Category: securityweek

Iranian APT MuddyWater has been using new versions of the DCHSpy Android surveillance tool since the beginning of the conflict with Israel. The post Iranian APT Targets Android Users With New Variants of DCHSpy Spyware appeared first on SecurityWeek. This…

Read more →

Cierant Corporation and Zumpano Patricios independently disclosed data breaches, each impacting more than 200,000 individuals. The post Marketing, Law Firms Say Data Breaches Impact Over 200,000 People appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…

Read more →

A surveillance company was caught using an SS7 bypass technique to trick wireless carriers into divulging users’ locations. The post Surveillance Firm Bypasses SS7 Protections to Retrieve User Location appeared first on SecurityWeek. This article has been indexed from SecurityWeek…

Read more →

Microsoft has started releasing updates to fix the exploited SharePoint zero-days tracked as CVE-2025-53770 and CVE-2025-53771. The post Microsoft Patches ‘ToolShell’ Zero-Days Exploited to Hack SharePoint Servers appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…

Read more →

The Alcohol & Drug Testing Service (TADTS) says personal information was stolen in a July 2024 ransomware attack. The post 750,000 Impacted by Data Breach at The Alcohol & Drug Testing Service appeared first on SecurityWeek. This article has been…

Read more →

Hackers are exploiting a zero-day vulnerability in CrushFTP to gain administrative privileges on vulnerable servers via HTTPS. The post Exploited CrushFTP Zero-Day Provides Admin Access to Servers appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…

Read more →

Enterprises running SharePoint servers should not wait for a fix for CVE-2025-53770 and should commence threat hunting to search for compromise immediately. The post SharePoint Under Attack: Microsoft Warns of Zero-Day Exploited in the Wild – No Patch Available appeared…

Read more →

Noteworthy stories that might have slipped under the radar: powerful US law firm hacked by China, Symantec product flaw, $10,000 Meta AI hack, cryptocurrency thieves bypassing FIDO keys.  The post In Other News: Law Firm Hacked by China, Symantec Flaw,…

Read more →

AI-native email security firm StrongestLayer has emerged from stealth mode with $5.2 million in seed funding. The post Email Protection Startup StrongestLayer Emerges From Stealth Mode appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original…

Read more →

Google has filed a lawsuit against the Badbox 2.0 botnet operators, after identifying over 10 million infected Android devices. The post Google Sues Operators of 10-Million-Device Badbox 2.0 Botnet appeared first on SecurityWeek. This article has been indexed from SecurityWeek…

Read more →

The CitrixBleed 2 vulnerability in NetScaler may expose organizations to compromise even if patches have been applied. The post CitrixBleed 2: 100 Organizations Hacked, Thousands of Instances Still Vulnerable appeared first on SecurityWeek. This article has been indexed from SecurityWeek…

Read more →

With generative AI enabling fraud-as-a-service at scale, legacy defenses are crumbling. The next wave of cybercrime is faster, smarter, and terrifyingly synthetic. The post Fraud: A Growth Industry Powered by Gen-AI appeared first on SecurityWeek. This article has been indexed…

Read more →

Radiology Associates of Richmond has disclosed a data breach impacting protected health and personal information.  The post 1.4 Million Affected by Data Breach at Virginia Radiology Practice appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…

Read more →

Dozens of FortiWeb instances have been hacked after PoC targeting a recent critical vulnerability was shared publicly. The post Fortinet FortiWeb Flaw Exploited in the Wild After PoC Publication appeared first on SecurityWeek. This article has been indexed from SecurityWeek…

Read more →

Anne Arundel Dermatology said hackers had access to its systems for three months and may have stolen personal and health information.  The post Anne Arundel Dermatology Data Breach Impacts 1.9 Million People appeared first on SecurityWeek. This article has been…

Read more →

A settlement has been reached in the class action brought by investors against Meta over the Cambridge Analytica incident, but details have not been shared. The post Settlement Reached in Investors’ Lawsuit Against Meta CEO Mark Zuckerberg and Other Company…

Read more →

Virtual event brings together leading experts, practitioners, and innovators for a full day of insightful discussions and tactical guidance on evolving threats and real-world defense strategies in cloud security. The post Watch on Demand: Cloud & Data Security Summit –…

Read more →

Cybersecurity startup Empirical Security has raised $12 million in seed funding for its vulnerability management platform.  The post Empirical Security Raises $12 Million for AI-Driven Vulnerability Management appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…

Read more →

Karen Serobovich Vardanyan pleaded not guilty to charges related to his alleged role in the Ryuk ransomware operation. The post Armenian Man Extradited to US Over Ryuk Ransomware Attacks appeared first on SecurityWeek. This article has been indexed from SecurityWeek…

Read more →

Deployed on mobile devices confiscated by Chinese law enforcement, Massistant can collect user information, files, and location. The post Mobile Forensics Tool Used by Chinese Law Enforcement Dissected appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read…

Read more →