked Shields 2025 cyber defense exercise. The post 41 Countries Taking Part in NATO’s Locked Shields 2025 Cyber Defense Exercise appeared first on SecurityWeek.

React to this headline:

Loading spinner

41 Countries Taking Part in NATO’s Locked Shields 2025 Cyber Defense Exercise Read More »

White House Proposal Slashes Half-Billion from CISA Budget

budget, CISA, CVE, DHS, Government, Incident Response, Nation-State, RSA Conference /

White House Proposal Slashes Half-Billion from CISA Budget 2025-05-05 at 18:31 By Ryan Naraine The proposed $491 million cut is being positioned as a “refocusing”of CISA on its core mission “while eliminating weaponization and waste.” The post White House Proposal Slashes Half-Billion from CISA Budget appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

White House Proposal Slashes Half-Billion from CISA Budget Read More »

Scroll to Top