US State Department Says 60,000 Emails Taken in Alleged Chinese Hack
The US State Department said Thursday that hackers took around 60,000 emails, although none of them classified, in an attack which Microsoft has blamed on…
Category: SecurityWeek
Progress Software Patches Critical Pre-Auth Flaws in WS_FTP Server Product
Enterprise technology vendor Progress Software on Thursday shipped patches for critical-level security flaws in its WS_FTP file transfer software, warning that a pre-authenticated attacker could…
Moving From Qualitative to Quantitative Cyber Risk Modeling
Reporting on cyber risk is a table stakes initiative for information security leaders. After speaking with key stakeholders within organizations, recurring questions for CISOs and…
Lumu Raises $30 Million for Threat Detection and Response Platform
Lumu, a cybersecurity firm that helps organizations identify and isolate potential compromises, on Wednesday announced that it has raised $30 million in a Series B…
Verisoul Raises $3.25 Million in Seed Funding to Detect Fake Users
Verisoul, an Austin, Texas-based company that has developed a SaaS platform for detecting and blocking fake users, announced on Thursday that it has raised $3.25…
80% of CISA Staff at Risk of Furlough as Government Shutdown Looms
Roughly 80% of the staff at US cybersecurity agency CISA may be sent home at the end of the week as a government shutdown looms. …
Russian Zero-Day Acquisition Firm Offers $20 Million for Android, iOS Exploits
Operation Zero, a Russian zero-day acquisition firm, announced this week that it is offering up to $20 million for full exploit chains targeting Android and…
Cisco Warns of IOS Software Zero-Day Exploitation Attempts
Cisco this week announced patches for multiple vulnerabilities impacting its products, including a medium-severity flaw in IOS and IOS XE software that appears to have…
Sysdig Launches Realtime Attack Graph for Cloud Environments
Cloud security firm Sysdig has enhanced the cloud detection and response capabilities of its CNAPP offering with a realtime cloud attack graph. This serves two…
Google Rushes to Patch New Zero-Day Exploited by Spyware Vendor
Google has rushed to patch another Chrome zero-day vulnerability exploited by a commercial spyware vendor. The internet giant announced on Tuesday that the stable channel…
Chinese Gov Hackers Caught Hiding in Cisco Router Firmware
A Chinese state-sponsored APT called BlackTech has been caught hacking into network edge devices and using firmware implants to stay hidden and silently hop around…
Google Open Sources Binary File Comparison Tool BinDiff
Google has announced that BinDiff, a popular file comparison tool maintained by the company for more than a decade, is now open source. Developed by…