Omron PLC Vulnerability Exploited by Sophisticated ICS Malware
A critical vulnerability has not received the attention it deserves
read more Continue reading Omron PLC Vulnerability Exploited by Sophisticated ICS Malware
Category Archives: Virus & Malware
Palo Alto to Acquire Israeli Software Supply Chain Startup
Cybersecurity powerhouse Palo Alto Networks on Thursday announced plans to spend $195 million in cash to acquire Israeli startup Cider Security, a deal that adds software supply chain security capabilities to its Prisma Cloud platform.
read more Continue reading Palo Alto to Acquire Israeli Software Supply Chain Startup
Hundreds Infected With ‘Wasp’ Stealer in Ongoing Supply Chain Attack
Security researchers are raising alarm on an ongoing supply chain attack that uses malicious Python packages to distribute an information stealer.
read more Continue reading Hundreds Infected With ‘Wasp’ Stealer in Ongoing Supply Chain Attack
US Gov Warning: Start Hunting for Iranian APTs That Exploited Log4j
The U.S. government on Wednesday issued a blunt recommendation for organizations running VMWare Horizon servers: Initiate threat-hunting activities to find and expel Iranian APT actors that used the Log4j crisis to slip undetected into corporate networ… Continue reading US Gov Warning: Start Hunting for Iranian APTs That Exploited Log4j
Akeyless Raises $65 Million for Secrets Management Tech
Israeli early-stage startup Akeyless has banked a whopping $65 million in venture capital funding to build technology to help businesses manage credentials, certificates, keys and other secrets flowing through multi-cloud environments.
read more Continue reading Akeyless Raises $65 Million for Secrets Management Tech
Bishop Fox Adds $46 Million to Series B Funding Round
Continuous attack surface management pioneer Bishop Fox continues to attract the attention of investors with the banking of another $46 million in growth funding led by WestCap.
read more Continue reading Bishop Fox Adds $46 Million to Series B Funding Round
Microsoft Patches MotW Zero-Day Exploited for Malware Delivery
Microsoft’s latest Patch Tuesday updates address six zero-day vulnerabilities, including one related to the Mark-of-the-Web (MotW) security feature that has been exploited by cybercriminals to deliver malware.
read more Continue reading Microsoft Patches MotW Zero-Day Exploited for Malware Delivery
Gaping Authentication Bypass Holes in VMWare Workspace One
Virtualization technology giant VMware joined the Patch Tuesday train this week to deliver urgent security patches to its VMWare Workspace One product.
read more Continue reading Gaping Authentication Bypass Holes in VMWare Workspace One
Microsoft Scrambles to Thwart New Zero-Day Attacks
The zero-day attacks against Microsoft’s software products are showing no signs of slowing down.
read more Continue reading Microsoft Scrambles to Thwart New Zero-Day Attacks
Microsoft: China Flaw Disclosure Law Part of Zero-Day Exploit Surge
The world’s largest software maker is warning that China-based nation state threat actors are taking advantage of a one-year-old law to “stockpile” zero-days for use in sustained malware attacks.
read more Continue reading Microsoft: China Flaw Disclosure Law Part of Zero-Day Exploit Surge