Category: securityweek

Ransomware payments reached the highest level in 2023, at $1.1 billion paid in 1,512 reported incidents. The post Ransomware Payments Surpassed $4.5 Billion: US Treasury appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article:…

Read more →

The bug allows attackers to carry out XML External Entity (XXE) injection attacks via crafted XFA files inside PDF files. The post Critical Apache Tika Vulnerability Leads to XXE Injection appeared first on SecurityWeek. This article has been indexed from…

Read more →

An increasing number of threat actors have been attempting to exploit the React vulnerability CVE-2025-55182 in their attacks. The post Exploitation of React2Shell Surges appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article: Exploitation…

Read more →

Other noteworthy stories that might have slipped under the radar: Akamai patches HTTP smuggling vulnerability, Claude Skills used to execute ransomware, PickleScan flaws. The post In Other News: X Fined €120 Million, Array Flaw Exploited, New Iranian Backdoor appeared first…

Read more →

The critical React vulnerability has been exploited in the wild by Chinese and other threat actors. The post Cloudflare Outage Caused by React2Shell Mitigations appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article: Cloudflare…

Read more →

Warp Panda has been using the BrickStorm, Junction, and GuestConduit malware in attacks against US organizations. The post US Organizations Warned of Chinese Malware Used for Long-Term Persistence appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read…

Read more →

The cybersecurity startup detects impersonation risk in real-time, across video, phone, and chat communication. The post Imper.ai Emerges From Stealth Mode With $28 Million in Funding appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original…

Read more →

The startup will invest in expanding its engineering and research teams, deepening product integrations, and scaling go-to-market efforts. The post Lumia Security Raises $18 Million for AI Security and Governance appeared first on SecurityWeek. This article has been indexed from…

Read more →

Cloudflare recently mitigated a new record-breaking Aisuru attack that peaked at 14.1 Bpps. The post Aisuru Botnet Powers Record DDoS Attack Peaking at 29 Tbps appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article:…

Read more →

Helmet Security has built an end-to-end platform that secures the infrastructure for agentic AI communication. The post Helmet Security Emerges From Stealth Mode With $9 Million in Funding appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read…

Read more →

AWS has seen multiple China-linked threat groups attempting to exploit the React vulnerability CVE-2025-55182. The post Chinese Hackers Exploiting React2Shell Vulnerability appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article: Chinese Hackers Exploiting React2Shell…

Read more →

The Ministry of Communications on had asked smartphone makers to install the government’s “Sanchar Saathi” app within 90 days and to prevent users from disabling it. The post India Rolls Back Order to Preinstall Cybersecurity App on Smartphones appeared first…

Read more →

Significant cybersecurity M&A deals announced by Arctic Wolf, Bugcrowd, Huntress, Palo Alto Networks, and Zscaler. The post Cybersecurity M&A Roundup: 30 Deals Announced in November 2025 appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original…

Read more →

Hackers stole the names, addresses, Social Security numbers, and financial and medical information of 9,542 people. The post Inotiv Says Personal Information Stolen in Ransomware Attack appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original…

Read more →

Established in 2024 by Cybereason co-founders Lior Div and Yonatan Striem-Amit, the company has raised a total of $166 million in funding. The post Agentic Security Firm 7AI Raises $130 Million appeared first on SecurityWeek. This article has been indexed…

Read more →

The state-sponsored hackers relied on phishing emails to deliver a malicious payload to Reporters Without Borders (RSF). The post Reporters Without Borders Targeted by Russian Hackers appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original…

Read more →

The 25-page document outlines four principles for securely integrating AI with operational technology. The post Global Cyber Agencies Issue AI Security Guidance for Critical Infrastructure OT appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original…

Read more →

Freedom Mobile says hackers stole customers’ personal information from its account management platform. The post Personal Information Compromised in Freedom Mobile Data Breach appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article: Personal Information…

Read more →

The compromised personal and financial information includes names, addresses, Social Security numbers, and card numbers. The post Marquis Data Breach Impacts Over 780,000 People appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article: Marquis…

Read more →

A researcher has pointed out that only instances using a newer feature are impacted by CVE-2025-55182. The post React2Shell: In-the-Wild Exploitation Expected for Critical React Vulnerability appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original…

Read more →