Vulnerability researchers at Microsoft are documenting the discovery of a pair of Linux privilege escalation flaws that could be chained together to plant dangerous malware or backdoors.
Microsoft Warns of ‘Nimbuspwn’ Security Flaws Haunting Linux
1.2 Million Bad Apps Blocked From Reaching Google Play in 2021
Google claims that it prevented 1.2 million bad applications from reaching Google Play in 2021, but cybercriminals are still finding ways to deliver malware through the official Android app store.
Synopsys to Acquire White Hat Security in $330M All-Cash Deal
Electronic design automation powerhouse Synopsys is expanding its reach into the cybersecurity business with plans to shell out $330 million to acquire White Hat security.
Privacy Enhancing Tech Startup Enveil Bags $25 Million Investment
Enveil, an early-stage startup tackling the ‘holy grail’ of data encryption, has banked another $25 million in funding as investors continue to pour money into the privacy enhancing technology space.
German Wind Turbine Firm Discloses ‘Targeted, Professional Cyberattack’
German wind turbine giant Deutsche Windtechnik has issued a notification to warn that some of its IT systems were impacted in a targeted professional cyberattack earlier this month.
Web Application Security Firm Source Defense Raises $27 Million
Source Defense, a provider of web application client-side protection, says it pocketed $27 million in Series B funding, bringing the total investment raised by the company to $47 million.
4-Hour Time-to-Ransom Seen in Quantum Attack as Accelerated Ransomware Increasingly Common
As part of a recent cyberattack, threat actors deployed ransomware less than four hours after compromising the victim’s environment, according to researchers with The DFIR Report.
Former DNC CISO Bob Lord Joins CISA Cybersecurity Division
The U.S. government’s Cybersecurity and Infrastructure Security Agency (CISA) has added former DNC security chief Bob Lord to its roster of technical advisors.
Strike Security Scores Funding for ‘Perpetual Pentesting’ for SMBs
South American startup Strike Security has secured $5.4 million to fund an ambitious plan to disrupt the penetration testing and attack surface management business.
Google, Mandiant Share Data on Record Pace of Zero-Day Discoveries
Google and Mandiant separately called attention to a dramatic surge in the discovery of in-the-wild zero-day attacks and warned that nation-state APT actors, ransomware gangs and private mercenary exploit firms are burning through zero-days at record pace.
