Attack simulation firm has raised $45 million in growth funding, bringing the total amount raised to $80 million.
The post Security Validation Firm Picus Security Raises $45 Million appeared first on SecurityWeek.
Atlassian Patches Vulnerabilities in Bamboo, Bitbucket, Confluence, Crowd
Atlassian’s September 2024 monthly security bulletin details multiple high-severity vulnerabilities in four products.
The post Atlassian Patches Vulnerabilities in Bamboo, Bitbucket, Confluence, Crowd appeared first on SecurityWeek.
Microsoft: US Healthcare Sector Targeted by INC Ransomware Affiliate
Microsoft has observed the threat actor Vanilla Tempest targeting US healthcare organizations with INC ransomware.
The post Microsoft: US Healthcare Sector Targeted by INC Ransomware Affiliate appeared first on SecurityWeek.
Hackers Demand $6 Million for Files Stolen From Seattle Airport Operator in Cyberattack
The Port of Seattle, which owns and runs the airport, has decided not to pay, the official said.
The post Hackers Demand $6 Million for Files Stolen From Seattle Airport Operator in Cyberattack appeared first on SecurityWeek.
Clever ‘GitHub Scanner’ campaign abusing repos to push malware
A clever threat campaign is abusing GitHub repositories to distribute malware targeting users who frequent an open source project repository or are subscribed to email notifications from it. A malicious GitHub user opens a new “issue” on an open source repository falsely claiming that the project contains a “security vulnerability.” […]
Cybersecurity Awareness: Reflecting on 20 Years of Defense Evolution and Preparing for Future Threats
Threats have become more complex as the threat surface has expanded and it is now about the evolution of protecting a business and its ecosystem.
The post Cybersecurity Awareness: Reflecting on 20 Years of Defense Evolution and Preparing for Future Threats appeared first on SecurityWeek.
Healthcare’s Diagnosis is Critical: The Cure is Cybersecurity Hygiene
Cybersecurity in healthcare has never been more urgent. As the most vulnerable industry and largest target for cybercriminals, healthcare is facing an increasing wave of cyberattacks. When a hospital’s systems are held hostage by ransomware, it’s not just data at risk — it’s the care of patients who depend on life-saving treatments. Imagine an attack that forces emergency care to halt, surgeries
Microsoft Warns of New INC Ransomware Targeting U.S. Healthcare Sector
Microsoft has revealed that a financially motivated threat actor has been observed using a ransomware strain called INC for the first time to target the healthcare sector in the U.S.
The tech giant’s threat intelligence team is tracking the activity under the name Vanilla Tempest (formerly DEV-0832).
“Vanilla Tempest receives hand-offs from GootLoader infections by the threat actor Storm-0494,
The tech giant’s threat intelligence team is tracking the activity under the name Vanilla Tempest (formerly DEV-0832).
“Vanilla Tempest receives hand-offs from GootLoader infections by the threat actor Storm-0494,
US Disrupts ‘Raptor Train’ Botnet of Chinese APT Flax Typhoon
The US government has announced the disruption of Raptor Train, a Flax Typhoon botnet powered by hacked consumer devices.
The post US Disrupts ‘Raptor Train’ Botnet of Chinese APT Flax Typhoon appeared first on SecurityWeek.
GitLab Patches Critical Authentication Bypass Vulnerability
GitLab has patched a critical-severity SAML authentication bypass affecting both Community Edition (CE) and Enterprise Edition (EE) instances.
The post GitLab Patches Critical Authentication Bypass Vulnerability appeared first on SecurityWeek.