Attack surface management specialists Cyberpion has secured $27 million in early-stage funding to build technology that helps organizations manage exposure to risk.
Investors Bet on Cyberpion in Attack Surface Management Space
Chrome Browser Gets Major Security Update
Google this week released a security-themed Chrome browser makeover with patches 28 documented vulnerabilities, some serious enough to lead to code execution attacks.
The new browser refresh is now rolling out to Windows, Mac and Linux users as Chrome 100.0.4896.60.
Remote ‘Brokenwire’ Hack Prevents Charging of Electric Vehicles
Researchers from the University of Oxford in the UK and Switzerland’s Armasuisse federal agency have identified a new attack method that can be used to remotely interrupt the charging of electric vehicles.
US Government Warns of Attacks Targeting UPS Devices
The US Cybersecurity and Infrastructure Security Agency (CISA) and the Department of Energy this week issued guidance on mitigating attacks against uninterruptible power supply (UPS) devices.
Federal Agencies Instructed to Patch New Chrome Zero-Day
The US Cybersecurity and Infrastructure Security Agency (CISA) has warned federal agencies about an actively exploited zero-day vulnerability in Google’s Chrome browser.
Cloaked Snags $25M Funding to Tackle Data-Sharing Privacy
A Boston startup has raised $25 million in early-stage funding to tackle the erosion of privacy in today’s data sharing ecosystems.
The startup, called Cloaked, said the Series A investment was co-led by Lux Capital and Human Capital and will be used to exit beta and drive growth in a competitive marketplace.
VMware vCenter Server Vulnerability Can Facilitate Attacks on Many Organizations
VMware on Tuesday announced the availability of patches for a vCenter Server vulnerability that could facilitate attacks against many organizations.
Critical Vulnerabilities Found in Microsoft Defender for IoT
Researchers at endpoint security firm SentinelOne on Monday published detailed information on a couple of critical remote code execution vulnerabilities discovered in Microsoft Defender for IoT.
Sophos Warns of Attacks Exploiting Recent Firewall Vulnerability
Sophos on Monday raised the alarm about a recently patched Sophos Firewall vulnerability being exploited in attacks.
Impacting the User Portal and Webadmin of Sophos Firewall, the bug is described as an authentication bypass that could lead to remote code execution.
SonicWall Patches Critical Vulnerability in Firewall Appliances
SonicWall has released patches for a critical-severity vulnerability in the web management interface of multiple firewall appliances.
Tracked as CVE-2022-22274 (CVSS score of 9.4), the security flaw is described as a stack-based buffer overflow bug that impacts SonicOS.
