In Other News: Possible Adobe Reader Zero-Day, Hijacking Mobi TLD, WhatsApp View Once Exploit

September 13, 2024 at 09:33AM Summary: SecurityWeek’s cybersecurity news roundup compiles noteworthy stories each week, including an Adobe Reader zero-day vulnerability, .mobi TLD TLS undermining, Scattered Spider ransomware targeting the insurance and financial sectors, macOS HZ RAT malware, WhatsApp View Once feature bypass, dismantling of card-cloning gangs, Google’s actions against influence operations, Windows MSI installer … Read more

In Other News: Locked Shields 2024, Data Exposure Bugs, NVIDIA Patches

May 3, 2024 at 10:29AM SecurityWeek offers a weekly roundup of cybersecurity news, highlighting significant developments from the latest vulnerability discoveries to industry reports. This week’s stories cover a former NSA employee’s prison sentence, a fundraising by Bricklayer AI, Chinese keyboard app vulnerabilities, NVIDIA and USPS phishing campaigns, a Los Angeles County data breach, and … Read more

How Attackers Can Own a Business Without Touching the Endpoint

April 19, 2024 at 07:48AM Attackers are increasingly targeting cloud apps and identities without requiring access to traditional networks. With the shift to SaaS adoption, interconnectedness and complexity of digital identities are vulnerable. Security controls for cloud identities are limited, leading to a rise in attacks. Techniques like AiTM phishing, IM phishing, SAMLjacking, Oktajacking, and … Read more

In Other News: Moscow Sewage Hack, Women in Cybersecurity Report, Dam Security Concerns

April 12, 2024 at 10:36AM SecurityWeek’s cybersecurity news roundup provides a concise summary of noteworthy stories that may not receive full articles but are essential for understanding the cybersecurity landscape. This week’s topics include Russia’s attempts to sabotage European railways, a Nigerian national pleading guilty in a BEC scheme, and critical vulnerabilities in various systems. … Read more

In Other News: Google’s PQC Threat Model, Keyboard Sounds Expose Data, AI Roadmap 

March 22, 2024 at 11:36AM SecurityWeek compiles cybersecurity news, featuring stories often overlooked. This week highlights discoveries including keyboard typing sounds exposing sensitive data, ICS attacks in the second half of 2023, DHS unveiling an AI roadmap, Ukrainian hackers arrested, Google’s post-quantum cryptography threat model, and more. Additionally, Google is offering rewards for improving its … Read more

In Other News: Spyware Vendor Shutdown, Freenom-Meta Settlement, 232 Threat Groups

February 23, 2024 at 09:27AM SecurityWeek’s cybersecurity roundup covers noteworthy stories often overlooked. This week’s highlights include a spyware vendor’s shutdown due to Google disclosures, Wyze camera security incident, Chinese 8220 Gang’s cryptomining attacks, Lucifer DDoS botnet targeting Apache tools, PyPI packages sideloading malware, ransomware attack on DC school system, Freenom settling Meta lawsuit, OT … Read more

In Other News: $350 Million Google Settlement, AI-Powered Fraud, Cybersecurity Funding 

February 9, 2024 at 04:09PM SecurityWeek’s cybersecurity roundup provides a concise compilation of notable stories that may have been overlooked, including a service generating fake IDs, a deepfake CFO tricking a finance worker, the Black Hunt ransomware using leaked code, a cyberattack on the Pennsylvania Courts website, and other developments. Notable patches and industry reports … Read more

In Other News: Palo Alto Loses Patent Lawsuit, Identity Firms Get Funding, Government Hackers

February 4, 2024 at 10:42AM SecurityWeek’s cybersecurity roundup offers a weekly compilation of significant developments in the cybersecurity landscape. It covers various topics such as Iranian cyber contractors, Ukrainian military targeting, APT group activities, patent infringement cases, funding announcements for Incognia and Oasis Security, warnings about the UN Cybercrime Treaty, patch releases, and the launch … Read more

In Other News: US Ransomware Attacks, 23andMe Blames Victims, Nuclear Waste Hacking Attempt

January 5, 2024 at 10:06AM SecurityWeek publishes a concise weekly cybersecurity roundup, highlighting significant stories that may have gone unnoticed. This week features Russian hack of Ukraine’s telecoms giant, cyberattack on a Pennsylvania water facility, Pegasus spyware targeting Indian journalists, vulnerabilities in various systems, Let’s Encrypt’s annual report, and cybercrime developments. Other stories cover ransomware … Read more