Category: SecurityWeek

The US Cybersecurity and Infrastructure Security Agency (CISA) has unveiled its Cybersecurity Strategic Plan for the next three years, focusing…

The Colorado Department of Higher Education (CDHE) has been targeted in a ransomware attack that resulted in a data breach…

A cyberattack has disrupted hospital computer systems in several states, forcing some emergency rooms to close and ambulances to be…

SecurityWeek is publishing a weekly cybersecurity roundup that provides a concise compilation of noteworthy stories that might have slipped under…

Threat actors have been observed abusing an open source tool named Cloudflared to maintain persistent access to compromised systems and…

A married couple from New York dubbed “Bitcoin Bonnie and Crypto Clyde” pleaded guilty on Thursday to laundering billions of…

A critical Microsoft Power Platform vulnerability exposed organizations’ authentication data and other secrets, but the tech giant has been accused…

Multiple vulnerabilities in the popular airline and hotel rewards platform points.com could have allowed attackers to access users’ personal information,…

Exploitation of the recently disclosed Ivanti Endpoint Manager Mobile (EPMM) vulnerability has started to pick up, just as the vendor…

Government agencies in Australia, Canada, New Zealand, the UK, and the US have published a list of the software vulnerabilities…

The US government’s cybersecurity agency CISA is calling attention to under-researched attack surfaces in UEFI, warning that the dominant firmware…

The US Cybersecurity and Infrastructure Security Agency (CISA) disclosed 670 vulnerabilities affecting industrial control systems (ICS) and other operational technology…