US Gov Warning: Start Hunting for Iranian APTs That Exploited Log4j

The U.S. government on Wednesday issued a blunt recommendation for organizations running VMWare Horizon servers: Initiate threat-hunting activities to find and expel Iranian APT actors that used the Log4j crisis to slip undetected into corporate networ… Continue reading US Gov Warning: Start Hunting for Iranian APTs That Exploited Log4j

Bishop Fox Adds $46 Million to Series B Funding Round

Continuous attack surface management pioneer Bishop Fox continues to attract the attention of investors with the banking of another $46 million in growth funding led by WestCap.
read more Continue reading Bishop Fox Adds $46 Million to Series B Funding Round

Microsoft Scrambles to Thwart New Zero-Day Attacks

The zero-day attacks against Microsoft’s software products are showing no signs of slowing down.
read more Continue reading Microsoft Scrambles to Thwart New Zero-Day Attacks

Microsoft: China Flaw Disclosure Law Part of Zero-Day Exploit Surge

The world’s largest software maker is warning that China-based nation state threat actors are taking advantage of a one-year-old law to “stockpile” zero-days for use in sustained malware attacks.
read more Continue reading Microsoft: China Flaw Disclosure Law Part of Zero-Day Exploit Surge

FTC Orders Chegg to Improve Security Following Multiple Data Breaches

The Federal Trade Commission (FTC) this week announced that it has reached an agreement with education technology provider Chegg over the company’s cybersecurity failures leading to several data breaches.
read more Continue reading FTC Orders Chegg to Improve Security Following Multiple Data Breaches

Drizly Agrees to Tighten Data Security After Alleged Breach

Alcohol delivery app Drizly has agreed to tighten its data security and limit data collection to resolve federal regulators’ allegations that its security failures exposed the personal information of some 2.5 million customers.
read more Continue reading Drizly Agrees to Tighten Data Security After Alleged Breach

FTC Targets Drizly and Its CEO Over Cybersecurity Failures That Led to Data Breach

The Federal Trade Commission (FTC) this week announced an administrative complaint against online alcohol marketplace Drizly and its CEO, James Cory Rellas, over the company’s poor data security practices.
read more Continue reading FTC Targets Drizly and Its CEO Over Cybersecurity Failures That Led to Data Breach

FTC Targets Drizly and Its CEO Over Cybersecurity Failures That Led to Data Breach

The Federal Trade Commission (FTC) this week announced an administrative complaint against online alcohol marketplace Drizly and its CEO, James Cory Rellas, over the company’s poor data security practices.
read more Continue reading FTC Targets Drizly and Its CEO Over Cybersecurity Failures That Led to Data Breach

Apple Fixes Exploited Zero-Day With iOS 16.1 Patch

Apple on Monday shipped a major iOS update with fixes at least 20 documented security defects, including a kernel flaw that’s already being actively exploited in the wild.
read more Continue reading Apple Fixes Exploited Zero-Day With iOS 16.1 Patch

Bolsters Raises $15M to Tackle Fakes and Frauds

California startup Bolster, Inc. has raised $15 million in venture capital funding to build a fraud prevention platform for businesses.
The early-stage funding round was led by Cervin, Liberty Global Ventures, and Cheyenne Ventures with participation f… Continue reading Bolsters Raises $15M to Tackle Fakes and Frauds