SecurityWeek

UnitedHealth Says It Has Made Progress on Recovering From Massive Cyberattack

Security Week - Mon, 03/18/2024 - 10:25pm

UnitedHealth is testing the last major system it must restore from last month’s Change Healthcare cyberattack, but it has no date yet for finishing the recovery.

The post UnitedHealth Says It Has Made Progress on Recovering From Massive Cyberattack appeared first on SecurityWeek.

Categories: SecurityWeek

UK Government Releases Cloud SCADA Security Guidance

Security Week - Mon, 03/18/2024 - 10:33am

UK’s NCSC releases security guidance for OT organizations considering migrating their SCADA solutions to the cloud.

The post UK Government Releases Cloud SCADA Security Guidance appeared first on SecurityWeek.

Categories: SecurityWeek

Fujitsu Data Breach Impacts Personal, Customer Information

Security Week - Mon, 03/18/2024 - 10:10am

Fujitsu says hackers infected internal systems with malware, stole personal and customer information.

The post Fujitsu Data Breach Impacts Personal, Customer Information appeared first on SecurityWeek.

Categories: SecurityWeek

Cisco Completes $28 Billion Acquisition of Splunk

Security Week - Mon, 03/18/2024 - 9:41am

The networking giant paid $157 per share in cash for Splunk, a powerhouse in data analysis, security and observability tools, in a deal first announced in September 2023.

The post Cisco Completes $28 Billion Acquisition of Splunk appeared first on SecurityWeek.

Categories: SecurityWeek

Pentagon Received Over 50,000 Vulnerability Reports Since 2016

Security Week - Mon, 03/18/2024 - 8:28am

Since 2016, the US DoD has received over 50,000 submissions through its vulnerability disclosure program.

The post Pentagon Received Over 50,000 Vulnerability Reports Since 2016 appeared first on SecurityWeek.

Categories: SecurityWeek

Hacker Conversations: Stephanie ‘Snow’ Carruthers, Chief People Hacker at IBM X-Force Red

Security Week - Mon, 03/18/2024 - 8:00am

The desire to be a hacker is usually innate, and commonly emerges in early life. This did not happen with Snow: she was a married freelance special effects makeup artist when it all began.

The post Hacker Conversations: Stephanie ‘Snow’ Carruthers, Chief People Hacker at IBM X-Force Red appeared first on SecurityWeek.

Categories: SecurityWeek

New Attack Shows Risks of Browsers Giving Websites Access to GPU 

Security Week - Mon, 03/18/2024 - 7:52am

Researchers demonstrate remote GPU cache side-channel attack from within browsers against AMD and NVIDIA graphics cards.

The post New Attack Shows Risks of Browsers Giving Websites Access to GPU  appeared first on SecurityWeek.

Categories: SecurityWeek

Moldovan Operator of Credential Marketplace Sentenced to US Prison

Security Week - Mon, 03/18/2024 - 6:15am

Sandu Diaconu has been sentenced to 42 months in prison for operating a marketplace for compromised credentials.

The post Moldovan Operator of Credential Marketplace Sentenced to US Prison appeared first on SecurityWeek.

Categories: SecurityWeek

PoC Published for Critical Fortra Code Execution Vulnerability

Security Week - Mon, 03/18/2024 - 6:00am

A critical directory traversal vulnerability in Fortra FileCatalyst Workflow could lead to remote code execution.

The post PoC Published for Critical Fortra Code Execution Vulnerability appeared first on SecurityWeek.

Categories: SecurityWeek

IMF Emails Hacked

Security Week - Mon, 03/18/2024 - 4:28am

The International Monetary Fund (IMF) detects a cybersecurity incident that involved nearly a dozen email accounts getting hacked.

The post IMF Emails Hacked appeared first on SecurityWeek.

Categories: SecurityWeek

Codezero Raises $3.5 Million for DevOps Security Solution

Security Week - Fri, 03/15/2024 - 9:38am

Secure enterprise microservices development firm Codezero raises $3.5 million in seed funding.

