SecurityWeek

Substack Discloses Security Incident After Hacker Leaks Data

The hacker claims to have stolen nearly 700,000 Substack user records, including email addresses and phone numbers.
SecurityWeek

Nullify Secures $12.5 Million in Seed Funding for Cybersecurity AI Workforce

Cybersecurity startup Nullify announced raising $12.5 million in seed funding to advance its AI workforce designed for ...
SecurityWeek

Italy Averted Russian-Linked Cyberattacks Targeting Winter Olympics Websites, Foreign ...

Italy has foiled a series of Russian cyberattacks targeting foreign ministry offices and Winter Olympics websites.
SecurityWeek

Researchers Expose Network of 150 Cloned Law Firm Websites in AI-Powered Scam Campaign

Sygnia uncovers a massive network of 150+ cloned legal websites using AI-driven infrastructure to scale "recovery scams." ...
SecurityWeek

SystemBC Infects 10,000 Devices After Defying Law Enforcement Takedown

The SystemBC botnet has infected at least 10,000 systems, abusing them to proxy traffic and deploy additional payloads.
SecurityWeek

VS Code Configs Expose GitHub Codespaces to Attacks

Attackers can abuse VS Code configuration files for RCE when a GitHub Codespaces user opens a repository or pull request.
SecurityWeek

Cyberspy Group Hacked Governments and Critical Infrastructure in 37 Countries

A state-sponsored cyberespionage group has hacked into the systems of government and critical infrastructure organizations in ...
SecurityWeek

Cisco, F5 Patch High-Severity Vulnerabilities

Cisco and F5 have patched multiple vulnerabilities, including high-severity bugs leading to DoS conditions and command ...
SecurityWeek

Critical N8n Sandbox Escape Could Lead to Server Compromise

A critical n8n flaw could allow attackers to use crafted expressions in workflows to execute arbitrary commands on the host.