CISA Releases Guidance on SIEM and SOAR Implementation
Newly released guidance from the US and Australian governments aims to provide organizations with advice on how to improve their...
Read more →Category: SecurityWeek
ConnectWise Discloses Suspected State-Sponsored Hack
IT management software provider ConnectWise has warned customers that a suspected state-sponsored threat actor had breached its network. “ConnectWise recently...
Read more →
MITRE Publishes Post-Quantum Cryptography Migration Roadmap
The MITRE-founded Post-Quantum Cryptography Coalition (PQCC) this week published fresh guidance for organizations looking to ready themselves to transition to...
Read more →
US Sanctions Philippine Company for Supporting Crypto Scams
The US Treasury Department on Thursday announced sanctions against a Philippines-based company for providing infrastructure to hundreds of thousands of...
Read more →
Firebase, Google Apps Script Abused in Fresh Phishing Campaigns
Cybersecurity researchers are calling attention to two recently observed phishing campaigns caught abusing the legitimate services Firebase and Google Apps...
Read more →
Chinese Hacking Group APT41 Exploits Google Calendar to Target Governments
Chinese state-sponsored threat actor APT41 has targeted government entities with malware that uses Google Calendar for command-and-control (C&C), Google warns....
Read more →
GreyNoise Flags 9,000 ASUS Routers Backdoored Via Patched Vulnerability
Threat intelligence firm GreyNoise on Wednesday lifted the lid on a stealth malware campaign that has quietly converted thousands of...
Read more →
Unbound Raises $4 Million to Secure Gen-AI Adoption
Unbound, a cybersecurity startup working on technology to enable organizations to securely and responsibly adopt generative-AI tools across their environments,...
Read more →
Chinese Hacking Group ‘Earth Lamia’ Targets Multiple Industries
A Chinese threat actor has been targeting known vulnerabilities in web applications to compromise organizations in various sectors around the...
Read more →
Victoria’s Secret Website Taken Offline After Cyberattack
Lingerie retailer Victoria’s Secret has fallen victim to a cyberattack that forced it to take its website down on Wednesday....
Read more →
Adidas Data Breach Linked to Third-Party Vendor
Sneaker and sportswear giant Adidas disclosed a data breach this week after hackers accessed a “third-party customer service provider” and...
Read more →
Webinar Today: Why Context is a Secret Weapon in Application Security Posture Management
It’s easy to drown in a sea of data where every vulnerability or misconfiguration is deemed important. If everything is...
Read more →