Peter Williams, a former general manager at U.S. defense contractor L3Harris Trenchant, has pleaded guilty in U.S. District Court to stealing and selling confidential cybersecurity information to a Russian vulnerability exploit broker. […]
Russian Ransomware Gangs Weaponize Open-Source AdaptixC2 for Advanced Attacks
The open-source command-and-control (C2) framework known as AdaptixC2 is being used by a growing number of threat actors, some of whom are related to Russian ransomware gangs.
AdaptixC2 is an emerging extensible post-exploitation and adversarial emulation framework designed for penetration testing. While the server component is written in Golang, the GUI Client is written in C++ QT for
AdaptixC2 is an emerging extensible post-exploitation and adversarial emulation framework designed for penetration testing. While the server component is written in Golang, the GUI Client is written in C++ QT for
CISA and NSA share tips on securing Microsoft Exchange servers
The Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) have released guidance to help IT administrators harden Microsoft Exchange servers on their networks against attacks. […]
Spektrum Labs Emerges From Stealth to Help Companies Prove Resilience
Spektrum Labs has raised $10 million in seed funding for its cyber resilience platform.
The post Spektrum Labs Emerges From Stealth to Help Companies Prove Resilience appeared first on SecurityWeek.
New “Brash” Exploit Crashes Chromium Browsers Instantly with a Single Malicious URL
A severe vulnerability disclosed in Chromium’s Blink rendering engine can be exploited to crash many Chromium-based browsers within a few seconds.
Security researcher Jose Pino, who disclosed details of the flaw, has codenamed it Brash.
“It allows any Chromium browser to collapse in 15-60 seconds by exploiting an architectural flaw in how certain DOM operations are managed,” Pino said in a
Security researcher Jose Pino, who disclosed details of the flaw, has codenamed it Brash.
“It allows any Chromium browser to collapse in 15-60 seconds by exploiting an architectural flaw in how certain DOM operations are managed,” Pino said in a
Rethinking identity security in the age of autonomous AI agents
AI agents now make decisions and access systems on their own, creating identity blind spots traditional tools can’t see. Learn how Token Security brings identity-first security to agentic AI — making every agent verified, owned, and accountable. […]
Reflectiz Raises $22 Million for Website Security Solution
The company will expand its product offering, establish global headquarters in Boston, and fuel growth and go-to-market efforts.
The post Reflectiz Raises $22 Million for Website Security Solution appeared first on SecurityWeek.
Millions Impacted by Conduent Data Breach
The hackers stole names, addresses, dates of birth, Social Security numbers, and health and insurance information.
The post Millions Impacted by Conduent Data Breach appeared first on SecurityWeek.
LinkedIn phishing targets finance execs with fake board invites
Hackers are abusing LinkedIn to target finance executives with direct-message phishing attacks that impersonate executive board invitations, aiming to steal their Microsoft credentials. […]
Major US Telecom Backbone Firm Hacked by Nation-State Actors
Ribbon Communications provides technology for communications networks and its customers include the US government and major telecom firms.
The post Major US Telecom Backbone Firm Hacked by Nation-State Actors appeared first on SecurityWeek.