SecurityWeek
European Union Sanctions Russian Nationals for Hacking Estonia
The European Union has added three Russian nationals to its sanctions list for their involvement in cyberattacks against Estonia.
The post European Union Sanctions Russian Nationals for Hacking Estonia appeared first on SecurityWeek.
DeepSeek Blames Disruption on Cyberattack as Vulnerabilities Emerge
China’s DeepSeek blamed sign-up disruptions on a cyberattack as researchers started finding vulnerabilities in the R1 AI model.
The post DeepSeek Blames Disruption on Cyberattack as Vulnerabilities Emerge appeared first on SecurityWeek.
ENGlobal Says Personal Information Accessed in Ransomware Attack
ENGlobal has informed the SEC that personal information was compromised in a November 2024 ransomware attack.
The post ENGlobal Says Personal Information Accessed in Ransomware Attack appeared first on SecurityWeek.
SonicWall Confirms Exploitation of New SMA Zero-Day
SonicWall has confirmed that an SMA 1000 zero-day tracked as CVE-2025-23006 has been exploited in the wild.
The post SonicWall Confirms Exploitation of New SMA Zero-Day appeared first on SecurityWeek.
Apple Patches First Exploited iOS Zero-Day of 2025
Apple has released fixes for dozens of vulnerabilities in its mobile and desktop products, including an iOS zero-day exploited in attacks.
The post Apple Patches First Exploited iOS Zero-Day of 2025 appeared first on SecurityWeek.
TalkTalk Confirms Data Breach, Downplays Impact
UK telecoms firm TalkTalk has confirmed falling victim to a data breach after a threat actor boasted about hacking it.
The post TalkTalk Confirms Data Breach, Downplays Impact appeared first on SecurityWeek.
LTE, 5G Vulnerabilities Could Cut Entire Cities From Cellular Connectivity
Vulnerabilities in LTE/5G core infrastructure, some remotely exploitable, could lead to persistent denial-of-service to entire cities.
The post LTE, 5G Vulnerabilities Could Cut Entire Cities From Cellular Connectivity appeared first on SecurityWeek.
Cyber Insights 2025: Cybersecurity Regulatory Mayhem
Cybersecurity regulations are facing a tipping point. There are too many and they are too complex to manage – and it’s getting worse.
The post Cyber Insights 2025: Cybersecurity Regulatory Mayhem appeared first on SecurityWeek.
Endor Labs and Allies Launch Opengrep, Reviving True OSS for SAST
Opengrep is a new consortium-backed fork of Semgrep, intended to be and remain a true genuine OSS SAST tool.
The post Endor Labs and Allies Launch Opengrep, Reviving True OSS for SAST appeared first on SecurityWeek.
Building Automation Protocols Increasingly Targeted in OT Attacks: Report
Industrial automation protocols continue to be the most targeted in OT attacks, but building automation systems have been increasingly targeted.
The post Building Automation Protocols Increasingly Targeted in OT Attacks: Report appeared first on SecurityWeek.
Git Vulnerabilities Led to Credentials Exposure
Vulnerabilities in Git’s credential retrieval protocol could have allowed attackers to compromise user credentials.
The post Git Vulnerabilities Led to Credentials Exposure appeared first on SecurityWeek.
Industry Moves for the week of January 27, 2025 - SecurityWeek
Change Healthcare Data Breach Impact Grows to 190 Million Individuals
The impact of the Change Healthcare ransomware-caused data breach has increased from 100 million to 190 million individuals.
The post Change Healthcare Data Breach Impact Grows to 190 Million Individuals appeared first on SecurityWeek.