Category: securityweek

A Fortinet zero-day tracked as CVE-2024-47575 and named FortiJump has been exploited since at least June 2024. The post New Fortinet Zero-Day Exploited for Months Before Patch appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…

Read more →

The Penn State university has agreed to pay $1.25 million to settle alleged failure to meet cybersecurity requirements for DoD and NASA contracts. The post Penn State Settles for $1.25M Over Failure to Comply With DoD, NASA Cybersecurity Requirements appeared…

Read more →

AI models from Hugging Face can contain similar hidden problems to OSS downloads from repositories such as GitHub. The post New Scoring System Helps Secure the Open Source AI Model Supply Chain appeared first on SecurityWeek. This article has been…

Read more →

Cisco has released patches for multiple vulnerabilities in ASA, FMC, and FTD products, including an exploited flaw. The post Cisco Patches Vulnerability Exploited in Large-Scale Brute-Force Campaign appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…

Read more →

Over $350,000 was paid out on day 2 of Pwn2Own Ireland 2024, including $50,000 for an exploit targeting the Samsung Galaxy S24.  The post Samsung Galaxy S24 Hacked at Pwn2Own Ireland 2024  appeared first on SecurityWeek. This article has been…

Read more →

Fortinet confirms zero-day exploits hitting remote code execution bug in the FortiManager platform. CVSS severity score 9.8/10. The post Fortinet Confirms Zero-Day Exploit Targeting FortiManager Systems appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original…

Read more →

Google has released new technology to embed watermarks and flag AI-generated content across text, images, audio, and video. The post Google SynthID Adding Invisible Watermarks to AI-Generated Content appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read…

Read more →

New York startup raises $33 million in an expanded Series A round to build technology to detect deepfake and AI-generated media. The post Reality Defender Banks $33M to Tackle AI-Generated Deepfakes appeared first on SecurityWeek. This article has been indexed…

Read more →

Pwn2Own Ireland 2024 participants have earned half a million dollars on the first day for hacking NAS devices, cameras, speakers and printers. The post White Hat Hackers Earn $500,000 on First Day of Pwn2Own Ireland 2024 appeared first on SecurityWeek.…

Read more →

The SEC announces penalties against Unisys, Avaya, Check Point and Mimecast for downplaying the impact of the SolarWinds Orion hack. The post SEC Charges Four Companies Over Misleading Disclosures on SolarWinds Hack appeared first on SecurityWeek. This article has been…

Read more →

Terrance Michael Ciszek is charged with buying stolen account credentials from the Genesis Market dark web marketplace. The post US Police Detective Charged With Purchasing Stolen Credentials appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…

Read more →

Stream.Security (formerly Lightlytics) has raised a total of $55 million since launching in 2020 with a cloud data security product. The post Stream.Security Secures $30 Million Series B  appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read…

Read more →

Critical and high-severity vulnerabilities that can lead to full device compromise have been found in mbNET.mini and Helmholz industrial routers.  The post Critical Vulnerabilities Expose mbNET.mini, Helmholz Industrial Routers to Attacks appeared first on SecurityWeek. This article has been indexed…

Read more →

The Cicada3301 ransomware shows multiple similarities with BlackCat and is believed to mark the reemergence of the threat. The post BlackCat Ransomware Successor Cicada3301 Emerges appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article:…

Read more →

Latrodectus malware has been increasingly used by cybercriminals, with recent campaigns targeting the financial, automotive and healthcare sectors.  The post Latrodectus Malware Increasingly Used by Cybercriminals appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original…

Read more →

New malicious campaign suggests the Bumblebee malware loader might be resurfacing following the May 2024 law enforcement takedown. The post Bumblebee Malware Loader Resurfaces Following Law Enforcement Takedown appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read…

Read more →

Palo Alto Networks has added new remote access, virtual patching and firewall capabilities to its OT Security solution. The post Palo Alto Networks Adds New Capabilities to OT Security Solution appeared first on SecurityWeek. This article has been indexed from…

Read more →

Johnson & Johnson has disclosed a data breach impacting the personal information of thousands of people. The post Pharma Giant Johnson & Johnson Discloses Data Breach appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original…

Read more →

For the second time in as many months, VMware patches a remote code execution vulnerability first exploited at a Chinese hacking contest in June. The post VMware Struggles to Fix Flaw Exploited at Chinese Hacking Contest appeared first on SecurityWeek.…

Read more →

Apple expands its Security Research Device Program to put hackable iPhones in the hands of select educators at the university level. The post Apple Offering Hackable iPhones to Universities appeared first on SecurityWeek. This article has been indexed from SecurityWeek…

Read more →