Live Exploitation Underscores Urgency to Patch Critical WS-FTP Server Flaw
Just days after the release of patches for a critical pre-authentication flaw in Progress Software’s WS_FTP server product, security experts...
Read more →Category: SecurityWeek
Number of Internet-Exposed ICS Drops Below 100,000: Report
The number of internet-exposed industrial control systems (ICS) has continued to decrease over the past years, dropping below 100,000 as...
Read more →
European Telecommunications Standards Institute Discloses Data Breach
The European Telecommunications Standards Institute (ETSI) has disclosed a data breach following a cyberattack on its member’s portal. Established in...
Read more →
Johnson Controls Ransomware Attack Could Impact DHS
Sensitive Department of Homeland Security (DHS) information might have been compromised in a recent ransomware attack aimed at government contractor...
Read more →
Unpatched Exim Vulnerabilities Expose Many Mail Servers to Attacks
The existence of several unpatched vulnerabilities impacting Exim mail transfer agent (MTA) installations was disclosed last week, more than one...
Read more →
CISA Kicks Off Cybersecurity Awareness Month With New Program
To celebrate the 20th Cybersecurity Awareness Month, CISA has launched a new program, meant to promote four critical actions that...
Read more →
Recently Patched TeamCity Vulnerability Exploited to Hack Servers
In-the-wild exploitation of a critical vulnerability in JetBrains’ TeamCity continuous integration and continuous deployment (CI/CD) server started just days after...
Read more →
Silverfort Open Sources Lateral Movement Detection Tool
Identity protection provider Silverfort has announced the open source release of a lateral movement detection tool. Called LATMA (Lateral Movement...
Read more →
Bankrupt IronNet Shuts Down Operations
The lights have flickered shut at IronNet, the once-promising network security company founded by former NSA director General Keith Alexander....
Read more →
NIST Publishes Final Version of 800-82r3 OT Security Guide
NIST announced on Thursday that it has published the final version of its latest guide to operational technology (OT) security. ...
Read more →
AWS Using MadPot Decoy System to Disrupt APTs, Botnets
Cloud computing giant AWS says an internal threat intel decoy system called MadPot has been used successfully to trap malicious...
Read more →
In Other News: RSA Encryption Attack, Meta AI Privacy, ShinyHunters Hacker Guilty Plea
SecurityWeek is publishing a weekly cybersecurity roundup that provides a concise compilation of noteworthy stories that might have slipped under...
Read more →