SecurityWeek

Data analytics firm Palantir, which has drawn fire over its law enforcement and national security work, made a low-key debut Wednesday on Wall Street at a hefty valuation of more than $20 billion.

read more

GitHub on Wednesday announced that its code scanning feature, which is designed to enable developers to easily identify vulnerabilities in their products before they reach production, is generally available.

read more

On September 22nd, Canadian-based e-commerce company, Shopify, disclosed a security incident involving the breach of data belonging to almost 200 merchants (and their customers). According to the company’s investigation, two rogue members of their support team were engaged in a scheme to obtain customer transactional records of selected merchants.

read more

When Security is Seen as a Business Enabler We All Win 

read more

Enterprise application access provider Axis Security this week announced that it has raised $32 million in Series B funding, which brings the total raised by the company to $49 million.

read more

A U.S. district judge has dismissed New Mexico’s privacy claims against Google over privacy concerns, but New Mexico’s top prosecutor vowed Monday to continue the legal fight to protect child privacy rights.

read more

Cisco this week released patches for two high-severity vulnerabilities in IOS XR software that have been actively exploited in attacks for over a month.

read more

Twitter’s search for a new chief information security officer (CISO) has come to an end. The social media giant announced this week that Rinki Sethi has been appointed to the role.

read more

A Russian national was sentenced to 88 months in prison in the United States for hacking LinkedIn, Dropbox, and Formspring in 2012.

read more

Distributed denial-of-service (DDoS) attacks launched in recent days against popular flight tracking services may be linked to the conflict between Armenia and Azerbaijan.

read more

FireEye's Mandiant Threat Intelligence and MITRE have collaborated on developing a new visualization able to combine the two separate Enterprise ATT&CK and ICS ATT&CK threat knowledgebases into a single holistic view combining both IT and OT attack behaviors.

read more

VMware on Tuesday announced Carbon Black Cloud Workload, a new security solution designed to help organizations protect workloads running in private, virtualized and hybrid cloud environments.

read more

The China-linked BlackTech cyber-spies have adopted new malicious tools in recent attacks, and they have started targeting the United States, Symantec security researchers revealed on Tuesday.

read more

IT asset and service management solutions provider Ivanti on Monday announced the acquisition of MobileIron and Pulse Secure.

read more

Threat actors are expected to spread false information regarding hacked voter information and voting systems, the Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) say in an alert.

read more

A registration statement filed by McAfee on Monday with the U.S. Securities and Exchange Commission (SEC) shows that the company is planning on returning to public markets.

read more

Human rights organization Amnesty International has identified new macOS and Linux-targeting variants of the infamous FinFisher-made spyware family FinSpy.

read more

Universal Health Services (UHS) over the weekend shut down the IT networks at multiple hospitals in the United States, after being hit with a cyberattack.

read more

French shipping giant CMA CGM on Monday revealed that it has been dealing with a cyberattack that forced it to shut down some systems.

read more

Text storage service Pastebin last week announced the introduction of two new security features, but some industry professionals believe they will likely be abused by malicious actors.

read more