Pangea Cyber, an early stage startup working on technology in the API security services space, has banked $26 million in a new funding round led by Google Ventures.
Investors Double Down on Pangea Cyber API Security Bet
One Year Later: Log4Shell Remediation Slow, Painful Slog
Almost exactly a year after the Log4Shell security crisis sent defenders scrambling to reduce attack surfaces, new data shows that remediation has been a long, slow, painful slog for most organizations around the world.
Investors Bet $31 Million on Sphere for Identity Hygiene Tech
Venture capital investors have invested another $31 million into Sphere Technology Solutions, a New Jersey startup building technology to help defenders manage identities and access to sensitive data.
Project Zero Flags ‘Patch Gap’ Problems on Android
Vulnerability researchers at Google Project Zero are calling attention to the ongoing “patch-gap” problem in the Android ecosystem, warning that downstream vendors continue to be tardy at delivering security fixes to Android-powered devices.
Twitter Data Breach Bigger Than Initially Reported
A massive Twitter data breach disclosed a few months ago appears to be bigger than initially reported.
Proofpoint: Watch Out for Nighthawk Hacking Tool Abuse
Security researchers at Proofpoint are calling attention to the discovery of a commercial red-teaming tool called Nighthawk, warning that the command-and-control framework is likely to be abused by threat actors.
Leaked Algolia API Keys Exposed Data of Millions of Users
Threat detection firm CloudSEK has identified thousands of applications leaking Algolia API keys, and tens of applications with hardcoded admin secrets, which could allow attackers to steal the data of millions of users.
33 Attorneys General Send Letter to FTC on Commercial Surveillance Rules
Attorneys general in 33 US states are urging the Federal Trade Commission (FTC) to take into consideration consumer risks as it looks into creating rules to crack down on commercial surveillance.
Palo Alto to Acquire Israeli Software Supply Chain Startup
Cybersecurity powerhouse Palo Alto Networks on Thursday announced plans to spend $195 million in cash to acquire Israeli startup Cider Security, a deal that adds software supply chain security capabilities to its Prisma Cloud platform.
US Gov Warning: Start Hunting for Iranian APTs That Exploited Log4j
The U.S. government on Wednesday issued a blunt recommendation for organizations running VMWare Horizon servers: Initiate threat-hunting activities to find and expel Iranian APT actors that used the Log4j crisis to slip undetected into corporate networks.
