DICK’S Sporting Goods, the largest chain of sporting goods retail stores in the United States, disclosed that sensitive information was exposed in a cyberattack detected last Wednesday. […]
LinkedIn Hires Former Twitter Security Chief Lea Kissner as New CISO
Lea Kissner replaces Geoff Belknap as Chief Information Security Officer (CISO) at Microsoft-owned LinkedIn.
The post LinkedIn Hires Former Twitter Security Chief Lea Kissner as New CISO appeared first on SecurityWeek.
Censys Finds Hundreds of Exposed Servers as Volt Typhoon APT Targets ISPs, MSPs
Amidst Volt Typhoon zero-day exploitation, Censys finds hundreds of exposed servers presenting ripe attack surface for attackers.
The post Censys Finds Hundreds of Exposed Servers as Volt Typhoon APT Targets ISPs, MSPs appeared first on SecurityWeek.
It’s down to the wire—but you don’t have to miss mWISE
For just a few days, the mWise cybersecurity conference is rolling back registration pricing to the Early Bird rate. Hurry, sale ends Wednesday, September 4. Learn more from mWISE Conference on how to get this discount. […]
APT-C-60 Group Exploit WPS Office Flaw to Deploy SpyGlace Backdoor
A South Korea-aligned cyber espionage has been linked to the zero-day exploitation of a now-patched critical remote code execution flaw in Kingsoft WPS Office to deploy a bespoke backdoor dubbed SpyGlace.
The activity has been attributed to a threat actor dubbed APT-C-60, according to cybersecurity firms ESET and DBAPPSecurity. The attacks have been found to infect Chinese and East Asian users
The activity has been attributed to a threat actor dubbed APT-C-60, according to cybersecurity firms ESET and DBAPPSecurity. The attacks have been found to infect Chinese and East Asian users
WPS Office Zero-Day Exploited by South Korea-Linked Cyberspies
A WPS Office zero-day vulnerability tracked as CVE-2024-7262 was exploited by South Korean hacker group APT-C-60.
The post WPS Office Zero-Day Exploited by South Korea-Linked Cyberspies appeared first on SecurityWeek.
Malware Delivered via Malicious Pidgin Plugin, Signal Fork
Threat actors delivered malware via instant messaging applications, including a malicious Pidgin plugin and an unofficial Signal fork.
The post Malware Delivered via Malicious Pidgin Plugin, Signal Fork appeared first on SecurityWeek.
Check Point to Acquire External Cyber Risk Management Firm Cyberint
Check Point says the acquisition will enhance its own SOC capabilities and expand its managed threat intelligence offerings.
The post Check Point to Acquire External Cyber Risk Management Firm Cyberint appeared first on SecurityWeek.
Rising Tides: Runa Sandvik on Creating Work that Makes a Difference
Runa Sandvik is an inaugural member of CISA’s Technical Advisory Council and the Aspen Institute’s Global Cybersecurity Group, and a board member of the Signals Network. But she is so much more.
The post Rising Tides: Runa Sandvik on Creating Work that Makes a Difference appeared first on SecurityWeek.
US Offering $2.5 Million Reward for Belarusian Malware Distributor
The US government is offering a $2.5 million reward for information leading to the arrest of malware distributor Volodymyr Kadariya.
The post US Offering $2.5 Million Reward for Belarusian Malware Distributor appeared first on SecurityWeek.