German software maker SAP this week announced the release of 12 new and four updated security notes as part of its March 2022 Patch Day.
SAP Patches Critical Security Flaws in Monitoring Solutions
Patch Tuesday: Microsoft Fixes Multiple Code Execution Flaws
Microsoft’s Patch Tuesday bundle for this month is a big one: 74 documented vulnerabilities in multiple Windows products and components, some serious enough to lead to remote code execution attacks.
Adobe Patches ‘Critical’ Security Flaws in Illustrator, After Effects
Software maker Adobe on Tuesday shipped urgent security updates to fix code execution vulnerabilities in the widely deployed Illustrator and After Effects products.
Infusion Pumps Impacted by Years-Old Critical Vulnerabilities: Report
More than 100,000 infusion pumps were found susceptible to severe vulnerabilities that were disclosed roughly three years ago, according to researcher at Palo Alto Networks’ Unit 42.
BastionZero Raises $6M Seed for Secure Remote Access Tech
BastionZero, a provider of remote access to backend infrastructure, has raised $6 million in seed investment.
The funding round was led by Dell Technologies Capital, with added investments from participation from Akamai and DG Lab Fund (Japan).
NVIDIA Confirms Employee Credentials Stolen in Cyberattack
NVIDIA this week acknowledged that employee credentials were stolen during a cyberattack on February 23 and confirmed the attackers have started leaking the information online.
The compromise occured on February 23 and impacted certain “IT resources,” an NVIDIA spokesperson told SecurityWeek.
Cyberattacks in Ukraine: New Worm-Spreading Data-Wiper With Ransomware Smokescreen
Cybersecurity researchers tracking destructive data-wiping malware attacks in Ukraine are finding signs of new malware with worm-spreading capabilities and what appears to be a rudimentary ransomware decoy.
Insurance Broker Aon Investigating Cyber Incident
Global insurance broker Aon on Monday revealed that it’s investigating a cyber incident impacting some of its systems.
Microsoft: Cyberattacks in Ukraine Hitting Civilian Digital Targets
Microsoft is calling attention to a surge in cyber attacks on Ukrainian civilian digital targets, warning that the new “digital war” includes destructive malware attacks on emergency response services and humanitarian aid efforts.
The Redmond, Wash. software giant said the attacks on civilian targets raise serious concerns under the Geneva Convention.
Symantec: Super-Stealthy ‘Daxin’ Backdoor Linked to Chinese Threat Actor
Threat hunters at Symantec are calling global attention to a new, highly sophisticated piece of malware being used by a Chinese threat actor to burrow into — and hijack data from — government and critical infrastructure targets.