Mobile Attack Surface Expands as Enterprises Lose Control
The mobile device attack surface is wide, fragmented, and not adequately controlled. There are two sides to any coin. Security is the same. To defend…
Category: SecurityWeek
Critical ShareFile Flaws Lead to Unauthenticated RCE
Two critical-severity vulnerabilities in the ShareFile content collaboration and file-sharing platform could be chained together for unauthenticated remote code execution (RCE), attack surface management firm…
In Other News: ChatGPT Data Leak, Android Rootkit, Water Facility Hit by Ransomware
SecurityWeek’s weekly cybersecurity news roundup offers a concise overview of important developments that may not receive full standalone coverage but remain relevant to the broader…
TrueConf Zero-Day Exploited in Asian Government Attacks
Chinese hackers have exploited a zero-day vulnerability in the TrueConf video conferencing software in attacks against government entities in Asia, Check Point reports. The exploited…
250,000 Affected by Data Breach at Nacogdoches Memorial Hospital
Nacogdoches Memorial Hospital (NMH) is notifying 250,000 people that their personal and health information was compromised in a data breach. The incident, the hospital says,…
Cybersecurity M&A Roundup: 38 Deals Announced in March 2026
Thirty-eight cybersecurity-related merger and acquisition (M&A) deals were announced in March 2026. For a detailed view of the more than 420 acquisitions announced in 2025,…
Apple Rolls Out DarkSword Exploit Protection to More Devices
Apple is rolling out iOS and iPadOS updates for older devices to protect them against the recently disclosed DarkSword exploit kit. A few weeks after…
Critical Vulnerability in Claude Code Emerges Days After Source Leak
Anthropic’s Claude Code is in the news again – and not for the best reasons. Within days of each other, Anthropic first leaked the source…
Cisco Patches Critical and High-Severity Vulnerabilities
Cisco on Wednesday announced fixes for two critical and six high-severity vulnerabilities that could be exploited for authentication bypass, remote code execution, privilege escalation, and…
Variance Raises $21.5M for Compliance Investigation Platform Powered by AI Agents
Variance announced this week that it has raised $21.5 million in Series A funding for an agentic AI platform focusing on compliance and risk investigations.…
New DeepLoad Malware Dropped in ClickFix Attacks
A recently discovered malware family capable of stealing credentials and of intercepting browser interactions has been distributed using the ClickFix technique, ReliaQuest reports. Dubbed DeepLoad,…
Toy Giant Hasbro Hit by Cyberattack
Toy and game giant Hasbro on Wednesday reported being hit by a cyberattack that has disrupted some of the company’s processes. In a filing with…