The Akira ransomware group took credit for the Fieldtex Products hack in November, claiming to have stolen 14 Gb of data.

The post Fieldtex Data Breach Impacts 238,000 appeared first on SecurityWeek.

Notepad++ found a vulnerability in the way the software updater authenticates update files. 

The post Notepad++ Patches Updater Flaw After Reports of Traffic Hijacking appeared first on SecurityWeek.

Participants earned rewards at the hacking competition for Grafana, Linux Kernel, Redis, MariaDB, and PostgreSQL vulnerabilities.

The post $320,000 Paid Out at Zeroday.Cloud for Open Source Software Exploits appeared first on SecurityWeek.

Eleven companies took part in the evaluations and several have boasted 100% detection and coverage rates.

The post MITRE Posts Results of 2025 ATT&CK Enterprise Evaluations appeared first on SecurityWeek.

Security firms have seen cryptocurrency miners, Linux backdoors, botnet malware, and various post-exploitation implants in React2Shell attacks.

The post Wide Range of Malware Delivered in React2Shell Attacks appeared first on SecurityWeek.

The Chrome zero-day does not have a CVE and it's unclear who reported it and which browser component it affects.

The post Google Patches Mysterious Chrome Zero-Day Exploited in the Wild appeared first on SecurityWeek.

Over the past decade, overall funding in Israeli cybersecurity companies has increased by more than 500%, according to YL Ventures. 

The post Israeli Cybersecurity Funding Hits $4.4 Billion Record High appeared first on SecurityWeek.

GeminiJack is a zero-click Gemini attack that could have been exploited using specially crafted emails, calendar invites, or documents.

The post Google Patches Gemini Enterprise Vulnerability Exposing Corporate Data  appeared first on SecurityWeek.

Dozens of vulnerabilities have been patched by the industrial giants across their products.

The post ICS Patch Tuesday: Vulnerabilities Fixed by Siemens, Rockwell, Schneider appeared first on SecurityWeek.

The PCIe flaws, found by Intel employees, can be exploited for information disclosure, escalation of privilege, or DoS.

The post Intel, AMD Processors Affected by PCIe Vulnerabilities appeared first on SecurityWeek.

North Korean threat actors are believed to be behind CVE-2025-55182 exploitation delivering EtherRAT.

The post React2Shell Attacks Linked to North Korean Hackers appeared first on SecurityWeek.

The funding round was led by KKR, with participation from Sixth Street Growth, TenEleven, and Carrick Capital Partners.

The post Identity Security Firm Saviynt Raises $700 Million at $3 Billion Valuation  appeared first on SecurityWeek.

Proofpoint said Hornetsecurity brings in nearly $200 million in annual recurring revenue, with a 20% year-over-year growth rate.

The post Proofpoint Completes $1.8 Billion Acquisition of Hornetsecurity  appeared first on SecurityWeek.

Vitas, the largest for-profit hospice chain in the United States, discovered a cybersecurity intrusion in October.

The post Over 300,000 Individuals Impacted by Vitas Hospice Data Breach appeared first on SecurityWeek.

Tri-Century Eye Care was targeted recently by the Pear ransomware group, which claimed to have stolen over 3 Tb of data. 

The post Tri-Century Eye Care Data Breach Impacts 200,000 Individuals appeared first on SecurityWeek.

An increasing number of threat actors have been attempting to exploit the React vulnerability CVE-2025-55182 in their attacks.

The post Exploitation of React2Shell Surges appeared first on SecurityWeek.

The critical React vulnerability has been exploited in the wild by Chinese and other threat actors.

The post Cloudflare Outage Caused by React2Shell Mitigations appeared first on SecurityWeek.

Cloudflare recently mitigated a new record-breaking Aisuru attack that peaked at 14.1 Bpps.

The post Aisuru Botnet Powers Record DDoS Attack Peaking at 29 Tbps appeared first on SecurityWeek.

AWS has seen multiple China-linked threat groups attempting to exploit the React vulnerability CVE-2025-55182.

The post Chinese Hackers Exploiting React2Shell Vulnerability appeared first on SecurityWeek.

Significant cybersecurity M&A deals announced by Arctic Wolf, Bugcrowd, Huntress, Palo Alto Networks, and Zscaler.

The post Cybersecurity M&A Roundup: 30 Deals Announced in November 2025 appeared first on SecurityWeek.