Category: SecurityWeek

Russian anti-malware vendor Kaspersky has analyzed the spyware implant deployed as part of recent zero-click iMessage attack that targeted iOS-powered…

After years of breakneck growth, China’s security and surveillance industry is now focused on shoring up its vulnerabilities to the…

Web application security firm Defiant warns of critical-severity authentication bypass vulnerabilities in two WordPress plugins with tens of thousands of…

The US Cybersecurity and Infrastructure Security Agency (CISA) this week issued advisories detailing two unpatched vulnerabilities in Enphase products. An…

The United States Department of Justice (DOJ) has created a new litigating section to increase its ability to disrupt and…

Like all major applications, Google’s Chrome suffers from vulnerabilities. During 2022, SecurityWeek reported on 456 vulnerabilities (averaging 38 per month),…

President Joe Biden convened a group of technology leaders on Tuesday to debate what he called the “risks and enormous…

Less than two weeks after shipping urgent patches to cover security defects in its Aria Operations for Networks product, VMware…

Researchers at security startup Descope have discovered a major misconfiguration in Microsoft Azure AD OAuth applications and warned that any…

A prolific APT group linked to the Russian government has been caught exploiting security flaws in the open-source Roundcube webmail…

Gen Digital (NASDAQ: GEN), the company behind known cybersecurity brands such as Avast, Avira, AVG, Norton, and LifeLock, has confirmed…

A state-sponsored espionage campaign is leveraging new custom malware to monitor incoming remote desktop protocol (RDP) connections and infect connecting…