Ocean Emerges From Stealth With $28M for Agentic Email Security Platform
Ocean emerged from stealth mode this week with $28 million in funding for its agentic email security platform. The funding came from Lightspeed Venture Partners,…
Category: SecurityWeek
Cisco Patches Critical Vulnerability in Secure Workload
Cisco on Wednesday announced patches for a critical-severity vulnerability in Secure Workload that could allow attackers to access site resources with Site Admin privileges. The…
Drupal Patches Highly Critical Vulnerability Exposing Websites to Hacking
Drupal has patched a highly critical vulnerability that could allow threat actors to hack websites powered by the open source content management system (CMS). The…
1Password Teams With OpenAI to Stop AI Coding Agents From Leaking Credentials
1Password has partnered with OpenAI to address one of the growing security concerns surrounding AI-powered software development: protecting enterprise credentials from leakage, theft, or misuse…
AI-Powered App Attacks Are Faster, More Frequent and Harder to Stop
AI, and especially agentic AI, is remodeling attack and defense throughout cybersecurity. Any distinction between emerging targets and primary targets in app security has dissolved,…
Microsoft Rolls Out Mitigations for ‘YellowKey’ BitLocker Bypass
Microsoft on Tuesday rolled out mitigations for YellowKey, a recently disclosed zero-day vulnerability leading to BitLocker bypass. The issue, now tracked as CVE-2026-45585 (CVSS score…
Quantum Bridge Raises $8 Million for Quantum-Safe Key Distribution Solution
Toronto, Canada-based Quantum Bridge announced on Wednesday that it has raised $8 million in Series A funding for its quantum-safe key distribution solution. The new…
Over 320 NPM Packages Hit by Fresh Mini Shai-Hulud Supply Chain Attack
A fresh Mini Shai-Hulud supply chain attack has hit over 320 NPM packages, along with GitHub Actions and a VS Code extension, security researchers report.…
Legacy Windows Tool MSHTA Fuels Surge in Silent Malware Attacks
Good intentions can have unintended consequences. MSHTA is an example. MSHTA (Microsoft HTML Application) has been a part of Windows since 1999 and the release…
Verizon DBIR 2026: Vulnerability Exploitation Overtakes Credential Theft as Top Breach Vector
Vulnerability exploitation was the most common access vector for data breaches in 2025, the latest installment of Verizon’s annual Data Breach Investigations Report (DBIR) shows.…
Microsoft Disrupts Malware-Signing Service Run by ‘Fox Tempest’
Microsoft announced on Tuesday that it has disrupted a cybercrime service that has been helping threat actors distribute ransomware and other malware. According to the…
Drupal to Patch Highly Critical Vulnerability at Risk of Quick Exploitation
Drupal is warning users that it’s preparing a patch for a ‘highly critical’ vulnerability that may be exploited by threat actors shortly after its disclosure.…