Google Launched Behind-the-Scenes Campaign Against California Privacy Legislation; It Passed Anyway
In April, Rhode Island resident Navah Hopkins received a plea for her help to defeat legislation thousands of miles away in California. The ask came…
Category: SecurityWeek
FBI Shares IoCs for Recent Salesforce Intrusion Campaigns
The FBI has shared indicators of compromise (IoCs) associated with two malicious campaigns targeting Salesforce customers for data theft and extortion. The first campaign, attributed…
West Virginia Credit Union Notifying 187,000 People Impacted by 2023 Data Breach
Fairmont Federal Credit Union is notifying over 187,000 individuals that their personal and financial information was stolen in a two-year-old data breach. A not-for-profit financial…
Samsung Patches Zero-Day Exploited Against Android Users
Samsung’s September 2025 security updates for Android devices include a patch for a vulnerability that has been exploited in the wild. The exploited bug, tracked…
UK Train Operator LNER Warns Customers of Data Breach
British train operator LNER (London North Eastern Railway) has disclosed a data breach impacting customer information. The company, which is in charge of many long-distance…
Cisco Patches High-Severity IOS XR Vulnerabilities
Cisco on Wednesday released patches for three vulnerabilities in IOS XR software, as part of its September 2025 security advisory bundled publication. Tracked as CVE-2025-20248…
Webinar Today: Breaking AI – Inside the Art of LLM Pen Testing
Live Webinar | Thursday, September 11 at 2PM ET – Register Large Language Models (LLMs) are reshaping enterprise technology and redefining what it means to secure software.…
Payment System Vendor Took Year+ to Patch Infinite Card Top-Up Hack: Security Firm
SEC Consult, a cybersecurity consulting firm under Eviden, says payment solutions company KioSoft took a long time to address a serious vulnerability affecting some of…
VMScape: Academics Break Cloud Isolation With New Spectre Attack
A group of academic researchers from the ETH Zurich university have devised a new attack that breaks existing virtualization isolation to leak arbitrary memory and…
CISA: CVE Program to Focus on Vulnerability Data Quality
The US cybersecurity agency CISA believes that expanded partnerships, government sponsorships, transparency, modernization, and better vulnerability data quality are the next step in advancing the…
F5 to Acquire CalypsoAI for $180 Million
Security and application delivery solutions provider F5 on Thursday announced plans to acquire AI security firm CalypsoAI for $180 million. CalypsoAI has developed a platform…
In Other News: $900k for XSS Bugs, HybridPetya Malware, Burger King Censors Research
SecurityWeek’s cybersecurity news roundup provides a concise compilation of noteworthy stories that might have slipped under the radar. We provide a valuable summary of stories…