In Other News: Funding Increase, Abuse of Smartphone Location Data, Legal Matters
SecurityWeek is publishing a weekly cybersecurity roundup that provides a concise compilation of noteworthy stories that might have slipped under...
Read more →Category: SecurityWeek
Organizations Warned of Top 10 Cybersecurity Misconfigurations Seen by CISA, NSA
The US cybersecurity agency CISA and the NSA have issued new guidance on addressing the most common cybersecurity misconfigurations in...
Read more →
CISA Reverses Course on Malicious Exploitation of Video Conferencing Device Flaws
The US cybersecurity agency CISA has removed several Owl Labs product flaws from its Known Exploited Vulnerabilities (KEV) Catalog after...
Read more →
Cisco Plugs Gaping Hole in Emergency Responder Software
A remotely exploitable vulnerability in the Cisco Emergency Responder software could allow an unauthenticated attacker to log in to an...
Read more →
GitHub Improves Secret Scanning Feature With Expanded Token Validity Checks
Software development giant GitHub on Wednesday announced an enhancement to its secret scanning feature, now allowing users to check the...
Read more →
BlackBerry to Split Cybersecurity, IoT Business Units
Canadian tech giant BlackBerry has announced plans to split its cybersecurity and IOT (Internet of Things) businesses and pursue an...
Read more →
Red Cross Publishes Rules of Engagement for Hacktivists During War
The International Committee of the Red Cross (ICRC) is urging hacking groups involved in conflict during war to abide by...
Read more →
Addressing the People Problem in Cybersecurity
October marks the 20th anniversary of Cybersecurity Awareness Month – an annual campaign led by the Cybersecurity and Infrastructure Agency...
Read more →
Linux Foundation Announces OpenPubkey Open Source Cryptographic Protocol
The Linux Foundation on Wednesday announced OpenPubkey, an open source cryptographic protocol that should help boost supply chain security. OpenPubkey...
Read more →
CISA, NSA Publish Guidance on IAM Challenges for Developers, Vendors
The US cybersecurity agency CISA and the NSA have published new guidance on implementing identity and access management (IAM), focusing...
Read more →
Qakbot Hackers Continue to Push Malware After Takedown Attempt
The cybercriminals behind the Qakbot malware have been observed distributing ransomware and backdoors following the recent infrastructure takedown attempt by...
Read more →
Hundreds Download Malicious NPM Package Capable of Delivering Rootkit
A recently observed malicious campaign has relied on typosquatting to trick users into downloading a malicious NPM package that would...
Read more →