SecurityWeek

OpenSSL Vulnerabilities Allow Private Key Recovery, Code Execution, DoS Attacks

Three vulnerabilities have been patched in OpenSSL, including one that allows an attacker to recover the private key.
SecurityWeek

Chinese APT ‘Phantom Taurus’ Targeting Organizations With Net-Star Malware

A Chinese state-sponsored hacking group tracked as ‘Phantom Taurus’ has been targeting government and telecommunications organizations.
SecurityWeek

NIST Publishes Guide for Protecting ICS Against USB-Borne Threats

NIST has published a new guide designed to help organizations reduce cybersecurity risks associated with the use of USB ...
SecurityWeek

Canadian Airline WestJet Says Hackers Stole Customer Data

Canadian airline WestJet this week confirmed that customer personal information was stolen in a June 2025 cyberattack.
SecurityWeek

Descope Raises $35 Million in Seed Round Extension

IAM provider Descope has announced raising $35 million in a seed funding extension that brings the total raised by the ...
SecurityWeek

Cybersecurity Awareness Month 2025:Prioritizing Identity to Safeguard Critical Infrastructure

It is commendable that CISA spotlights the importance of cyber threats, but security practitioners face these threats ...
SecurityWeek

Broadcom Fails to Disclose Zero-Day Exploitation of VMware Vulnerability

Broadcom fixed the flaw in fresh releases of VMware Cloud Foundation, vSphere Foundation, Aria Operations, Telco Cloud ...
SecurityWeek

Battering RAM Attack Breaks Intel and AMD Security Tech With $50 Device

A new hardware attack named Battering RAM and involving a $50 device has been demonstrated against AMD and Intel systems.