Tens of cybersecurity companies have announced cutting staff over the past year, in some cases significant portions of their global workforce. The post Dozens of Cybersecurity Companies Announced Layoffs in Past Year appeared first on SecurityWeek. This article has been…
Tag: securityweek
Chinese Hackers Adopting Open Source ‘SparkRAT’ Tool
Chinese threat actor DragonSpark has been using the SparkRAT open source backdoor in attacks targeting East Asian organizations. The post Chinese Hackers Adopting Open Source ‘SparkRAT’ Tool appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…
UK Gov Warns of Phishing Attacks Launched by Iranian, Russian Cyberspies
The UK’s NCSC has issued a security advisory to warn about spearphishing campaigns conducted by two unrelated Russian and Iranian hacker groups. The post UK Gov Warns of Phishing Attacks Launched by Iranian, Russian Cyberspies appeared first on SecurityWeek. This…
US Government Agencies Warn of Malicious Use of Remote Management Software
CISA, NSA, and MS-ISAC issued an alert on the malicious use of RMM software to steal money from bank accounts. The post US Government Agencies Warn of Malicious Use of Remote Management Software appeared first on SecurityWeek. This article has…
Malicious Prompt Engineering With ChatGPT
The release of OpenAI’s ChatGPT in late 2022 has demonstrated the potential of AI for both good and bad. The post Malicious Prompt Engineering With ChatGPT appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original…
Security Update for Chrome 109 Patches 6 Vulnerabilities
Google has awarded more than $25,000 to the researchers who reported the vulnerabilities patched with the release of the latest Chrome update. The post Security Update for Chrome 109 Patches 6 Vulnerabilities appeared first on SecurityWeek. This article has been…
North Korean APT Expands Its Attack Repertoire
The North Korean APT tracked as TA444 is either moonlighting from its previous primary purpose, expanding its attack repertoire, or is being impersonated by other hackers. The post North Korean APT Expands Its Attack Repertoire appeared first on SecurityWeek. This…
Strata Raises $26 Million for Multi-Cloud Identity Management Platform
Strata Identity has raised $26 million in a Series B funding round led by Telstra Ventures, with additional investment from Forgepoint Capital, Innovating Capital, and Menlo Ventures. The post Strata Raises $26 Million for Multi-Cloud Identity Management Platform appeared first…
New Open Source OT Security Tool Helps Address Impact of Upcoming Microsoft Patch
Otorio has released a free tool that organizations can use to detect and address issues related to DCOM authentication. The post New Open Source OT Security Tool Helps Address Impact of Upcoming Microsoft Patch appeared first on SecurityWeek. This article…
CISA Provides Resources for Securing K-12 Education System
CISA has published a report detailing the cybersecurity risks to the K-12 education system and recommendations on how to secure it. The post CISA Provides Resources for Securing K-12 Education System appeared first on SecurityWeek. This article has been indexed…
Forward Networks Raises $50 Million in Series D Funding
Forward Networks, a company that provides network security and reliability solutions, has raised $50 million from several investors. The post Forward Networks Raises $50 Million in Series D Funding appeared first on SecurityWeek. This article has been indexed from SecurityWeek…
South Dakota’s Noem Says Cell Phone Number Hacked
South Dakota Gov. Kristi Noem says her personal cell phone was hacked and linked it to the release of documents by the January 6 committee. The post South Dakota’s Noem Says Cell Phone Number Hacked appeared first on SecurityWeek. This…
Riot Games Says Source Code Stolen in Ransomware Attack
Video games developer Riot Games says source code was stolen from its development environment in a ransomware attack The post Riot Games Says Source Code Stolen in Ransomware Attack appeared first on SecurityWeek. This article has been indexed from SecurityWeek…
Password Dependency: How to Break the Cycle
Hackers rarely hack in anymore. They log in using stolen, weak, default, or otherwise compromised credentials. That’s why it’s so critical to break the password dependency cycle. But how can this be done? The post Password Dependency: How to Break…
Learning to Lie: AI Tools Adept at Creating Disinformation
Artificial intelligence is competing in another endeavor once limited to humans — creating propaganda and disinformation. The post Learning to Lie: AI Tools Adept at Creating Disinformation appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…
VMware Plugs Critical Code Execution Flaws
VMware vRealize Log Insight vulnerability allows an unauthenticated attacker to take full control of a target system. The post VMware Plugs Critical Code Execution Flaws appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article:…
GoTo Says Hackers Stole Encrypted Backups, MFA Settings
GoTo said an unidentified threat actor stole encrypted backups and an encryption key for a portion of that data during a 2022 breach. The post GoTo Says Hackers Stole Encrypted Backups, MFA Settings appeared first on SecurityWeek. This article has…
Apple Patches Exploited iOS Vulnerability in Old iPhones
Apple’s iOS 12.5.7 update patches CVE-2022-42856, an actively exploited vulnerability, in old iPhones and iPads. The post Apple Patches Exploited iOS Vulnerability in Old iPhones appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article:…
FBI Confirms North Korean Hackers Behind $100 Million Horizon Bridge Heist
FBI says a North Korea-linked threat group known as Lazarus and APT38 is behind the $100 million Horizon bridge cryptocurrency heist. The post FBI Confirms North Korean Hackers Behind $100 Million Horizon Bridge Heist appeared first on SecurityWeek. This article…
Attacks Targeting Realtek SDK Vulnerability Ramping Up
Security researchers have observed an uptick in attacks targeting CVE-2021-35394, an RCE vulnerability in Realtek Jungle SDK. The post Attacks Targeting Realtek SDK Vulnerability Ramping Up appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original…
Arm Vulnerability Leads to Code Execution, Root on Pixel 6 Phones
Technical details published for an Arm Mali GPU flaw leading to arbitrary kernel code execution and root on Pixel 6. The post Arm Vulnerability Leads to Code Execution, Root on Pixel 6 Phones appeared first on SecurityWeek. This article has…
Zendesk Hacked After Employees Fall for Phishing Attack
Zendesk is informing customers about a data breach that started with an SMS phishing campaign targeting the company’s employees. The post Zendesk Hacked After Employees Fall for Phishing Attack appeared first on SecurityWeek. This article has been indexed from SecurityWeek…
Microsoft Office to Block XLL Add-ins From Internet
Microsoft plans to improve the protection of Office users by blocking XLL add-ins from the internet. The post Microsoft Office to Block XLL Add-ins From Internet appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original…
Cygnvs Emerges From Stealth Mode With Incident Response Platform
Cygnvs emerges from stealth mode with an incident response platform and $55 million in Series A funding. The post Cygnvs Emerges From Stealth Mode With Incident Response Platform appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read…
Thoma Bravo to Buy Magnet Forensics in $1.3B Transaction
Thoma Bravo will spend $1.3 billion to acquire Canadian software firm Magnet Forensics, expanding a push into the lucrative cybersecurity business. The post Thoma Bravo to Buy Magnet Forensics in $1.3B Transaction appeared first on SecurityWeek. This article has been…
Apple Patches WebKit Code Execution in iPhones, MacBooks
Apple rolled out iOS 16.3 and macOS Ventura 13.2 to cover serious security vulnerabilities. The post Apple Patches WebKit Code Execution in iPhones, MacBooks appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article: Apple…