The e-commerce and logistics company was targeted by the RansomHouse ransomware group in October. 

The post 700,000 Records Compromised in Askul Ransomware Attack appeared first on SecurityWeek.

After years of exploiting zero-day and n-day vulnerabilities, Russian state-sponsored threat actors are shifting to misconfigured devices.

The post Amazon: Russian Hackers Now Favor Misconfigurations in Critical Infrastructure Attacks appeared first on SecurityWeek.

SoundCloud said the information of 20% of users was accessed by hackers who breached its systems.

The post User Data Compromised in SoundCloud Hack  appeared first on SecurityWeek.

Google has also mentioned seeing React2Shell attacks conducted by Iranian threat actors.

The post Google Sees 5 Chinese Groups Exploiting React2Shell for Malware Delivery appeared first on SecurityWeek.

Apple has released macOS and iOS updates to patch two WebKit zero-days exploited in an “extremely sophisticated” attack.

The post Apple Patches Two Zero-Days Tied to Mysterious Exploited Chrome Flaw appeared first on SecurityWeek.

The Akira ransomware group took credit for the Fieldtex Products hack in November, claiming to have stolen 14 Gb of data.

The post Fieldtex Data Breach Impacts 238,000 appeared first on SecurityWeek.

Notepad++ found a vulnerability in the way the software updater authenticates update files. 

The post Notepad++ Patches Updater Flaw After Reports of Traffic Hijacking appeared first on SecurityWeek.

Participants earned rewards at the hacking competition for Grafana, Linux Kernel, Redis, MariaDB, and PostgreSQL vulnerabilities.

The post $320,000 Paid Out at Zeroday.Cloud for Open Source Software Exploits appeared first on SecurityWeek.

Eleven companies took part in the evaluations and several have boasted 100% detection and coverage rates.

The post MITRE Posts Results of 2025 ATT&CK Enterprise Evaluations appeared first on SecurityWeek.

Security firms have seen cryptocurrency miners, Linux backdoors, botnet malware, and various post-exploitation implants in React2Shell attacks.

The post Wide Range of Malware Delivered in React2Shell Attacks appeared first on SecurityWeek.

The Chrome zero-day does not have a CVE and it's unclear who reported it and which browser component it affects.

The post Google Patches Mysterious Chrome Zero-Day Exploited in the Wild appeared first on SecurityWeek.

Over the past decade, overall funding in Israeli cybersecurity companies has increased by more than 500%, according to YL Ventures. 

The post Israeli Cybersecurity Funding Hits $4.4 Billion Record High appeared first on SecurityWeek.

GeminiJack is a zero-click Gemini attack that could have been exploited using specially crafted emails, calendar invites, or documents.

The post Google Patches Gemini Enterprise Vulnerability Exposing Corporate Data  appeared first on SecurityWeek.

Dozens of vulnerabilities have been patched by the industrial giants across their products.

The post ICS Patch Tuesday: Vulnerabilities Fixed by Siemens, Rockwell, Schneider appeared first on SecurityWeek.

The PCIe flaws, found by Intel employees, can be exploited for information disclosure, escalation of privilege, or DoS.

The post Intel, AMD Processors Affected by PCIe Vulnerabilities appeared first on SecurityWeek.

North Korean threat actors are believed to be behind CVE-2025-55182 exploitation delivering EtherRAT.

The post React2Shell Attacks Linked to North Korean Hackers appeared first on SecurityWeek.

The funding round was led by KKR, with participation from Sixth Street Growth, TenEleven, and Carrick Capital Partners.

The post Identity Security Firm Saviynt Raises $700 Million at $3 Billion Valuation  appeared first on SecurityWeek.

Proofpoint said Hornetsecurity brings in nearly $200 million in annual recurring revenue, with a 20% year-over-year growth rate.

The post Proofpoint Completes $1.8 Billion Acquisition of Hornetsecurity  appeared first on SecurityWeek.

Vitas, the largest for-profit hospice chain in the United States, discovered a cybersecurity intrusion in October.

The post Over 300,000 Individuals Impacted by Vitas Hospice Data Breach appeared first on SecurityWeek.

Tri-Century Eye Care was targeted recently by the Pear ransomware group, which claimed to have stolen over 3 Tb of data. 

The post Tri-Century Eye Care Data Breach Impacts 200,000 Individuals appeared first on SecurityWeek.