Attackers Exploiting Critical F5 BIG-IP Vulnerability
Exploitation of a recently patched critical vulnerability in F5’s BIG-IP product started less than five days after public disclosure and proof-of-concept (PoC) exploit code was…
Category: SecurityWeek
Extending ZTNA to Protect Against Insider Threats
Cyberthreats are growing in their pervasiveness, stealth, and severity, and the potential consequences of a breach are more severe than ever before. With increasing skepticism…
SEC Charges SolarWinds and Its CISO With Fraud and Cybersecurity Failures
In a surprising development on Monday that is spooking the cybersecurity community, the Securities and Exchange Commission (SEC) has filed charges against SolarWinds and its…
Canada Bans WeChat and Kaspersky on Government Phones
Canada on Monday banned popular Chinese messaging app WeChat and Russian platform Kaspersky from government smartphones and other mobile devices, citing privacy and security risks.…
Apple Improves iMessage Security With Contact Key Verification
Apple on Friday introduced contact key verification, a new capability meant to improve the security of its iMessage service. To ensure the privacy of conversations,…
Boeing Investigating Ransomware Attack Claims
Boeing is investigating recent claims made by the LockBit ransomware gang that large amounts of data were exfiltrated from the aerospace giant’s network. An entry…
Florida SIM Swapper Sentenced to Prison for Cryptocurrency Theft
A Florida man was sentenced to prison last week for his role in a hacking scheme that resulted in the theft of approximately $1 million…
Proofpoint to Acquire Tessian for AI-Powered Email Security Tech
Enterprise security vendor Proofpoint on Monday announced plans to acquire email security specialists Tessian to beef up its ability to spot and block risky user…
Attackers Can Use Modified Wikipedia Pages to Mount Redirection Attacks on Slack
Security researchers at eSentire are calling attention to a new method that attackers can use to redirect business professionals to malicious websites. Described as the…
Hackers Earn Over $1 Million at Pwn2Own Toronto 2023
The Zero Day Initiative’s Pwn2Own Toronto 2023 hacking competition concluded on Friday with two new zero-day exploits, bringing the total demonstrated vulnerabilities to 58. Over…
Whistleblowers: Should CISOs Consider Them a Friend or Foe?
Are whistleblowers traitors to the company, a danger to corporate brand image, and a form of insider threat? Or are they an early warning safety…
Biden Wants to Move Fast on AI Safeguards and Will Sign an Executive Order to Address His Concerns
President Joe Biden on Monday will sign a sweeping executive order to guide the development of artificial intelligence — requiring industry to develop safety and…