IBM has announced that it’s acquiring Randori, a Boston-based offensive security startup that combines attack surface management (ASM) with continuous automated red teaming (CART) to help organ
Microsoft said on Thursday that it has successfully “identified and disabled” a previously unreported Lebanon-based hacking group that it believes is working with Iranian intelligence. T
China-backed hackers are exploiting an unpatched Microsoft Office zero-day vulnerability, known as “Follina”, to execute malicious code remotely on Windows systems. The high-severity vulnerabilit
The U.S. government has stepped up its hunt for six Russian intelligence officers, best known as the state-backed hacking group dubbed “Sandworm,” by offering a $10 million bounty for info
U.S. government agencies are warning that state-backed hackers have developed custom malware that enables them to compromise and hijack commonly used industrial control system (ICS) devices. The advis
Prelude, a Washington, D.C-based startup that helps organizations harden their cyber defenses through the use of autonomous red-teaming, has secured $24 million in Series A funding. Prelude — which
A decade ago security researcher Barnaby Jack famously wirelessly hacked a hospital insulin pump live on stage in front of hundreds of people to demonstrate how easily it could be compromised to deliv
Microsoft has successfully seized domains used by APT28, a state-sponsored group operated by Russian military intelligence, to target institutions in Ukraine. The tech giant said in a blog post on Thu
The advent of ransomware and targeted attacks on critical infrastructure have changed the game and are highlighting operational technology security. Today, OT security is a national security issue.
It’s no secret that digital supply chains are increasingly under attack as hackers look to use this vector to get access to company networks and confidential information. But that also means bus
Microsoft has confirmed that it was breached by the Lapsus$ hacking group. In a blog post on Tuesday — published hours after Lapsus$ posted a torrent file containing partial source code from Bing, B
Considering recent APT41 attacks, organizations that continue to leave the Log4Shell flaw unaddressed are hitting the snooze button when it comes to the wake-up calls from attackers.
The U.S. government is warning of “possible threats” to satellite communication networks amid fears that recent attacks on satellite networks in Europe, sparked by the war in Ukraine, coul
The prolific China APT41 hacking group, known for carrying out espionage in parallel with financially motivated operations, has compromised multiple U.S. state government networks, according to cybers
It’s a juxtaposition of sorts to think the cybersecurity industry is vulnerable to cyberattack, but for many nation state groups, this is their first port of call.
U.S. chipmaker Nvidia has confirmed that it’s investigating a cyber incident that has reportedly downed the company’s developer tools and email systems. Nvidia told TechCrunch in a statement t
Cybersecurity continues to be a pernicious and complex problem, for enterprises, and today a company that’s building a multi-faceted toolkit to help them address it better is announcing a big ro
2021 may have been a rough year for cybersecurity, but it was a record-breaking year for security startups. According to new data from Momentum Cyber, a financial advisory firm for the security indust
You might not think much about the train or the airplane that gets you from one place to another, but behind any transportation link is a vast sprawling network of electronics, devices and data that k
A cyberattack targeting a contractor working for the International Committee of the Red Cross has spilled confidential data on more than 515,000 “highly vulnerable” people, many of whom ha