Category: CyberSecurityDive

DeepSeek’s AI shake-up could boost cybersecurity risks, spending: report
26
Feb
2025

DeepSeek’s AI shake-up could boost cybersecurity risks, spending: report

Dive Brief: Global cybersecurity spending is projected to surge in coming years as artificial intelligence tools like chatbots and agents…

Nearly 3,000 Ivanti Connect Secure instances vulnerable to critical flaw
26
Feb
2025

Nearly 3,000 Ivanti Connect Secure instances vulnerable to critical flaw

Dive Brief: Approximately 2,850 IP addresses are vulnerable to CVE-2025-22467, a critical stack buffer-overflow vulnerability that affects Ivanti Connect Secure…

More than 400 SonicWall firewall instances remain vulnerable to attack
25
Feb
2025

More than 400 SonicWall firewall instances remain vulnerable to attack

Dive Brief: More than 5,000 instances of an authentication bypass flaw in SonicWall firewalls are exposed to the internet and…

Attackers exploiting Cisco vulnerabilities tied to Salt Typhoon campaign
25
Feb
2025

Attackers exploiting Cisco vulnerabilities tied to Salt Typhoon campaign

Dive Brief: GreyNoise researchers observed active exploitation of two Cisco vulnerabilities, CVE-2018-0171 and CVE-2023-20198, which reportedly have been used in recent…

SonicWall authentication flaw under threat of active exploitation
25
Feb
2025

SonicWall authentication flaw under threat of active exploitation

Dive Brief: Security researchers warn a critical vulnerability in SonicWall’s SonicOS is under active exploitation. The flaw, listed as CVE-2024-53704,…

Proof-of-concept exploit released for 4 Ivanti vulnerabilities
25
Feb
2025

Proof-of-concept exploit released for 4 Ivanti vulnerabilities

Dive Brief: Horizon3.ai researchers on Wednesday released technical details and a proof-of-concept (PoC) exploit for four critical Ivanti vulnerabilities that…

US authorities warn Ghost ransomware leverages older CVEs
25
Feb
2025

US authorities warn Ghost ransomware leverages older CVEs

Dive Brief: Federal authorities on Wednesday warned that Ghost ransomware has compromised organizations as recently as January by exploiting older…

SEC revamps cyber and crypto enforcement unit under Trump administration
25
Feb
2025

SEC revamps cyber and crypto enforcement unit under Trump administration

Dive Brief:   The Securities and Exchange Commission on Thursday unveiled a revamped anti-fraud unit to protect retail investors in…

Cisco: Salt Typhoon used new custom malware in telecom attacks
25
Feb
2025

Cisco: Salt Typhoon used new custom malware in telecom attacks

Dive Brief: In research published Thursday on Salt Typhoon’s hacking campaign against telecom carriers, Cisco Talos said the Chinese state-sponsored…

Global tech spend to approach $5 trillion this year: Forrester
25
Feb
2025

Global tech spend to approach $5 trillion this year: Forrester

Dive Brief: Global tech spend will grow 5.6% this year to $4.9 trillion, driven by investments in cybersecurity, cloud and…

CrowdStrike CSO Shawn Henry to retire by end of March
25
Feb
2025

CrowdStrike CSO Shawn Henry to retire by end of March

CrowdStrike Holdings Inc. said Chief Security Officer Shawn Henry will retire from his current role at the company as of…

Is your browser ground zero for cyber-attacks?
25
Feb
2025

Is your browser ground zero for cyber-attacks?

The facts are stark: 65% of organizations have little-to-no control over the data being shared in GenAI apps, 98% of…