Bedding Giant Tempur Sealy Takes Systems Offline Following Cyberattack
Bedding products giant Tempur Sealy (NYSE: TPX) has shut down certain systems after falling victim to a cyberattack, the company revealed in a filing with…
Category: SecurityWeek
Ransomware Attacks on Industrial Organizations Doubled in Past Year: Report
The number of ransomware attacks targeting industrial organizations and infrastructure has doubled since the second quarter of 2022, according to data from industrial cybersecurity firm…
200 Canon Printer Models May Expose Wi-Fi Connection Data
Japanese imaging and optical products giant Canon on Monday warned that more than 200 of its inkjet printer models fail to properly erase Wi-Fi configuration…
Possible Chinese Malware in US Systems a ‘Ticking Time Bomb’: Report
The Biden administration believes China has implanted malware in key US power and communications networks in a “ticking time bomb” that could disrupt the military…
US Gov Rolls Out National Cyber Workforce, Education Strategy
The Biden administration on Monday rolled out its first-ever National Cyber Workforce and Education Strategy (NCWES), announcing a series of “generational investments” to address immediate…
Reddit Taps Fredrick ‘Flee’ Lee for CISO Job
Reddit has upvoted Fredrick Lee into the CISO office. The San Francisco company on Monday announced the hiring of Lee as its new Chief Information…
Apple Lists APIs That Developers Can Only Use for Good Reason
In an effort to boost user privacy by preventing unwanted data collection, Apple is requiring application developers to declare the reason for using specific APIs.…
Second Ivanti EPMM Zero-Day Vulnerability Exploited in Targeted Attacks
Ivanti has warned customers about a second zero-day vulnerability in its Endpoint Manager Mobile (EPMM) product that has been exploited in targeted attacks. Norwegian authorities…
CISA Analyzes Malware Used in Barracuda ESG Attacks
The US Cybersecurity and Infrastructure Security Agency (CISA) has published analysis reports on three malware families deployed in an attack exploiting a recent remote command…
US, Australia Issue Warning Over Access Control Vulnerabilities in Web Applications
New guidance from the Australian Cyber Security Centre (ACSC), the US Cybersecurity and Infrastructure Security Agency (CISA), and National Security Agency (NSA) warns developers, vendors,…
In Other News: Data Breach Cost Rises, Russia Targets Diplomats, Tracker Alerts in Android
SecurityWeek is publishing a weekly cybersecurity roundup that provides a concise compilation of noteworthy stories that might have slipped under the radar. We provide a…
Exploitation of Recent Citrix ShareFile RCE Vulnerability Begins
Threat intelligence company Greynoise says it has observed the first attempts to exploit a recent critical remote code execution (RCE) vulnerability in Citrix ShareFile. A…