Palo Alto Networks has not attributed the APT activity to any specific country, but evidence points to China.
The post Cyberspy Group Hacked Governments and Critical Infrastructure in 37 Countries appeared first on SecurityWeek.
Cisco, F5 Patch High-Severity Vulnerabilities
The security defects can lead to DoS conditions, arbitrary command execution, and privilege escalation.
The post Cisco, F5 Patch High-Severity Vulnerabilities appeared first on SecurityWeek.
Blockchain Intelligence Firm TRM Labs Raises $70 Million at $1 Billion Valuation
The Series C funding will enable the company to expand its AI capabilities for disrupting criminal networks.
The post Blockchain Intelligence Firm TRM Labs Raises $70 Million at $1 Billion Valuation appeared first on SecurityWeek.
Vulnerabilities Allowed Full Compromise of Google Looker Instances
The flaws dubbed LookOut can be exploited for remote code execution and data exfiltration.
The post Vulnerabilities Allowed Full Compromise of Google Looker Instances appeared first on SecurityWeek.
Cyber Insights 2026: Cyberwar and Rising Nation State Threats
While both cyberwar and cyberwarfare will increase through 2026, cyberwarfare is likely to increase more dramatically. We hope it will never boil over – but we should be aware of the possibility and its consequences.
The post Cyber Insights 2026: Cyberwar and Rising Nation State Threats appeared first on SecurityWeek.
Varonis Acquisition of AllTrue.ai Valued at $150 Million
The data security firm has acquired the AI trust, risk, and security management company to expand its capabilities.
The post Varonis Acquisition of AllTrue.ai Valued at $150 Million appeared first on SecurityWeek.
Orion Raises $32 Million for Data Security
The startup will use the funding to accelerate product development and go-to-market operations.
The post Orion Raises $32 Million for Data Security appeared first on SecurityWeek.
DockerDash Flaw in Docker AI Assistant Leads to RCE, Data Theft
The critical vulnerability exists in the contextual trust in MCP Gateway architecture, as instructions are passed without validation.
The post DockerDash Flaw in Docker AI Assistant Leads to RCE, Data Theft appeared first on SecurityWeek.
Cryptominers, Reverse Shells Dropped in Recent React2Shell Attacks
Two IP addresses accounted for the majority of the 1.4 million exploitation attempts observed over the past week.
The post Cryptominers, Reverse Shells Dropped in Recent React2Shell Attacks appeared first on SecurityWeek.
Fresh SolarWinds Vulnerability Exploited in Attacks
The critical-severity SolarWinds Web Help Desk flaw could lead to unauthenticated remote code execution.
The post Fresh SolarWinds Vulnerability Exploited in Attacks appeared first on SecurityWeek.
