A breach at Rackspace exposes the fragility of the software supply chain, triggering a blame game among vendors over an exploited zero-day.
The post Zero-Day Breach at Rackspace Sparks Vendor Blame Game appeared first on SecurityWeek.
Zero-Day Breach at Rackspace Sparks Vendor Blame Game
MITRE Adds Mitigations to EMB3D Threat Model
MITRE has expanded the EMB3D Threat Model with essential mitigations to help organizations address threats to embedded devices.
The post MITRE Adds Mitigations to EMB3D Threat Model appeared first on SecurityWeek.
US, Allies Release Guidance on Securing OT Environments
New guidance provides information on how to create and maintain a secure operational technology (OT) environment.
The post US, Allies Release Guidance on Securing OT Environments appeared first on SecurityWeek.
Cryptocurrency Wallets Targeted via Python Packages Uploaded to PyPI
Multiple Python packages referencing dependencies containing cryptocurrency-stealing code were published to PyPI.
The post Cryptocurrency Wallets Targeted via Python Packages Uploaded to PyPI appeared first on SecurityWeek.
Harmonic Raises $17.5M to Defend Against AI Data Harvesting
Harmonic has raised a total of $26 million to develop a new approach to data protection using pre-trained, specialized language models.
The post Harmonic Raises $17.5M to Defend Against AI Data Harvesting appeared first on SecurityWeek.
Record-Breaking DDoS Attack Peaked at 3.8 Tbps, 2.14 Billion Pps
Cloudflare recently mitigated another record-breaking DDoS attack, peaking at 3.8 Tbps and 2.14 billion Pps.
The post Record-Breaking DDoS Attack Peaked at 3.8 Tbps, 2.14 Billion Pps appeared first on SecurityWeek.
After Code Execution, Researchers Show How CUPS Can Be Abused for DDoS Attacks
Over 58,000 internet-exposed CUPS hosts can be abused for significant DDoS attacks, according to Akamai.
The post After Code Execution, Researchers Show How CUPS Can Be Abused for DDoS Attacks appeared first on SecurityWeek.
Critical Zimbra Vulnerability Exploited One Day After PoC Release
A critical-severity vulnerability in Zimbra has been exploited in the wild to deploy a web shell on vulnerable servers.
The post Critical Zimbra Vulnerability Exploited One Day After PoC Release appeared first on SecurityWeek.
T-Mobile to Pay Millions to Settle With FCC Over Data Breaches
T-Mobile has agreed to invest $15.75 million in cybersecurity and pay $15.75 million to settle an FCC investigation into four data breaches.
The post T-Mobile to Pay Millions to Settle With FCC Over Data Breaches appeared first on SecurityWeek.
More LockBit Hackers Arrested, Unmasked as Law Enforcement Seizes Servers
Previously seized LockBit websites have been used to announce more arrests, charges and infrastructure disruptions.
The post More LockBit Hackers Arrested, Unmasked as Law Enforcement Seizes Servers appeared first on SecurityWeek.