MITRE Updates CWE Top 25 Most Dangerous Software Weaknesses
The MITRE Corporation has published an updated Common Weakness Enumeration (CWE) Top 25 Most Dangerous Software Weaknesses list to reflect the latest trends in the…
Category: SecurityWeek
TSMC Says Supplier Hacked After Ransomware Group Claims Attack on Chip Giant
The LockBit ransomware group claims to have hacked Taiwan Semiconductor Manufacturing Company (TSMC), but the chip giant says only one of its suppliers was breached.…
Proton Launches Open Source Password Manager
Internet privacy company Proton this week announced the global launch of its open source password manager, Proton Pass. The password manager is now available as…
Nokod Snags $8M to Secure Low Code/No-Code Custom Apps
An Israeli company called Nokod Security has raised $8 million in early stage capital to work on technology to secure low-code and no-code custom applications.…
Cyware Snags $30M for Threat Intel Infrastructure Tech
Threat intelligence infrastructure startup Cyware on Thursday announced it had secured $30 million in new financing alongside plans to take advantage of the demand for…
DOE CIO Talks to SecurityWeek About Cybersecurity, Digital Transformation
Ann Dunkin is CIO at the US Department of Energy (DOE). Among her responsibilities, she heads IT and oversees cybersecurity. This week she spoke at…
IP Fabric Raises $25 Million in Series B Funding
Network assurance company IP Fabric on Thursday announced that it had secured $25 million in a Series B funding round that brings the total raised…
Rapid7: Japan Threat Landscape Takes on Global Significance
Japan is the world’s third largest economy. It attracts both criminal and nation-state cyberattacks. The effects of these attacks can be felt on a global…
Details Disclosed for Critical SAP Vulnerabilities, Including Wormable Exploit Chain
A cybersecurity firm has disclosed the details of critical SAP vulnerabilities, including a wormable exploit chain, that can expose organizations to attacks. The vulnerabilities were…
Serious Vulnerability Exposes Admin Interface of Arcserve UDP Backup Solution
Proof-of-concept (PoC) code targeting a high-severity authentication bypass vulnerability in the Arcserve Unified Data Protection (UDP) backup software was published one day after patches were…
New MIT Framework Evaluates Side-Channel Attack Mitigations
A group of researchers from the Massachusetts Institute of Technology (MIT) has devised a framework for evaluating the effectiveness of some side-channel mitigation schemes against…
White House Outlines Cybersecurity Budget Priorities for Fiscal 2025
The White House this week released a memorandum outlining the administration’s proposed cybersecurity budget priorities for government departments and agencies for the fiscal year 2025. …