Chrome 141 and Firefox 143 Patches Fix High-Severity Vulnerabilities
Google and Mozilla this week released Chrome and Firefox browser updates that address multiple high-severity vulnerabilities. Google promoted Chrome 141 to the stable channel with…
Category: SecurityWeek
Red Hat Confirms GitLab Instance Hack, Data Theft
Red Hat on Thursday confirmed that one of its GitLab instances was hacked after a threat actor claimed to have stolen sensitive data belonging to…
Many Attacks Aimed at EU Targeted OT, Says Cybersecurity Agency
The European Union’s cybersecurity agency ENISA has published its 2025 Threat Landscape report, which shows that a significant percentage of the attacks aimed at the…
WireTap Attack Breaks Intel SGX Security
A group of academic researchers from Georgia Tech and Purdue University has demonstrated that a passive DIMM interposer can be used to break Intel SGX’s…
1.2 Million Impacted by WestJet Data Breach
Canadian airline WestJet is notifying roughly 1.2 million people that their personal information was stolen in a June 2025 cyberattack. The Alberta, Canada-based company was…
766,000 Impacted by Data Breach at Dealership Software Provider Motility
Dealership software company Motility Software Solutions is notifying over 766,000 people that their personal information was compromised in a ransomware attack. A provider of software…
Cybercriminals Claim Theft of Data From Oracle E-Business Suite Customers
A significant number of organizations have received extortion emails from hackers who claim to have stolen sensitive information from their Oracle E-Business Suite instances, Google’s…
Zania Raises $18 Million for AI-Powered GRC Platform
AI-powered security governance, risk, and compliance (GRC) startup Zania has announced raising $18 million in a Series A funding round that brings the total raised…
1.5 Million Impacted by Allianz Life Data Breach
Insurance giant Allianz subsidiary Allianz Life Insurance Company of North America is notifying roughly 1.5 million people that their personal information was stolen in a…
OpenSSL Vulnerabilities Allow Private Key Recovery, Code Execution, DoS Attacks
The OpenSSL Project has announced the availability of several new versions of the open source SSL/TLS toolkit, which include patches for three vulnerabilities. Versions 3.5.4,…
Cybersecurity Awareness Month 2025: Prioritizing Identity to Safeguard Critical Infrastructure
This October marks the 22nd anniversary of Cybersecurity Awareness Month, an initiative launched under the guidance of the U.S. Department of Homeland Security. Its purpose…
NIST Publishes Guide for Protecting ICS Against USB-Borne Threats
NIST has published a new guide designed to help organizations reduce cybersecurity risks associated with the use of removable media devices in operational technology (OT)…