News

SecurityWeek2d
In Other News: 4chan Hacked, Android Auto-Reboot, Nemesis Admin Charged
Ernst & Young has conducted an analysis of the impact of cyber breaches on a company and found that companies typically see a ...
SecurityWeek2d
Fresh Windows NTLM Vulnerability Exploited in Attacks
A Windows NTLM vulnerability patched in March has been exploited in attacks targeting government and private institutions.
SecurityWeek2d
The Shadow AI Surge: Study Finds 50% of Workers Use Unapproved AI Tools
With unapproved AI tools entrenched in daily workflows, experts say it’s time to shift from monitoring to managing Shadow AI ...
SecurityWeek9d
China Admitted to Volt Typhoon Cyberattacks on US Critical Infrastructure: Report
In a secret meeting between Chinese and US officials, the former confirmed conducting cyberattacks on US infrastructure.
SecurityWeek11d
Microsoft Patches 125 Windows Vulns, Including Exploited CLFS Zero-Day
“In addition to discovering the vulnerability, Microsoft also found that the exploit has been deployed by PipeMagic malware.
SecurityWeek5d
CISO Conversations: Maarten Van Horenbeeck, SVP & Chief Security Officer at Adobe
Van Horenbeeck’s career spans some of the biggest companies in tech: Verizon, Microsoft, Google, Amazon, Zendesk, and now SVP ...
SecurityWeek5d
Hertz Discloses Data Breach Linked to Cleo Hack
Hertz Corporation warned customers of the Hertz, Thrifty, and Dollar brands that their personal information was exposed in a ...
SecurityWeek3d
MITRE Warns CVE Program Faces Disruption Amid US Funding Uncertainty
MITRE warns of a deterioration of national vulnerability databases and advisories, slowed vendor reaction and limited ...
SecurityWeek3d
Critical Erlang/OTP SSH Flaw Exposes Many Devices to Remote Hacking
Servers exposed to complete takeover due to CVE-2025-32433, an unauthenticated remote code execution flaw in Erlang/OTP ...
SecurityWeek4d
Many Mobile Apps Fail Basic Security—Posing Serious Risks to Enterprises
The potential risks of mobile apps to enterprises include data exposure, compliance violations, reputational damage, and ...
SecurityWeek6d
AI Hallucinations Create a New Software Supply Chain Threat
AI-generated code tools are creating fake package names—opening the door to ‘slopsquatting’ attacks and pose a growing supply ...
SecurityWeek3d
Demystifying Security Posture Management
Security Posture Management (SPM) is shaping up to be the latest “must-have” in the cybersecurity strategy toolkit.