Category: SecurityWeek

Patch Tuesday: Critical Flaws in Adobe Commerce Software
16
Oct
2023

Microsoft Improving Windows Authentication, Disabling NTLM

Microsoft is pushing for more secure Windows authentication with new features for Kerberos that would eventually eliminate the use of…

Patch Tuesday: Critical Flaws in Adobe Commerce Software
16
Oct
2023

Equifax Gets $13.5 Million Fine Over 2017 Data Breach

The British watchdog Financial Conduct Authority (FCA) on Friday announced that it has fined Equifax Ltd, the UK arm of…

EPA water cybersecurity rules withdrawn
16
Oct
2023

EPA Withdraws Water Sector Cybersecurity Rules Due to Lawsuits

The US Environmental Protection Agency (EPA) has withdrawn cybersecurity rules for public water systems due to lawsuits filed by states…

Patch Tuesday: Critical Flaws in Adobe Commerce Software
16
Oct
2023

Spyware Caught Masquerading as Israeli Rocket Alert Applications

In the wake of the Israel-Gaza conflict, threat actors have been observed targeting Israeli rocket alerting applications to spread fear…

Patch Tuesday: Critical Flaws in Adobe Commerce Software
13
Oct
2023

CISA Now Flagging Vulnerabilities, Misconfigurations Exploited by Ransomware

The US cybersecurity agency CISA is stepping up its efforts to prevent ransomware by making it easier for organizations to…

Cybersecurity news roundup
13
Oct
2023

In Other News: Ex-Uber Security Chief Appeal, New Offerings From Tech Giants, Crypto Bounty

SecurityWeek is publishing a weekly cybersecurity roundup that provides a concise compilation of noteworthy stories that might have slipped under…

Patch Tuesday: Critical Flaws in Adobe Commerce Software
13
Oct
2023

Juniper Networks Patches Over 30 Vulnerabilities in Junos OS

Networking equipment manufacturer Juniper Networks on Thursday announced patches for more than 30 vulnerabilities in Junos OS and Junos OS…

Patch Tuesday: Critical Flaws in Adobe Commerce Software
13
Oct
2023

Microsoft Offers Up to $15,000 in New AI Bug Bounty Program

Microsoft on Thursday announced the launch of a new bug bounty program focused on artificial intelligence. The program, which initially…

Code Signing Software Supply Chain
13
Oct
2023

Dozens of Squid Proxy Vulnerabilities Remain Unpatched 2 Years After Disclosure

Dozens of vulnerabilities affecting the Squid caching and forwarding web proxy remain unpatched two years after a researcher responsibly disclosed…

Siemens Schneider Electric MOVEit ransomware
12
Oct
2023

SEC Investigating Progress Software Over MOVEit Hack

The US Securities and Exchange Commission is launching its own investigation into the vulnerability in Progress Software’s MOVEit transfer tool…

Patch Tuesday: Critical Flaws in Adobe Commerce Software
12
Oct
2023

Backdoor Malware Found on WordPress Website Disguised as Legitimate Plugin

A threat actor has deployed a WordPress backdoor that can hide its presence by posing as a legitimate plugin, WordPress…

New iOS exploit blamed on US intelligence
12
Oct
2023

Apple Releases iOS 16 Update to Patch Exploited Vulnerability 

Apple has released iOS and iPadOS updates to patch a kernel vulnerability that has been exploited in attacks. The flaw,…