Zania Raises $18 Million for AI-Powered GRC Platform
AI-powered security governance, risk, and compliance (GRC) startup Zania has announced raising $18 million in a Series A funding round that brings the total raised…
Category: SecurityWeek
1.5 Million Impacted by Allianz Life Data Breach
Insurance giant Allianz subsidiary Allianz Life Insurance Company of North America is notifying roughly 1.5 million people that their personal information was stolen in a…
OpenSSL Vulnerabilities Allow Private Key Recovery, Code Execution, DoS Attacks
The OpenSSL Project has announced the availability of several new versions of the open source SSL/TLS toolkit, which include patches for three vulnerabilities. Versions 3.5.4,…
Cybersecurity Awareness Month 2025: Prioritizing Identity to Safeguard Critical Infrastructure
This October marks the 22nd anniversary of Cybersecurity Awareness Month, an initiative launched under the guidance of the U.S. Department of Homeland Security. Its purpose…
NIST Publishes Guide for Protecting ICS Against USB-Borne Threats
NIST has published a new guide designed to help organizations reduce cybersecurity risks associated with the use of removable media devices in operational technology (OT)…
Chinese APT ‘Phantom Taurus’ Targeting Organizations With Net-Star Malware
A Chinese state-sponsored hacking group tracked as ‘Phantom Taurus’ has been targeting government and telecommunications organizations for espionage for more than two years, Palo Alto…
Canadian Airline WestJet Says Hackers Stole Customer Data
Canadian airline WestJet this week confirmed that customer personal information was stolen in a June 2025 cyberattack. The incident, disclosed on June 13, involved unauthorized…
Descope Raises $35 Million in Seed Round Extension
Identity and access management (IAM) provider Descope has announced raising $35 million in a seed funding extension that brings the total raised by the company…
Broadcom Fails to Disclose Zero-Day Exploitation of VMware Vulnerability
A newly patched high-severity VMware vulnerability has been exploited as a zero-day since October 2024 for code execution with elevated privileges, NVISO Labs reports. Tracked…
Battering RAM Attack Breaks Intel and AMD Security Tech With $50 Device
Researchers have disclosed the details of a new hardware attack that has been demonstrated against AMD and Intel systems, but the chip giants do not…
Apple Updates iOS and macOS to Prevent Malicious Font Attacks
Apple on Monday released a fresh round of security updates that address a single medium-severity vulnerability affecting both iOS and macOS. Tracked as CVE-2025-43400, the…
Google Patches Gemini AI Hacks Involving Poisoned Logs, Search Results
Several weaknesses patched recently by Google in Gemini could have allowed attackers to trick the AI assistant into helping them achieve data theft and other…