The post Codezero Raises $3.5 Million for DevOps Security Solution appeared first on SecurityWeek.

Categories: SecurityWeek

In Other News: CISA Hacked, Chinese Lock Backdoors, Exposed Secrets

Security Week - Fri, 03/15/2024 - 8:52am

Noteworthy stories that might have slipped under the radar: CISA hacked via Ivanti vulnerabilities, Chinese electronic lock backdoors, secrets exposed on GitHub.

The post In Other News: CISA Hacked, Chinese Lock Backdoors, Exposed Secrets appeared first on SecurityWeek.

Categories: SecurityWeek

Discontinued Security Plugins Expose Many WordPress Sites to Takeover

Security Week - Fri, 03/15/2024 - 7:59am

Thousands of WordPress sites are at risk of takeover due to a critical privilege escalation vulnerability in two closed MiniOrange plugins.

The post Discontinued Security Plugins Expose Many WordPress Sites to Takeover appeared first on SecurityWeek.

Categories: SecurityWeek

Tech Support Firms Agree to $26M FTC Settlement Over Fake Services

Security Week - Fri, 03/15/2024 - 7:30am

Restoro and Reimage agree to a $26 million settlement after selling fake antivirus and tech services to undercover FTC agents.

The post Tech Support Firms Agree to $26M FTC Settlement Over Fake Services appeared first on SecurityWeek.

Categories: SecurityWeek

43 Million Possibly Impacted by French Government Agency Data Breach 

Security Week - Fri, 03/15/2024 - 6:25am

Recent data breach at unemployment agency France Travail (Pôle Emploi) could impact 43 million people. 

The post 43 Million Possibly Impacted by French Government Agency Data Breach  appeared first on SecurityWeek.

Categories: SecurityWeek

Threat Detection Report: Cloud Attacks Soar, Mac Threats and Malvertising Escalate

Security Week - Fri, 03/15/2024 - 6:19am

Red Canary’s 2024 Threat Detection Report is based on analysis of almost 60,000 threats across 216 petabytes of telemetry from over 1,000 customers’ endpoints.

The post Threat Detection Report: Cloud Attacks Soar, Mac Threats and Malvertising Escalate appeared first on SecurityWeek.

Categories: SecurityWeek

Ballistic Ventures Closes $360 Million Cybersecurity-Focused Fund

Security Week - Thu, 03/14/2024 - 12:28pm

Venture capital firm Ballistic Ventures closed an oversubscribed $360 million fund that will be used to fund cybersecurity companies.

The post Ballistic Ventures Closes $360 Million Cybersecurity-Focused Fund appeared first on SecurityWeek.

Categories: SecurityWeek

Chrome’s Standard Safe Browsing Now Has Real-Time URL Protection 

Security Week - Thu, 03/14/2024 - 12:01pm

Chrome’s standard Safe Browsing protections now provide real-time malicious site detection and Password Checkup on iOS now flags weak passwords.

The post Chrome’s Standard Safe Browsing Now Has Real-Time URL Protection  appeared first on SecurityWeek.

Categories: SecurityWeek

Boat Dealer MarineMax Hit by Cyberattack

Security Week - Thu, 03/14/2024 - 11:25am

MarineMax, one of the world’s largest retailers of recreational boats and yachts, discloses a cyberattack. 

The post Boat Dealer MarineMax Hit by Cyberattack appeared first on SecurityWeek.

Categories: SecurityWeek

BotGuard Raises $13 Million to Protect Against Harmful Web Traffic

Security Week - Thu, 03/14/2024 - 10:28am

BotGuard OU raises $13 million in Series A funding to help hosting providers filter traffic and protect infrastructures.

The post BotGuard Raises $13 Million to Protect Against Harmful Web Traffic appeared first on SecurityWeek.

Categories: SecurityWeek

Pages