Kapeka: A New Backdoor in Sandworm’s Arsenal of Aggression
Keywords/Tags: Malware & Threats, Sandworm Article Source: SecurityWeek Kapeka is a new backdoor that may be a new addition to Russia-link Sandworm’s malware arsenal and possibly a successor to GreyEnergy.…
Miggo Security Gets $7.5 Million Seed Funding to Build ADR Technology
Keywords/Tags: Application Security, Funding/M&A, Miggo Security, seed-stage, YL Ventures Article Source: SecurityWeek YL Ventures leads an early stage funding round for Miggo Security, a Tel Aviv startup working on application…
Armis Acquires Silk Security for $150 Million
Keywords/Tags: M&A Tracker, Acquisition, Armis Article Source: SecurityWeek Armis has acquired cyber risk prioritization and remediation company Silk Security for $150 million. The post Armis Acquires Silk Security for $150…
Ivanti Patches 27 Vulnerabilities in Avalanche MDM Product
Keywords/Tags: Vulnerabilities, Ivanti Article Source: SecurityWeek Ivanti releases patches for 27 vulnerabilities in the Avalanche MDM product, including critical flaws leading to command execution. The post Ivanti Patches 27 Vulnerabilities…
Cisco: Multiple VPN, SSH Services Targeted in Mass Brute-Force Attacks
Keywords/Tags: Malware & Threats, brute force, VPN Article Source: SecurityWeek Cisco has observed an increase in brute-force attacks targeting web application authentication, VPNs, and SSH services. The post Cisco: Multiple…
Recent OT and Espionage Attacks Linked to Russia’s Sandworm, Now Named APT44
Keywords/Tags: Nation-State, APT44, Featured, ICS, Russia, Sandworm Article Source: SecurityWeek Mandiant summarizes some of the latest operations of Russia’s notorious Sandworm group, which it now tracks as APT44. The post…
Chrome 124, Firefox 125 Patch High-Severity Vulnerabilities
Keywords/Tags: Vulnerabilities, Chrome, Firefox Article Source: SecurityWeek Chrome and Firefox security updates resolve over 35 vulnerabilities, including a dozen high-severity bugs. The post Chrome 124, Firefox 125 Patch High-Severity Vulnerabilities…
Oracle Patches 230 Vulnerabilities With April 2024 CPU
Keywords/Tags: Vulnerabilities, Featured, Oracle Article Source: SecurityWeek Oracle releases 441 new security patches to address 230 vulnerabilities as part of its April 2024 Critical Patch Update. The post Oracle Patches…
Exploitation of Palo Alto Firewall Vulnerability Picking Up After PoC Release
Keywords/Tags: Malware & Threats, exploited, Palo Alto Networks Article Source: SecurityWeek Palo Alto Networks firewall vulnerability CVE-2024-3400 increasingly exploited after PoC code has been released. The post Exploitation of Palo…
Critical PuTTY Vulnerability Allows Secret Key Recovery
Keywords/Tags: Vulnerabilities, encryption, PuTTY Article Source: SecurityWeek PuTTY vulnerability CVE-2024-31497 allows attackers to compromise private keys and use them to forge signatures. The post Critical PuTTY Vulnerability Allows Secret Key…