Source: www.securityweek.com – Author: Ionut Arghire Splunk on Thursday announced Splunk Enterprise security updates that resolve multiple high-severity vulnerabilities, including some impacting third-party packages used by...
Author:
Enzo Biochem Ransomware Attack Exposes Information of 2.5M Individuals – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Biotechnology company Enzo Biochem has revealed that the clinical test information of roughly 2.47 million individuals was exposed in a...
Google Temporarily Offering $180,000 for Full Chain Chrome Exploit – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Google today announced significantly higher bug bounty rewards for vulnerability reports containing full chain exploits leading to a sandbox escape...
Toyota Discloses New Data Breach Involving Vehicle, Customer Information – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Japanese car maker Toyota this week announced that cloud configuration issues have led to years-long exposure of customer data. The...
Adobe Inviting Researchers to Private Bug Bounty Program – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Adobe on Wednesday called out for all researchers on the HackerOne vulnerability reporting platform to join its VIP private bug...
Critical Vulnerabilities Found in Faronics Education Software – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Vulnerabilities identified in the Faronics Insight education software could lead to various types of attacks, including unauthenticated remote code execution...
Chrome 114 Released With 18 Security Fixes – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Google this week announced the release of Chrome 114 to the stable channel with a total of 18 security fixes...
Spyware Found in Google Play Apps With Over 420 Million Downloads – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Antivirus company Doctor Web has identified spyware in over 100 Android applications that had more that 421 million cumulative downloads...
Millions of WordPress Sites Patched Against Critical Jetpack Vulnerability – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire An automatic update pushed to roughly five million WordPress sites over the past few days addresses a critical vulnerability introduced...
PyPI Enforcing 2FA for All Project Maintainers to Boost Security – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire The Python Package Index (PyPI) has announced that it will require all accounts that maintain a project to have two-factor...
Personal Information of 9 Million Individuals Stolen in MCNA Ransomware Attack – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Dental benefits manager MCNA has started sending notification letters to roughly nine million individuals to inform them that their personal...
Many Vulnerabilities Found in PrinterLogic Enterprise Software – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Vulnerabilities identified in PrinterLogic’s enterprise management printer solution could expose organizations to authentication bypass, SQL injection, cross-site scripting (XSS) and...
Organizations Worldwide Targeted in Rapidly Evolving Buhti Ransomware Operation – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire A recently identified ransomware operation called Buhti is using LockBit and Babuk variants to target both Linux and Windows systems,...
Google Cloud Users Can Now Automate TLS Certificate Lifecycle – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Google on Thursday announced the availability of its Automatic Certificate Management Environment (ACME) API for all Google Cloud users, allowing...
NCC Group Releases Open Source Tools for Developers, Pentesters – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Cybersecurity firm NCC Group has released new open source tools that can be useful to application developers and penetration testers....
Memcyco Raises $10 Million in Seed Funding to Prevent Website Impersonation – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Website impersonation detection and prevention company Memcyco on Wednesday announced that it has raised $10 million in a seed funding...
Apria Healthcare Notifying 2 Million People of Years-Old Data Breaches – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Home medical equipment provider Apria Healthcare is notifying nearly two million individuals of personal information being compromised during data breaches...
European Cybersecurity Firm Sekoia.io Raises $37.5 Million – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire European cybersecurity firm Sekoia.io on Wednesday announced that it has raised €35 million (roughly $37.5 million) in Series A funding,...
GitLab Security Update Patches Critical Vulnerability – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire DevOps platform GitLab this week resolved a critical-severity vulnerability impacting both GitLab Community Edition (CE) and Enterprise Edition (EE). An...
Android App With 50,000 Downloads in Google Play Turned Into Spyware via Update – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire A screen recording application that had amassed more than 50,000 downloads in Google Play was trojanized via an update last...
US Sanctions North Korean University for Training Hackers – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire The US Department of the Treasury on Tuesday announced sanctions against four entities and one individual for engaging in malicious...
New ‘GoldenJackal’ APT Targets Middle East, South Asia Governments – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire An advanced persistent threat (APT) actor named GoldenJackal has been targeting government and diplomatic entities in the Middle East and...
Iranian Hackers Using New Windows Kernel Driver in Attacks – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Iranian threat actors have been using a newly identified Windows kernel driver in attacks against Middle East targets since 2020,...
Google Launches Bug Bounty Program for Mobile Applications – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Google this week introduced Mobile VRP (vulnerability rewards program), a new bug bounty program for reporting vulnerabilities found in the...
GAO Tells Federal Agencies to Fully Implement Key Cloud Security Practices – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire A new US Government Accountability Office (GAO) report shows that the Departments of Agriculture, Homeland Security (DHS), Labor, and the...
Food Distributor Sysco Says Cyberattack Exposed 126,000 Individuals – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Food distributor Sysco Corporation is informing over 126,000 individuals that their personal information was compromised in a recent cyberattack. A...
Microsoft: BEC Scammers Use Residential IPs to Evade Detection – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Cybercriminals are using residential IP addresses in business email compromise (BEC) attacks to make them seem locally generated and evade...
US Teenager Indicted for Credential Stuffing Attack on Fantasy Sports Website – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire A Wisconsin teenager has been charged with accessing tens of thousands of user accounts at a fantasy sports and betting...
Pimcore Platform Flaws Exposed Users to Code Execution – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Security researchers are warning that vulnerabilities patched in the open-source Pimcore platform could have led to the execution of arbitrary...
Researchers Identify Second Developer of ‘Golden Chickens’ Malware – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Cybersecurity firm eSentire says it has identified the second developer of Golden Chickens, a malware suite used by financially-motivated cybercrime...