Okta Hack Blamed on Employee Using Personal Google Account on Company Laptop
Okta is blaming the recent hack of its support system on an employee who logged into a personal Google account on a company-managed laptop, exposing…
Category: SecurityWeek
Mortgage Giant Mr. Cooper Shuts Down Systems Following Cyberattack
Mortgage giant Mr. Cooper on Thursday announced that it has shut down certain systems after falling victim to a cyberattack, which resulted in its operations…
North Korean Hackers Use New ‘KandyKorn’ macOS Malware in Attacks
The notorious North Korean hacking group Lazarus has used new macOS and Windows malware in recent attacks, security researchers warn. In one of the attacks,…
Apache ActiveMQ Vulnerability Exploited as Zero-Day
Malicious exploitation of an Apache ActiveMQ vulnerability tracked as CVE-2023-46604 started at least two weeks prior to patches being released, according to managed detection and…
Cyberattack Disrupts Ace Hardware’s Operations
American hardware retailers’ cooperative Ace Hardware is experiencing operation disruptions after a cyberattack crippled most of its key IT systems. According to a notice that…
Atlassian Issues Second Warning on Potential Exploitation of Critical Confluence Flaw
Enterprise software maker Atlassian on Thursday issued a fresh warning on the potential exploitation of a recent critical-severity vulnerability in Confluence Data Center and Confluence…
Industry Reactions to SEC Charging SolarWinds and Its CISO: Feedback Friday
The US Securities and Exchange Commission (SEC) has announced charges against SolarWinds and its chief information security officer (CISO) for allegedly misleading investors about cybersecurity…
After Major Cloud Hacks, Microsoft Unveils ‘Secure Future Initiative’
It’s deja vu all over again at Microsoft. In a move that resembles the famous Trustworthy Computing push of yesteryear, Redmond is responding to a…
Xage Targets New Markets with $20 Million Investment
Xage Security, a Silicon Valley startup building technology to help organizations adopt zero trust security principles, has snagged $20 million in new capital and announced…
Former SpaceX Engineers Get $8 Million in Funding for AI Security Firm Wraithwatch
Three former SpaceX cybersecurity engineers have launched Wraithwatch, an AI-powered security firm that has received $8 million in seed funding. Wraithwatch was founded by Nik…
FusionAuth Snags $65 Million Investment for Customer Identity Tech
Customer authentication and authorization company FusionAuth on Wednesday announced that it has scored a $65 million investment from Updata Partners, it first external funding to…
Critical Apache ActiveMQ Vulnerability Exploited to Deliver Ransomware
A recently patched vulnerability affecting the Apache ActiveMQ message broker is being exploited by cybercriminals in an apparent attempt to deliver ransomware. Apache ActiveMQ is…