Security researcher David Schütz says he received over $10,000 in bug bounty payouts from Google after reporting a Google Cloud project vulnerability and subsequent bypasses to rolled-out fixes.
Industrial Cybersecurity Firm Applied Risk Acquired by DNV
Norway-based assurance and risk management solutions provider DNV is acquiring industrial cybersecurity company Applied Risk in an effort to create an “industrial cybersecurity powerhouse.”
The companies will merge under the DNV brand. Financial terms of the deal have not been disclosed.
Apple Slaps Lawsuit on NSO Group Over Pegasus iOS Exploitation
The troubles for Israeli surveillance software maker NSO Group continue to pile up with news that Apple has filed suit to ban the company from using its software, services or devices.
PoC Exploit Published for Latest Microsoft Exchange Zero-Day
A security researcher has released proof-of-concept (PoC) exploit code for a recently patched code execution vulnerability affecting on-prem Microsoft Exchange Server installations.
Serious Vulnerability Found in Imunify360 Web Server Security Product
A vulnerability discovered in CloudLinux’s Imunify360 security product could have been exploited for remote code execution using specially crafted files.
Low Code/No Code App Security Firm Zenity Emerges From Stealth
Low-code/no-code application security provider Zenity today announced that it has emerged from stealth mode with $5 million in seed funding.
The investment round was led by Vertex Ventures and UpWest, but Zenity says it is also backed by former Google CISO Gerhard Eschelbeck and former SuccessFactors CIO Tom Fisher.
Biomanufacturing Facilities Warned of Attacks Involving Sophisticated Malware
The Bioeconomy Information Sharing and Analysis Center (BIO-ISAC) on Monday raised the alarm on cyberattacks targeting biomanufacturing facilities.
Schwarz Group Acquires XM Cyber for $700 Million
Germany-based retail giant Schwarz Group this week announced the acquisition of security posture management company XM Cyber for $700 million.
Schwarz Group, known for brands such as Lidl and Kaufland, is the world’s fourth-largest retailer. Last year, it announced launching a cloud computing service for third-party retailers.
Cyber Insurance Firm Resilience Raises $80 Million
Cyber insurance and security solutions provider Resilience on Monday announced raising $80 million in a Series C funding round.
The funding round was co-led by General Catalyst and Corey Thomas of Rapid7, with participation from Lightspeed Venture Partners, Founders Fund, Charles River Ventures, Shield Capital, and Intact Ventures.
Severe Code Execution Vulnerabilities Affect OpenVPN-Based Applications
Security researchers at Claroty have raised the alarm for a series of severe code execution vulnerabilities affecting virtual private network (VPN) solutions relying on OpenVPN.
