Security Week

Subscribe to Security Week feed Security Week
Cybersecurity News, Insights & Analysis
Updated: 18 min 46 sec ago

Serial Entrepreneurs Raise $43M to Counter AI Deepfakes, Social Engineering

10 hours 26 min ago

Adaptive is pitching a security platform designed to replicate real-world attack scenarios through AI-generated deepfake simulations. 

The post Serial Entrepreneurs Raise $43M to Counter AI Deepfakes, Social Engineering appeared first on SecurityWeek.

Categories: SecurityWeek

Vulnerabilities Expose Jan AI Systems to Remote Manipulation

11 hours 4 min ago

Vulnerabilities in open source ChatGPT alternative Jan AI expose systems to remote, unauthenticated manipulation.

The post Vulnerabilities Expose Jan AI Systems to Remote Manipulation appeared first on SecurityWeek.

Categories: SecurityWeek

Cyberhaven Banks $100 Million in Series D, Valuation Hits $1 Billion

11 hours 45 min ago

Cyberhaven bags $100 million in funding at a billion-dollar valuation, a sign that investors remain bullish on data security startups.

The post Cyberhaven Banks $100 Million in Series D, Valuation Hits $1 Billion appeared first on SecurityWeek.

Categories: SecurityWeek

AI Giving Rise of the ‘Zero-Knowledge’ Threat Actor

13 hours 7 min ago

The rise of zero-knowledge threat actors powered by AI marks a turning point in the business of cybercrime where sophisticated attacks are no longer confined to skilled attackers.

The post AI Giving Rise of the ‘Zero-Knowledge’ Threat Actor appeared first on SecurityWeek.

Categories: SecurityWeek

Google DeepMind Unveils Framework to Exploit AI’s Cyber Weaknesses

13 hours 31 min ago

DeepMind found that current AI frameworks are ad hoc, not systematic, and fail to provide defenders with useful insights.

The post Google DeepMind Unveils Framework to Exploit AI’s Cyber Weaknesses appeared first on SecurityWeek.

Categories: SecurityWeek

North Korea’s IT Operatives Are Exploiting Remote Work Globally

13 hours 51 min ago

The global rise of North Korean IT worker infiltration poses a serious cybersecurity risk—using fake identities, remote access, and extortion to compromise organizations.

The post North Korea’s IT Operatives Are Exploiting Remote Work Globally appeared first on SecurityWeek.

Categories: SecurityWeek

ImageRunner Flaw Exposed Sensitive Information in Google Cloud

15 hours 4 min ago

Google has patched a Cloud Run vulnerability dubbed ImageRunner that could have been exploited to gain access to sensitive data.

The post ImageRunner Flaw Exposed Sensitive Information in Google Cloud appeared first on SecurityWeek.

Categories: SecurityWeek

Lazarus Uses ClickFix Tactics in Fake Cryptocurrency Job Attacks

16 hours 28 min ago

North Korea’s Lazarus hackers are using the ClickFix technique for malware deployment in fresh attacks targeting the cryptocurrency ecosystem.

The post Lazarus Uses ClickFix Tactics in Fake Cryptocurrency Job Attacks appeared first on SecurityWeek.

Categories: SecurityWeek

Questions Remain Over Attacks Causing DrayTek Router Reboots

16 hours 44 min ago

DrayTek has shared some clarifications regarding the recent attacks causing router reboots, but some questions remain unanswered. 

The post Questions Remain Over Attacks Causing DrayTek Router Reboots appeared first on SecurityWeek.

Categories: SecurityWeek

Google Brings End-to-End Encrypted Emails to All Enterprise Gmail Users

17 hours 9 min ago

Gmail now allows enterprise users to send end-to-end encrypted emails to colleagues, and will soon allow sending to any inbox.

The post Google Brings End-to-End Encrypted Emails to All Enterprise Gmail Users appeared first on SecurityWeek.

Categories: SecurityWeek

Chrome 135, Firefox 137 Patch High-Severity Vulnerabilities

18 hours 19 min ago

Chrome 135 and Firefox 137 were released on Tuesday with fixes for several high-severity memory safety vulnerabilities.

The post Chrome 135, Firefox 137 Patch High-Severity Vulnerabilities appeared first on SecurityWeek.

Categories: SecurityWeek

Microsoft Using AI to Uncover Critical Bootloader Vulnerabilities

Tue, 04/01/2025 - 5:38pm

Using the Security Copilot tool, Microsoft discovered 20 critical vulnerabilities in widely deployed open-source bootloaders.

The post Microsoft Using AI to Uncover Critical Bootloader Vulnerabilities appeared first on SecurityWeek.

Categories: SecurityWeek

Hackers Could Unleash Chaos Through Backdoor in China-Made Robot Dogs

Tue, 04/01/2025 - 3:15pm

An undocumented remote access backdoor in the Unitree Go1 Robot Dog allows remote control over the tunnel network and use of the vision cameras to see through their eyes.

The post Hackers Could Unleash Chaos Through Backdoor in China-Made Robot Dogs appeared first on SecurityWeek.

Categories: SecurityWeek

Hackers Looking for Vulnerable Palo Alto Networks GlobalProtect Portals

Tue, 04/01/2025 - 11:33am

GreyNoise warns of a coordinated effort probing the internet for potentially vulnerable Palo Alto Networks GlobalProtect instances.

The post Hackers Looking for Vulnerable Palo Alto Networks GlobalProtect Portals appeared first on SecurityWeek.

Categories: SecurityWeek

Security Operations Firm ReliaQuest Raises $500M at $3.4B Valuation

Tue, 04/01/2025 - 8:44am

ReliaQuest has announced a new growth funding round that brings the total raised by the firm to over $830 million.

The post Security Operations Firm ReliaQuest Raises $500M at $3.4B Valuation appeared first on SecurityWeek.

Categories: SecurityWeek

Ransomware Group Takes Credit for National Presto Industries Attack

Tue, 04/01/2025 - 8:10am

A ransomware group has claimed responsibility for a March cyberattack on National Presto Industries subsidiary National Defense Corporation.

The post Ransomware Group Takes Credit for National Presto Industries Attack appeared first on SecurityWeek.

Categories: SecurityWeek

Critical Vulnerability Found in Canon Printer Drivers

Tue, 04/01/2025 - 7:50am

Microsoft’s offensive security team warned Canon about a critical code execution vulnerability in printer drivers. 

The post Critical Vulnerability Found in Canon Printer Drivers appeared first on SecurityWeek.

Categories: SecurityWeek

CrushFTP Blames Security Firms for Fast Exploitation of Vulnerability

Tue, 04/01/2025 - 7:15am

Shadowserver has started seeing exploitation attempts aimed at a CrushFTP vulnerability tracked as CVE-2025-2825 and CVE-2025-31161.

The post CrushFTP Blames Security Firms for Fast Exploitation of Vulnerability appeared first on SecurityWeek.

Categories: SecurityWeek

Check Point Responds to Hacking Claims

Tue, 04/01/2025 - 6:50am

Check Point has responded to a hacker’s claims of sensitive data theft, confirming an incident but saying that it had limited impact.

The post Check Point Responds to Hacking Claims appeared first on SecurityWeek.

Categories: SecurityWeek

Apple Patches Recent Zero-Days in Older iPhones

Tue, 04/01/2025 - 6:30am

Apple has released a hefty round of security updates for its desktop and mobile products, patching two recent zero-days in older iPhone models.

The post Apple Patches Recent Zero-Days in Older iPhones appeared first on SecurityWeek.

Categories: SecurityWeek

Pages