Microsoft Warns of Office Zero-Day Attacks, No Patch Available
Russian spies and cybercriminals are actively exploiting still-unpatched security flaws in Microsoft Windows and Office products, according to an urgent...
Read more →Category: SecurityWeek
Apple’s Rapid Security Response Patches Are Breaking Websites
Apple has pulled its latest Rapid Security Response updates for iOS and macOS after users complained that they could no...
Read more →
Adobe Patch Tuesday: Critical Flaws Haunt InDesign, ColdFusion
Software maker Adobe on Tuesday called attention to critical security flaws in its InDesign and ColdFusion products, warning that the...
Read more →
SaaS Application Security Firm Savvy Exits Stealth Mode With $30 Million in Funding
On a path to eliminate security incidents involving software-as-a-service (SaaS) applications, Israeli startup Savvy announced today that it has exited...
Read more →
ICS Patch Tuesday: Siemens, Schneider Electric Fix 50 Vulnerabilities
Siemens and Schneider Electric on Tuesday released a total of nine new security advisories addressing a total of 50 vulnerabilities...
Read more →
Verifying Software Integrity With Sigstore
Software Supply Chain: Part 3 As part of my software supply chain series, I want to move on to the...
Read more →
Personal Information of 11 Million Patients Stolen in Data Breach at HCA Healthcare
HCA Healthcare on Monday announced that the personal information of roughly 11 million patients was stolen in a data breach....
Read more →
Russia-Linked RomCom Hackers Targeting NATO Summit Guests
As part of a recently identified cyber operation, a Russia-linked threat actor known as RomCom has been targeting entities supporting...
Read more →
Apple Ships Urgent iOS Patch for WebKit Zero-Day
Apple on Monday rolled out an urgent software update to its iOS and iPadOS mobile operating systems and warned that...
Read more →
Exploit Code Published for Remote Root Flaw in VMware Logging Software
Virtualization technology giant VMware on Monday warned that exploit code has been publicly released for a pre-authentication remote code execution...
Read more →
Europe Signs Off on a New Privacy Pact That Allows People’s Data to Keep Flowing to US
The European Union signed off Monday on a new agreement over the privacy of people’s personal information that gets pinged...
Read more →
TPG to Acquire Forcepoint’s Government Cybersecurity Business Unit
Private equity giant TPG on Monday announced plans to acquire Forcepoint’s Global Governments and Critical Infrastructure (G2CI) business unit in...
Read more →