Google today announced a new set of features for Cloud Armor, its distributed denial-of-service (DDoS) mitigation service and web application firewall (WAF).
Google Introduces New Capabilities for Cloud Armor Web Security Service
CISA Says ‘PwnKit’ Linux Vulnerability Exploited in Attacks
The US Cybersecurity and Infrastructure Security Agency (CISA) says a Linux vulnerability tracked as CVE-2021-4034 and PwnKit has been exploited in attacks.
Cyolo Banks $60M Series B for ZTNA Technology
Cyolo, an Israeli startup building technology for zero trust networking, on Monday announced a new $60 million investment led by the venture investing arm of National Grid.
In addition to National Grid Partners, Cyolo said it scored investments from Glilot Capital Partners, Flint Capital, Differential Ventures, and Merlin Ventures.
Chinese Threat Actor Targets Rare Earth Mining Companies in North America, Australia
Mandiant’s security researchers have been tracking influence campaigns that a Chinese threat actor named Dragonbridge has been conducting against rare earth mining companies in Australia, Canada, and the United States.
New Database Catalogs Cloud Vulnerabilities, Security Issues
Cloud security company Wiz has announced the launch of a new database whose goal is to keep track of vulnerabilities and other security issues affecting cloud services.
Chinese Hackers Target Building Management Systems
Threat hunters at Kaspersky have uncovered a series of attacks that targeted organizations across telecoms, transportation, and industrial sectors with the ShadowPad backdoor.
The campaign hit the manufacturing and telecoms industries in Afghanistan and Pakistan, and a logistics and transport organization (a port) in Malaysia.
LockBit 3.0 Ransomware Emerges With Bug Bounty Program
The LockBit 3.0 ransomware operation was launched recently and it includes a bug bounty program offering up to $1 million for vulnerabilities and various other types of information.
Lithuania Says Hit by Cyberattack, Russia ‘Probably’ to Blame
Lithuania said Monday it had been hit by an “intense” cyberattack, probably Russian, days after Moscow protested restrictions Vilnius imposed on the rail transit of certain goods to Kaliningrad.
NIST Releases New macOS Security Guidance for Organizations
The National Institute of Standards and Technology (NIST) has published the final version of its guidance on securing macOS endpoints and assessing their security.
House Passes ICS Cybersecurity Training Bill
The US House of Representatives has passed a new cybersecurity bill named the “Industrial Control Systems Cybersecurity Training Act.”
