The US oil giant updated an SEC filing to confirm malicious hackers “accessed and exfiltrated information” from its corporate systems.
The post Halliburton Confirms Data Stolen in Cyberattack appeared first on SecurityWeek.
US Sees Iranian Hackers Working Closely With Ransomware Groups
Iranian state-sponsored APT Lemon Sandstorm is working closely with ransomware groups on monetizing network intrusions.
The post US Sees Iranian Hackers Working Closely With Ransomware Groups appeared first on SecurityWeek.
US, Allies Release Guidance on Event Logging and Threat Detection
Government agencies in the US and allied countries have released guidance on how organizations can define a baseline for event logging best practices.
The post US, Allies Release Guidance on Event Logging and Threat Detection appeared first on SecurityWeek.
CISA to Get New $524 Million Headquarters in DC, Backed by Inflation Reduction Act Funding
Clark Construction has been tasked with building the 630,000 square foot sustainable state-of-the-art facility for CISA.
The post CISA to Get New $524 Million Headquarters in DC, Backed by Inflation Reduction Act Funding appeared first on SecurityWeek.
Warnings Issued Over Cisco Device Hacking, Unpatched Vulnerabilities
CISA is warning organizations about abuse of Cisco Smart Install feature, as Cisco is notifying customers about critical phone vulnerabilities it’s not patching.
The post Warnings Issued Over Cisco Device Hacking, Unpatched Vulnerabilities appeared first on SecurityWeek.
Google Cloud CISO Phil Venables: ‘I’m short-term pessimistic, long-term optimistic’
SecurityWeek fireside chat: Google Cloud CISO on CISA’s secure-by-design initiatives, government regulations, holding vendors accountable, and transformational security leadership.
The post Google Cloud CISO Phil Venables: ‘I’m short-term pessimistic, long-term optimistic’ appeared first on SecurityWeek.
Progress Patches Critical Telerik Report Server Vulnerability
Progress Software calls attention to a critical remote code execution flaw in the Telerik Report Server product.
The post Progress Patches Critical Telerik Report Server Vulnerability appeared first on SecurityWeek.
CISA Red Team Exercise Finds Critical Vulnerabilities in Federal Civilian Agency
CISA says a SILENTSHIELD red team assessment found gaping holes in the security posture of a federal civilian executive branch organization.
The post CISA Red Team Exercise Finds Critical Vulnerabilities in Federal Civilian Agency appeared first on SecurityWeek.
US, Allies Warn of Memory Unsafety Risks in Open Source Software
Most critical open source software contains code written in a memory unsafe language, US, Australian, and Canadian government agencies warn.
The post US, Allies Warn of Memory Unsafety Risks in Open Source Software appeared first on SecurityWeek.
Personal and Chemical Facility Information Potentially Accessed in CISA Hack
CISA says CFATS program data was likely accessed after an Ivanti Connect Secure appliance was hacked in January.
The post Personal and Chemical Facility Information Potentially Accessed in CISA Hack appeared first on SecurityWeek.
