DeepSeek’s AI shake-up could boost cybersecurity risks, spending: report
Dive Brief: Global cybersecurity spending is projected to surge in coming years as artificial intelligence tools like chatbots and agents proliferate, creating new risks that…
Category: CyberSecurityDive
Nearly 3,000 Ivanti Connect Secure instances vulnerable to critical flaw
Dive Brief: Approximately 2,850 IP addresses are vulnerable to CVE-2025-22467, a critical stack buffer-overflow vulnerability that affects Ivanti Connect Secure VPNs, according to a post…
More than 400 SonicWall firewall instances remain vulnerable to attack
Dive Brief: More than 5,000 instances of an authentication bypass flaw in SonicWall firewalls are exposed to the internet and 460 were listed as vulnerable…
Attackers exploiting Cisco vulnerabilities tied to Salt Typhoon campaign
Dive Brief: GreyNoise researchers observed active exploitation of two Cisco vulnerabilities, CVE-2018-0171 and CVE-2023-20198, which reportedly have been used in recent attacks by the Chinese nation-state…
SonicWall authentication flaw under threat of active exploitation
Dive Brief: Security researchers warn a critical vulnerability in SonicWall’s SonicOS is under active exploitation. The flaw, listed as CVE-2024-53704, is an improper authentication vulnerability…
Proof-of-concept exploit released for 4 Ivanti vulnerabilities
Dive Brief: Horizon3.ai researchers on Wednesday released technical details and a proof-of-concept (PoC) exploit for four critical Ivanti vulnerabilities that were first disclosed and patched…
US authorities warn Ghost ransomware leverages older CVEs
Dive Brief: Federal authorities on Wednesday warned that Ghost ransomware has compromised organizations as recently as January by exploiting older vulnerabilities to attack internet-facing services…
SEC revamps cyber and crypto enforcement unit under Trump administration
Dive Brief: The Securities and Exchange Commission on Thursday unveiled a revamped anti-fraud unit to protect retail investors in emerging technologies, reflecting the Trump…
Cisco: Salt Typhoon used new custom malware in telecom attacks
Dive Brief: In research published Thursday on Salt Typhoon’s hacking campaign against telecom carriers, Cisco Talos said the Chinese state-sponsored threat group had gained access…
Global tech spend to approach $5 trillion this year: Forrester
Dive Brief: Global tech spend will grow 5.6% this year to $4.9 trillion, driven by investments in cybersecurity, cloud and generative AI technologies, according to Forrester.…
CrowdStrike CSO Shawn Henry to retire by end of March
CrowdStrike Holdings Inc. said Chief Security Officer Shawn Henry will retire from his current role at the company as of March 31, according to a…
Is your browser ground zero for cyber-attacks?
The facts are stark: 65% of organizations have little-to-no control over the data being shared in GenAI apps, 98% of organizations said they had policy…