The bug has been exploited in the wild as a zero-day and the US cybersecurity agency CISA has added it to its KEV catalog.
The post Lanscope Endpoint Manager Zero-Day Exploited in the Wild appeared first on SecurityWeek.
Mobile Security: Verizon Says Attacks Soar, AI-Powered Threats Raise Alarm
Verizon’s 2025 Mobile Security Index shows that 85% of organizations believe mobile device attacks are on the rise.
The post Mobile Security: Verizon Says Attacks Soar, AI-Powered Threats Raise Alarm appeared first on SecurityWeek.
TARmageddon Flaw in Popular Rust Library Leads to RCE
The vulnerability impacts multiple Rust tar parsers, allowing attackers to smuggle additional archive entries.
The post TARmageddon Flaw in Popular Rust Library Leads to RCE appeared first on SecurityWeek.
Critical Vulnerabilities Patched in TP-Link’s Omada Gateways
One of the flaws can be exploited by remote unauthenticated attackers for arbitrary command execution.
The post Critical Vulnerabilities Patched in TP-Link’s Omada Gateways appeared first on SecurityWeek.
Keycard Emerges From Stealth Mode With $38 Million in Funding
The company’s IAM platform identifies AI agents, supports assigning permission to them, and tracks all activity.
The post Keycard Emerges From Stealth Mode With $38 Million in Funding appeared first on SecurityWeek.
Russian APT Switches to New Backdoor After Malware Exposed by Researchers
Star Blizzard started using the NoRobot (BaitSwitch) and MaybeRobot (SimpleFix) malware after public reporting on the LostKeys malware.
The post Russian APT Switches to New Backdoor After Malware Exposed by Researchers appeared first on SecurityWeek.
What Makes a Great Field CXO: Lessons from the Front Lines
If you are recruiting for a Field CISO, Field CTO, etc., or are looking to leverage a resource at your company in one of these roles, what are some things you should be aware of?
The post What Makes a Great Field CXO: Lessons from the Front Lines appeared first on SecurityWeek.
Fencing and Pet Company Jewett-Cameron Hit by Ransomware
Jewett-Cameron Company says hackers stole sensitive information and are threatening to release it unless a ransom is paid.
The post Fencing and Pet Company Jewett-Cameron Hit by Ransomware appeared first on SecurityWeek.
Oracle Releases October 2025 Patches
The Critical Patch Update contains 374 new security patches that resolve many vulnerabilities.
The post Oracle Releases October 2025 Patches appeared first on SecurityWeek.
Hackers Earn Over $520,000 on First Day of Pwn2Own Ireland 2025
Participants exploited 34 previously unknown vulnerabilities to hack printers, NAS devices, and smart home products.
The post Hackers Earn Over $520,000 on First Day of Pwn2Own Ireland 2025 appeared first on SecurityWeek.
