News

SecurityWeek2d
Fresh Windows NTLM Vulnerability Exploited in Attacks
A Windows NTLM vulnerability patched in March has been exploited in attacks targeting government and private institutions.
SecurityWeek1d
The Shadow AI Surge: Study Finds 50% of Workers Use Unapproved AI Tools
With unapproved AI tools entrenched in daily workflows, experts say it’s time to shift from monitoring to managing Shadow AI ...
SecurityWeek1d
In Other News: 4chan Hacked, Android Auto-Reboot, Nemesis Admin Charged
Ernst & Young has conducted an analysis of the impact of cyber breaches on a company and found that companies typically see a ...
SecurityWeek2d
Critical Erlang/OTP SSH Flaw Exposes Many Devices to Remote Hacking
Servers exposed to complete takeover due to CVE-2025-32433, an unauthenticated remote code execution flaw in Erlang/OTP ...
SecurityWeek8d
China Admitted to Volt Typhoon Cyberattacks on US Critical Infrastructure: Report
In a secret meeting between Chinese and US officials, the former confirmed conducting cyberattacks on US infrastructure.
SecurityWeek2d
MITRE Warns CVE Program Faces Disruption Amid US Funding Uncertainty
MITRE warns of a deterioration of national vulnerability databases and advisories, slowed vendor reaction and limited ...
SecurityWeek2d
Demystifying Security Posture Management
Security Posture Management (SPM) is shaping up to be the latest “must-have” in the cybersecurity strategy toolkit.
SecurityWeek4d
CISO Conversations: Maarten Van Horenbeeck, SVP & Chief Security Officer at Adobe
Van Horenbeeck’s career spans some of the biggest companies in tech: Verizon, Microsoft, Google, Amazon, Zendesk, and now SVP ...
SecurityWeek2d
SonicWall Flags Old Vulnerability as Actively Exploited
A SonicWall SMA 100 series vulnerability patched in 2021, which went unnoticed at the time of patching, is being exploited in ...
SecurityWeek3d
Many Mobile Apps Fail Basic Security—Posing Serious Risks to Enterprises
The potential risks of mobile apps to enterprises include data exposure, compliance violations, reputational damage, and ...
SecurityWeek4d
Chrome 135, Firefox 137 Updates Patch Severe Vulnerabilities
Chrome 135 and Firefox 137 updates have been rolled out with patches for critical- and high-severity vulnerabilities.
SecurityWeek3d
MITRE Hackers’ Backdoor Has Targeted Windows for Years
Windows versions of the BrickStorm backdoor that the Chinese APT used in the MITRE hack last year have been active for years.