Category: SecurityWeek

Patch Tuesday: Critical Flaws in Adobe Commerce Software
01
Aug
2023

200 Canon Printer Models May Expose Wi-Fi Connection Data

Japanese imaging and optical products giant Canon on Monday warned that more than 200 of its inkjet printer models fail…

Patch Tuesday: Critical Flaws in Adobe Commerce Software
01
Aug
2023

Possible Chinese Malware in US Systems a ‘Ticking Time Bomb’: Report

The Biden administration believes China has implanted malware in key US power and communications networks in a “ticking time bomb”…

Patch Tuesday: Critical Flaws in Adobe Commerce Software
31
Jul
2023

US Gov Rolls Out National Cyber Workforce, Education Strategy

The Biden administration on Monday rolled out its first-ever National Cyber Workforce and Education Strategy (NCWES), announcing a series of…

Patch Tuesday: Critical Flaws in Adobe Commerce Software
31
Jul
2023

Reddit Taps Fredrick ‘Flee’ Lee for CISO Job

Reddit has upvoted Fredrick Lee into the CISO office. The San Francisco company on Monday announced the hiring of Lee…

Patch Tuesday: Critical Flaws in Adobe Commerce Software
31
Jul
2023

Apple Lists APIs That Developers Can Only Use for Good Reason

In an effort to boost user privacy by preventing unwanted data collection, Apple is requiring application developers to declare the…

Ivanti zero-day CVE-2023-35078 exploited
31
Jul
2023

Second Ivanti EPMM Zero-Day Vulnerability Exploited in Targeted Attacks

Ivanti has warned customers about a second zero-day vulnerability in its Endpoint Manager Mobile (EPMM) product that has been exploited…

Industrial Organizations in Eastern Europe Targeted by Chinese Cyberspies
31
Jul
2023

CISA Analyzes Malware Used in Barracuda ESG Attacks

The US Cybersecurity and Infrastructure Security Agency (CISA) has published analysis reports on three malware families deployed in an attack…

Patch Tuesday: Critical Flaws in Adobe Commerce Software
28
Jul
2023

US, Australia Issue Warning Over Access Control Vulnerabilities in Web Applications

New guidance from the Australian Cyber Security Centre (ACSC), the US Cybersecurity and Infrastructure Security Agency (CISA), and National Security…

Cybersecurity news roundup
28
Jul
2023

In Other News: Data Breach Cost Rises, Russia Targets Diplomats, Tracker Alerts in Android 

SecurityWeek is publishing a weekly cybersecurity roundup that provides a concise compilation of noteworthy stories that might have slipped under…

Patch Tuesday: Critical Flaws in Adobe Commerce Software
28
Jul
2023

Exploitation of Recent Citrix ShareFile RCE Vulnerability Begins

Threat intelligence company Greynoise says it has observed the first attempts to exploit a recent critical remote code execution (RCE)…

Feedback Friday on EU-US Data Privacy Framework
28
Jul
2023

Industry Reactions to New SEC Cyber Incident Disclosure Rules: Feedback Friday

The US Securities and Exchange Commission (SEC) has adopted new cybersecurity incident disclosure rules for public companies, but there is…

Patch Tuesday: Critical Flaws in Adobe Commerce Software
28
Jul
2023

Zimbra Patches Exploited Zero-Day Vulnerability

Zimbra this week released patches for a cross-site scripting (XSS) vulnerability in Collaboration Suite that has been exploited in malicious…