ProjectDiscovery Lands $25M Investment for Cloud Security Tech
San Francisco cloud security startup ProjectDiscovery has banked $25 million in early-stage financing as investors continue to place bets on vendors in the attack surface…
Category: SecurityWeek
Google Brings AI Magic to Fuzz Testing With Eye-Opening Results
Google has sprinkled the magic of artificial intelligence into its open source fuzz testing infrastructure and the results suggest LLM (large language model) algorithms will…
Malicious QR Codes Used in Phishing Attack Targeting US Energy Company
A widespread phishing campaign ongoing since May 2023 has been targeting organizations in various industries, including a major US energy company, threat intelligence firm Cofense…
Rapid7 Says ROI for Ransomware Remains High; Zero-Day Usage Expands
The Rapid7 mid-year review of the threat landscape is not reassuring. Ransomware remains high, basic security defenses are not being used, security maturity is low,…
Cisco Patches High-Severity Vulnerabilities in Enterprise Applications
Cisco on Wednesday announced security updates for several enterprise applications to patch high-severity vulnerabilities leading to privilege escalation, SQL injection, directory traversal, and denial-of-service (DoS).…
Thousands of Systems Turned Into Proxy Exit Nodes via Malware
Threat actors are leveraging access to malware-infected Windows and macOS systems to deploy a proxy application, AT&T’s Alien Labs reports. To date, AT&T Alien Labs…
CISA Releases Cyber Defense Plan to Reduce RMM Software Risks
The Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday announced the release of a strategic plan to help critical infrastructure organizations reduce the risks associated…
Exploitation of Citrix ShareFile Vulnerability Spikes as CISA Issues Warning
Exploitation attempts targeting a remote code execution flaw in Citrix’s ShareFile product have spiked just as the US Cybersecurity and Infrastructure Security Agency (CISA) added…
Google Releases Security Key Implementation Resilient to Quantum Attacks
Google on Tuesday released what it described as the first FIDO2 security key implementation that should be resistant to quantum attacks. There has been significant…
Ivanti Patches Critical Vulnerability in Avalanche Enterprise MDM Solution
Ivanti has released patches for seven critical- and high-severity vulnerabilities in Avalanche, its enterprise mobile device management (MDM) solution. The most severe of the flaws…
Cleaning Products Giant Clorox Takes Systems Offline Following Cyberattack
Cleaning products manufacturer and marketer Clorox Company says it has taken certain systems offline in response to a cyberattack. “The Clorox Company recently identified unusual…
GitHub Paid Out $1.5 Million in Bug Bounties in 2022
Microsoft-owned code hosting platform GitHub on Tuesday announced that it paid out more than $1.57 million in rewards through its bug bounty program between February…