Collaborate Disseminate
Washington startup Chainguard banks $61 million in new financing as investors make hefty wagers on software supply chain security companies.
The post Supply Chain Startup Chainguard Scores $61 Million Series B appeared first on SecurityWeek.
Continue reading Supply Chain Startup Chainguard Scores $61 Million Series B
Michigan startup raises $75 million in new funding as venture capital investors bet big on attack surface management technologies.
The post Censys Banks $75M for Attack Surface Management Technology appeared first on SecurityWeek.
Continue reading Censys Banks $75M for Attack Surface Management Technology
Many CISOs may believe their cybersecurity defenses are robust enough to repel any attack, but there are critical misconceptions they may be harboring. In this Help Net Security video, Kevin Kirkwood, Deputy CISO at LogRhythm, stresses that one of the … Continue reading Strategies to overcome cybersecurity misconceptions
Blockaid raises a Series A funding round to build technology to secure blockchain applications from hacks and scams.
The post Blockaid Emerges From Stealth With $33 Million Investment appeared first on SecurityWeek.
Continue reading Blockaid Emerges From Stealth With $33 Million Investment
Google is enhancing Google Play Protect’s real-time scanning to include code-level scanning, to keep Android devices safe from malicious and unwanted apps, especially those downloaded (or sideloaded) from outside of the Google Play app store R… Continue reading Google Play Protect takes on malicious apps with code-level scanning
Microsoft patches more than 100 vulnerabilities across the Windows ecosystem and warned that three are already being exploited in the wild.
The post Microsoft Fixes Exploited Zero-Days in WordPad, Skype for Business appeared first on SecurityWeek.
Continue reading Microsoft Fixes Exploited Zero-Days in WordPad, Skype for Business
Last month Microsoft patched a vulnerability in the Microsoft Kernel Streaming Server, a Windows kernel component used in the virtualization and sharing of camera devices. The vulnerability, CVE-2023-36802, allows a local attacker to escalate privileges to SYSTEM. This blog post details my process of exploring a new attack surface in the Windows kernel, finding a […]
The post Critically Close to Zero(Day): Exploiting Microsoft Kernel Streaming Service appeared first on Security Intelligence.
Continue reading Critically Close to Zero(Day): Exploiting Microsoft Kernel Streaming Service
Atlassian confirms that “a handful of customers” were hit by exploits targeting a remotely exploitable flaw in its Confluence Data Center and Server products.
The post Atlassian Ships Urgent Patch for Exploited Confluence Zero-Day appeared first on Sec… Continue reading Atlassian Ships Urgent Patch for Exploited Confluence Zero-Day
Threat actors have been using stolen GitHub personal access tokens to push malicious code posing as Dependabot contributions.
The post Stolen GitHub Credentials Used to Push Fake Dependabot Commits appeared first on SecurityWeek.
Continue reading Stolen GitHub Credentials Used to Push Fake Dependabot Commits
Google has released the source code of BinDiff, a binary file comparison tool popular within the security research community, on GitHub.
The post Google Open Sources Binary File Comparison Tool BinDiff appeared first on SecurityWeek.
Continue reading Google Open Sources Binary File Comparison Tool BinDiff