An analysis of a January attack targeting Iran’s national media corporation has found the use of multiple malware families, including a data-wiper and custom backdoors.
Wiper Used in Attack on Iran National Media Network
Coinbase Pays $250K for ‘Market-Nuking’ Security Flaw
Cryptocurrency exchange Coinbase has shelled out its largest ever bug bounty payment — a quarter of a million dollars — for what was described as a “market-nuking” security flaw that could have allowed users to sell bitcoins they didn’t own.
Researchers Devise Method to Decrypt Hive Ransomware-Encrypted Data
A group of academic researchers has found a way to exploit a security flaw in the encryption algorithm used by the Hive ransomware to recover hijacked and encrypted data.
Bot Detection Firm Netacea Closes $12 Million Funding Round
Early-stage bot detection and mitigation company Netacea has closed a $12 million (£9 million) Series A investment to build out its anti-fraud technology platform.
The investment was led by Mercia Asset Management, with participation from a wide range of private investors with experience in the cybersecurity industry.
Google Offering $91,000 Rewards for Linux Kernel, GKE Zero-Days
Technology giant Google is offering bigger cash awards for hackers reporting critical security flaws affecting the Linux Kernel, GKE, Kubernetes, and kCTF.
Legit Security Raises $30M to Tackle Supply Chain Security
A team of Israeli entrepreneurs with roots in the application security ecosystem is taking a stab at software supply chain security with big backing from Bessemer Venture Partners.
Alphabet’s CapitalG Makes Big Bet on Salt Security
Salt Security is the latest addition to a growing list of cybersecurity startups boasting billion-dollar valuations.
The Palo Alto, Calif.-based Salt Security on Thursday announced a new $140 million funding round that brings its valuation to $1.4 billion and signals heightened investor interest in the API security space.
Apple Says WebKit Zero-Day Hitting iOS, macOS Devices
Apple’s struggles with zero-day attacks on its iOS and macOS platforms are showing no signs of slowing down.
For the second time in as many months, Cupertino released iOS, iPadOS and macOS updates to address a critical WebKit security defect (CVE-2022-22620) that exposes Apple devices to remote code execution attacks.
Protecting Cryptocurrencies and NFTs – What’s Old is New
Microsoft Patches for 51 Windows Security Defects
Microsoft’s Patch Tuesday train rumbled into Windows networks with fixes for 51 documented security vulnerabilities, some serious enough to cause full computer takeover attacks.
