37 Vulnerabilities Patched in Android With November 2023 Security Updates
Android patches Google on Monday announced patches for 37 vulnerabilities as part of the November 2023 Android security updates, with additional fixes released for Pixel…
Category: SecurityWeek
Narrowing the Focus of AI in Security
Over the last few months, it has been hard to get away from the AI headlines. Amazon, Microsoft, Meta, Google and have been everywhere, and…
Ransomware Gang Leaks Data Allegedly Stolen From Canadian Hospitals
Five Canadian hospitals have confirmed that patient and employee data that was stolen in a ransomware attack has been leaked online. The data breach impacts…
Travelers to Acquire Cyberinsurance Firm Corvus for $435 Million
Property and casualty insurance giant Travelers (NYSE: TRV), announced today that it has entered into an agreement to acquire Corvus Insurance Holdings for approximately $435…
Palo Alto to Acquire Talon, Intensifying Competition in Cloud Data Security
Technology powerhouse Palo Alto Networks is officially on a billion-dollar shopping spree in the cloud data security space. One week after announcing plans to spend…
American Airlines Pilot Union Recovering After Ransomware Attack
The Allied Pilots Association (APA) says it has made progress in restoring its systems after falling victim to a file-encrypting ransomware attack last week. The…
‘Looney Tunables’ Glibc Vulnerability Exploited in Cloud Attacks
A serious privilege escalation vulnerability patched recently in the GNU C Library (glibc) has been exploited in cloud attacks by a threat group known for…
US Sanctions Russian National for Helping Ransomware Groups Launder Money
The US Department of the Treasury’s Office of Foreign Assets Control (OFAC) on Friday announced sanctions against Ekaterina Zhdanova, a Russian national allegedly involved in…
Iranian APT Targets Israeli Education, Tech Sectors With New Wipers
Since January 2023, an Iranian advanced persistent threat (APT) actor has been targeting higher education and technology organizations in Israel with wipers, cybersecurity firm Palo…
Exploitation of Critical Confluence Vulnerability Begins
The first in-the-wild exploitation attempts targeting a recent vulnerability in Atlassian Confluence Data Center and Confluence Server were observed over the weekend, threat intelligence firm…
A Cyber Breach Delays Poll Worker Training in Mississippi’s Largest County Before the Statewide Vote
Election officials in Mississippi’s most populous county had to scramble to complete required poll worker training after an early September breach involving county computers. In…
Microsoft Says Exchange ‘Zero Days’ Disclosed by ZDI Already Patched or Not Urgent
Microsoft says four Exchange vulnerabilities disclosed by Trend Micro’s Zero Day Initiative (ZDI) last week have either already been patched or they don’t require immediate…