Source: www.securityweek.com – Author: Eduard Kovacs Three bankrupt cryptocurrency companies — FTX, BlockFi and Genesis — have suffered data breaches following a SIM swapping attack that...
Author:
In Other News: Africa Cybercrime Crackdown, Unpatched macOS Flaw, Investor Disclosures – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs SecurityWeek is publishing a weekly cybersecurity roundup that provides a concise compilation of noteworthy stories that might have slipped under...
Lawmaker Wants Federal Contractors to Have Vulnerability Disclosure Policies – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Congresswoman Nancy Mace (R-SC) this week introduced a bill that would require federal contractors to implement a Vulnerability Disclosure Policy...
Nearly 1,000 Organizations, 60 Million Individuals Impacted by MOVEit Hack – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Nearly 1,000 organizations and 60 million individuals are reportedly impacted by the recent MOVEit campaign conducted by the Russian-speaking Cl0p...
Mysterious Malware Uses Wi-Fi Scanning to Get Location of Infected Device – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Researchers at Secureworks have come across a mysterious piece of malware that scans for nearby Wi-Fi access points in an...
Rockwell ThinManager Vulnerabilities Could Expose Industrial HMIs to Attacks – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Vulnerabilities discovered by researchers in Rockwell Automation’s ThinManager ThinServer product could be exploited in attacks aimed at industrial control systems...
Traders Targeted by Cybercriminals in Attack Exploiting WinRAR Zero-Day – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs A financially motivated cybercrime group has exploited a zero-day vulnerability in the popular file archiving utility WinRAR to deliver malware...
Cybersecurity Companies Report Surge in Ransomware Attacks – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Cybersecurity companies have released a dozen ransomware reports in recent weeks and most of them show a significant increase in...
Exploitation of Ivanti Sentry Zero-Day Confirmed – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Ivanti has confirmed that a recently discovered vulnerability affecting its Sentry mobile gateway has been exploited in attacks. The existence...
Ransomware Group Starts Leaking Data From Japanese Watchmaking Giant Seiko – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs A known ransomware group on Monday started publishing data allegedly stolen from the systems of Japanese watchmaking giant Seiko. Seiko...
Australian Energy Software Firm Energy One Hit by Cyberattack – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Energy One, an Australian company that provides software products and services to the energy sector, has been hit by a...
CISA Warns of Another Exploited Adobe ColdFusion Vulnerability – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs The US Cybersecurity and Infrastructure Security Agency (CISA) is warning organizations that an Adobe ColdFusion vulnerability patched earlier this year...
Australian Lender Latitude Financial Reports AU$76 Million Cyberattack Costs – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Australian financial services company Latitude Financial reported on Friday that the cyberattack disclosed earlier this year has cost it tens...
Tesla Discloses Data Breach Related to Whistleblower Leak – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Tesla has disclosed a data breach impacting roughly 75,000 people, but the incident is the result of a whistleblower leak...
Companies Respond to ‘Downfall’ Intel CPU Vulnerability – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Several major companies have published security advisories in response to the recently disclosed Intel CPU vulnerability named Downfall. Discovered by...
Cybersecurity M&A Roundup for August 1-15, 2023 – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Twenty-five cybersecurity-related merger and acquisition (M&A) deals were announced in the first half of August 2023. The number of transactions...
Exploitation of Citrix ShareFile Vulnerability Spikes as CISA Issues Warning – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Exploitation attempts targeting a remote code execution flaw in Citrix’s ShareFile product have spiked just as the US Cybersecurity and...
Google Releases Security Key Implementation Resilient to Quantum Attacks – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Google on Tuesday released what it described as the first FIDO2 security key implementation that should be resistant to quantum...
SecureWorks Laying Off 15% of Employees – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Threat detection and response firm SecureWorks is laying off roughly 15% of its staff, in the second round of firings...
Power Management Product Flaws Can Expose Data Centers to Damaging Attacks, Spying – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Vulnerabilities in power management products made by CyberPower and Dataprobe could be exploited in attacks aimed at data centers, allowing...
Iagona ScrutisWeb Vulnerabilities Could Expose ATMs to Remote Hacking – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Several vulnerabilities discovered in the ScrutisWeb ATM fleet monitoring software made by French company Iagona could be exploited to remotely...
Microsoft Discloses Codesys Flaws Allowing Shutdown of Industrial Operations, Spying – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Over a dozen vulnerabilities discovered by Microsoft researchers in Codesys products can be exploited to cause disruption to industrial processes...
Black Hat USA 2023 – Announcements Summary – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Hundreds of companies and organizations showcased their cybersecurity products and services this week at the 2023 edition of the Black...
MoustachedBouncer: Foreign Embassies in Belarus Likely Targeted via ISPs – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Foreign embassies in Belarus have been targeted by a cyberespionage group that appears to leverage adversary-in-the-middle (AitM) techniques through internet...
Symmetry Systems Raises $17.7M for Data Security Posture Management Platform – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Symmetry Systems has raised $17.7 million in an insider funding round that brings the total raised by the data security...
European Startup Pistachio Raises €3.25 Million for Cybersecurity Training Platform – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Norway-based startup Pistachio on Thursday announced raising €3.25 million (roughly $3.5 million) for its AI-driven cybersecurity training platform. The Pistachio...
CISA Warns Organizations of Exploited Vulnerability Affecting .NET, Visual Studio – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs The US Cybersecurity and Infrastructure Security Agency (CISA) has added a zero-day flaw affecting Microsoft’s .NET and Visual Studio products...
Western Digital, Synology NAS Vulnerabilities Exposed Millions of Users’ Files – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Critical vulnerabilities discovered by IoT and industrial cybersecurity firm Claroty in Western Digital (WD) and Synology network-attached storage (NAS) products...
Microsoft Paid Out $13 Million via Bug Bounty Programs for Fourth Consecutive Year – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs For the fourth consecutive year, Microsoft has announced paying out more than $13 million through its bug bounty programs. The...
Intel Addresses 80 Firmware, Software Vulnerabilities – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Intel on Tuesday released a total of 46 new security advisories to inform customers about 80 vulnerabilities affecting the company’s...