Source: www.securityweek.com – Author: Ionut Arghire Cloudflare on Thursday announced Secrets Store, a new solution designed to help developers and organizations securely store and manage secrets...
Author:
New SBOM Hub Helps All Stakeholders in Software Distribution Chain – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Lineaje has launched SBOM360 Hub, a platform for software producers, sellers, and consumers to publish, share and use software bills...
Google Announces New Rating System for Android and Device Vulnerability Reports – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Google on Wednesday announced that it’s updating the Android and Google Devices Vulnerability Reward Program (VRP) with a new system...
PoC Tool Exploits Unpatched KeePass Vulnerability to Retrieve Master Passwords – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire A researcher has published a proof-of-concept (PoC) tool that exploits an unpatched KeePass vulnerability to retrieve the master password from...
Cisco Says PoC Exploits Available for Newly Patched Enterprise Switch Vulnerabilities – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Cisco this week announced patches for critical-severity vulnerabilities in multiple small business switches and warned that proof-of-concept (PoC) code that...
Apple Blocked 1.7 Million Applications From App Store in 2022 – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Apple this week announced that it blocked 1.7 million applications from being published in the App Store in 2022. The...
Critical Infrastructure Organizations Warned of BianLian Ransomware Attacks – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire The US Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the Australian Cyber Security Centre...
Lacroix Closes Production Sites Following Ransomware Attack – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Technological equipment giant Lacroix Group says it has closed three production sites for the week after experiencing a ransomware attack....
Chrome 113 Security Update Patches Critical Vulnerability – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Google this week announced the release of a Chrome 113 security update that resolves a total of 12 vulnerabilities, including...
Lancefly APT Targeting Asian Government Organizations for Years – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire For at least three years, an advanced persistent threat (APT) actor has been targeting government organizations in South and Southeast...
New Babuk-Based Ransomware Targeting Organizations in US, Korea – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire An emerging threat actor has been targeting organizations in the US and South Korea with a new ransomware family based...
Crosspoint Capital Partners Acquires Absolute Software in $870 Million Deal – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Endpoint security and secure access solutions provider Absolute Software (NASDAQ: ABST) has agreed to be acquired by Crosspoint Capital Partners...
Brightly Software Notifying 3 Million SchoolDude Users of Data Breach – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Brightly Software last week started informing roughly three million individuals that their personal information might have been compromised in a...
Discord Informs Users of Data Breach Involving Customer Support Provider – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire VoIP and instant messaging social platform Discord is notifying users that some of their information was compromised in a cybersecurity...
WordPress Field Builder Plugin Vulnerability Exploited in Attacks Two Days After Patch – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Threat actors were seen adopting public proof-of-concept (PoC) exploit code targeting a cross-site scripting (XSS) vulnerability in the Advanced Custom...
PharMerica Discloses Data Breach Impacting 5.8 Million Individuals – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire National pharmacy network PharMerica last week started sending out notification letters to more than 5.8 million individuals to disclose a...
Spain Arrests Hackers in Crackdown on Major Criminal Organization – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Spanish authorities this week announced the arrest of 40 individuals for their roles in a criminal organization that performed bank...
Leaked Babuk Code Fuels New Wave of VMware ESXi Ransomware – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Cybersecurity firm SentinelOne warns of an increase in the number of new ransomware families designed to target VMware ESXi that...
CISA, FBI: Ransomware Gang Exploited PaperCut Flaw Against Education Facilities – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) have raised the alarm on a...
1 Million WordPress Sites Impacted by Exploited Plugin Vulnerability – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Exploitation of a critical vulnerability in the Essential Addons for Elementor WordPress plugin began immediately after a patch was released,...
Details Disclosed for Exploit Chain That Allows Hacking of Netgear Routers – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Industrial and IoT cybersecurity firm Claroty on Thursday disclosed the details of five vulnerabilities that can be chained in an...
OpenSSF Receives $5 Million for Open Source Software Security Project – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire The Open Source Security Foundation (OpenSSF) this week announced that it has added four new members and that Microsoft and...
New ‘Greatness’ Phishing-as-a-Service Targets Microsoft 365 Accounts – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire For roughly a year, a new phishing-as-a-service (PaaS) offering has been used to target Microsoft 365 accounts in the manufacturing,...
Google Improves Android Security With New APIs – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire At its Google I/O developer conference this week, Google shared details on the security improvements in Android 14, which include...
Microsoft Makes Second Attempt to Patch Recent Outlook Zero-Day – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Microsoft this week released patches for a severe vulnerability that bypassed mitigations rolled out for a no-interaction Outlook zero-day leading...
Google Now Lets US Users Search Dark Web for Their Gmail ID – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Gmail users in the US can now run scans to find out whether their Gmail ID appears on the dark...
SquareX Raises $6 Million for Browser Security Product – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Cybersecurity startup SquareX today emerged from stealth mode with $6 million raised in a seed funding round led by Sequoia...
Webb Raises $7 Million for Blockchain Asset Transfer Privacy System – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Blockchain company Webb Technologies this week announced that it has raised $7 million in seed funding for its privacy solutions...
SAP Patches Critical Vulnerabilities With May 2023 Security Updates – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire German enterprise software maker SAP this week announced the release of 18 new security notes on its May 2023 Security...
Microsoft Patch Tuesday: 40 Vulnerabilities, 2 Zero-Days – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Microsoft on Tuesday announced patches for 40 newly documented vulnerabilities in its products, including two zero-day flaws. One of the...