SecurityWeek
US Cyber Agency’s Future Role in Elections Remains Murky Under the Trump Administration
President Donald Trump has yet to name anyone to lead the U.S. Cybersecurity and Infrastructure Security.
The post US Cyber Agency’s Future Role in Elections Remains Murky Under the Trump Administration appeared first on SecurityWeek.
TeamViewer Patches High-Severity Vulnerability in Windows Applications
TeamViewer has released patches for a high-severity elevation of privilege vulnerability in its client and host applications for Windows.
The post TeamViewer Patches High-Severity Vulnerability in Windows Applications appeared first on SecurityWeek.
Nulled, Other Cybercrime Websites Seized by Law Enforcement
Several cybercrime websites have been seized in a law enforcement operation, including Nulled, Cracked, Sellix, and StarkRDP.
The post Nulled, Other Cybercrime Websites Seized by Law Enforcement appeared first on SecurityWeek.
Frederick Health Hit by Ransomware Attack
Maryland healthcare provider Frederick Health has taken some of its systems offline in response to a ransomware attack.
The post Frederick Health Hit by Ransomware Attack appeared first on SecurityWeek.
152,000 Impacted by Data Breach at Berman & Rabin
Law firm Berman & Rabin says 152,000 people are impacted by a data breach resulting from a July 2024 ransomware attack.
The post 152,000 Impacted by Data Breach at Berman & Rabin appeared first on SecurityWeek.
Unprotected DeepSeek Database Exposed Chats, Other Sensitive Information
An unprotected database belonging to Chinese AI company DeepSeek exposed highly sensitive information, including chat history, secret keys, and backend data.
The post Unprotected DeepSeek Database Exposed Chats, Other Sensitive Information appeared first on SecurityWeek.
Tenable to Acquire Vulcan Cyber for $150 Million
Tenable plans to acquire exposure management company Vulcan Cyber for roughly $150 million in cash and stock.
The post Tenable to Acquire Vulcan Cyber for $150 Million appeared first on SecurityWeek.
New Zyxel Zero-Day Under Attack, No Patch Available
GreyNoise reports active exploitation of a newly discovered zero-day vulnerability in Zyxel CPE devices. There are no patches available.
The post New Zyxel Zero-Day Under Attack, No Patch Available appeared first on SecurityWeek.
Oligo Raises $50M to Tackle Application Detection and Response
Oligo Security has raised $50 million in Series B funding for its application detection and response (ADR) platform.
The post Oligo Raises $50M to Tackle Application Detection and Response appeared first on SecurityWeek.
New SLAP and FLOP CPU Attacks Expose Data From Apple Computers, Phones
New CPU side-channel attacks named SLAP and FLOP can be exploited to remotely steal data from Apple mobile and desktop devices.
The post New SLAP and FLOP CPU Attacks Expose Data From Apple Computers, Phones appeared first on SecurityWeek.
Aquabot Botnet Targeting Vulnerable Mitel Phones
The Mirai-based Aquabot botnet has been targeting a vulnerability in Mitel SIP phones for which a proof-of-concept (PoC) exploit exists.
The post Aquabot Botnet Targeting Vulnerable Mitel Phones appeared first on SecurityWeek.
Smiths Group Scrambling to Restore Systems Following Cyberattack
Engineering firm Smiths Group has disclosed a cyberattack that forced it to take some systems offline and activate business continuity plans.
The post Smiths Group Scrambling to Restore Systems Following Cyberattack appeared first on SecurityWeek.
Rockwell Patches Critical, High-Severity Vulnerabilities in Several Products
Rockwell Automation has released six new security advisories to inform customers about several critical and high-severity vulnerabilities.
The post Rockwell Patches Critical, High-Severity Vulnerabilities in Several Products appeared first on SecurityWeek.
Cyber Insights 2025: Artificial Intelligence
Artificial intelligence is upending cybersecurity. It is used by adversaries in their attacks, and by defenders in their defense.
The post Cyber Insights 2025: Artificial Intelligence appeared first on SecurityWeek.
SimpleHelp Remote Access Software Exploited in Attacks
Threat actors have been exploiting SimpleHelp remote access software shortly after the disclosure of three vulnerabilities.
The post SimpleHelp Remote Access Software Exploited in Attacks appeared first on SecurityWeek.
Frenos Raises $3.88M in Seed Funding for OT Security Assessment Platform
Frenos, a company that has developed an autonomous OT security assessment platform, has raised $3.88 million in seed funding.
The post Frenos Raises $3.88M in Seed Funding for OT Security Assessment Platform appeared first on SecurityWeek.
VMware Warns of High-Risk Blind SQL Injection Bug in Avi Load Balancer
VMware warns that a malicious user with network access may be able to use specially crafted SQL queries to gain database access.
The post VMware Warns of High-Risk Blind SQL Injection Bug in Avi Load Balancer appeared first on SecurityWeek.
Eclypsium Eyes Global Expansion with $45 Million Series C Investment
The investment includes equity and debt from new investors Qualcomm Ventures, Pavilion Capital, Singtel Innov8, and Sixty Degree Capital.
The post Eclypsium Eyes Global Expansion with $45 Million Series C Investment appeared first on SecurityWeek.
Hackers Drain Over $85 Million From Crypto Exchange Phemex
Hackers stole more than $85 million in crypto assets from hot wallets at cryptocurrency exchange Phemex.
The post Hackers Drain Over $85 Million From Crypto Exchange Phemex appeared first on SecurityWeek.
NinjaOne to Acquire Dropsuite for $252 Million
Endpoint management and security firm NinjaOne to acquire cloud data backup, archiving, and recovery solutions provider Dropsuite for $252 million.
The post NinjaOne to Acquire Dropsuite for $252 Million appeared first on SecurityWeek.