FCC creates national security council to counter cyber threats from China
The Federal Communications Commission (FCC) has established a new Council for National Security to coordinate and strengthen the agency’s efforts against foreign adversaries, with a particular focus...
View ArticleClik here to view.
Cyberangriff legt Aerticket lahm
Der Großhändler für Flugtickets Aerticket ist Opfer eines Hackerangriffs. Das Buchungssystem ist betroffen.Planeiation – Shutterstock.com Die Webseite von Aerticket ist aktuell nicht erreichbar. Der...
View ArticleThousands of open source projects at risk from hack of GitHub Actions tool
App development teams who use a popular utility in the GitHub Actions continuous integration and continuous delivery/deployment (CI/CD) platform need to scrub their code because the tool was...
View ArticleWhite House exempts cyber pros from mass layoffs; Judge reinstates CISA firings
The tide may be turning for US federal cybersecurity professionals who have faced job cuts or the threat thereof at the hand of Elon Musk’s Department of Government Efficiency (DOGE). Last week the US...
View ArticleClik here to view.
5 Top Cybersecurity-Zertifizierungen: So pushen Sie Ihre CISO-Karriere
Lesen Sie, welche Cybersecurity-Zertifizierungen Ihrer Karriere als CISO einen Schub geben. Foto: Elnur – shutterstock.comZertifizierungen in der Cybersicherheit können das vorhandene Fachwissen...
View ArticleNot all cuts are equal: Security budget choices disproportionately impact risk
Inadequate security budgets to support technology upgrades, security training, and business initiatives have a disproportionate impact in making businesses more susceptible to attacks, according to...
View ArticleAttack time frames are shrinking rapidly. Here’s how cyber teams can cope.
Times are tough for cyber pros, quite literally. Two common malware time scale metrics — dwell time and time to exploit — are rapidly shortening, making it harder for defenders to find and neutralize...
View ArticleAlphabet in advanced talks to buy Israel’s Wiz, expanding cloud security reach
Alphabet is in advanced negotiations to acquire Israeli cybersecurity firm Wiz for over $30 billion, a move that could significantly expand its footprint in cloud security and mark its largest...
View ArticleTomcat PUT to active abuse as Apache deals with critical RCE flaw
Apache Software’s open-source web container for handling Java-based web applications, Tomcat, is under active attacks through a critical RCE flaw the company disclosed last week. According to API...
View ArticleClik here to view.
GitHub wird immer mehr zu einem digitalen Minenfeld
Zuerst waren nur einzelne GitHub-Repositories mit Malware infiziert. Mittlerweile geraten auch Entwickler und deren Konten direkt in das Visier von Cyberkriminellen. shutterstock – Stanislavskyi Die...
View ArticleClik here to view.
Hacker legen Verwaltung in Kirkel lahm
Das Rathaus in Kirkel ist aufgrund eines Cyberangriffs geschlossen.www.kirkel.de Wie der Saarländische Rundfunk (SR) berichtet, entdeckte die IT-Abteilung der Gemeindeverwaltung Kirkel am vergangenen...
View ArticleCloudflare expands security portfolio with network-powered posture management
Cloudflare has been steadily expanding its portfolio of security services over the last several years. One thing that has been missing, however, is cloud security posture management (CSPM), which is a...
View ArticleNew research reveals security’s biggest AI challenges – and two potential...
A new survey of security leaders has revealed a stark contrast between AI expectations and realities – while enthusiasm for AI’s potential runs high, teams are grappling with significant challenges in...
View ArticleCritical vulnerability in AMI MegaRAC BMC allows server takeover
Researchers found a critical vulnerability in the AMI MegaRAC baseband management controller (BMC) used by multiple server manufacturers. The vulnerability could allow attackers to bypass...
View ArticleThat breach cost HOW MUCH? How CISOs can talk effectively about a cyber...
In 2017, credit rating agency Equifax suffered a massive data breach, ultimately costing the company over $1.4 billion in legal settlements, regulatory fines, and cybersecurity expenses. That same...
View ArticleGitHub suffers a cascading supply chain attack compromising CI/CD secrets
A sophisticated cascading supply chain attack has compromised multiple GitHub Actions, exposing critical CI/CD secrets across tens of thousands of repositories. The attack, which originally targeted...
View ArticleAbout 22k WAB customers impacted by a zero-day attack on a third-party vendor
Western Alliance Bank (WAB) has disclosed that a data breach at its third-party vendor’s secure file transfer software has compromised personal information for nearly 22,000 customers. In a letter to...
View ArticleClik here to view.
Ransomware-Attacke auf SMC Europa
Der japanische Spezialist für industrielle Automatisierungstechnik SMC ist weltweit in zahlreichen Ländern vertreten – auch in Deutschland. Studio Holger Knauf, Düsseldorf – SMC Deutschland GmbH Der...
View ArticleSpyCloud’s 2025 Identity Exposure Report Reveals the Scale and Hidden Risks...
The average corporate user now has 146 stolen records linked to their identity, an average 12x increase from previous estimates, reflecting a surge in holistic identity exposures. SpyCloud, the...
View ArticleClik here to view.
6 Mittel gegen Security-Tool-Wildwuchs
Viel hilft nicht immer viel. Foto: Roman Samborskyi | shutterstock.comAuf der Suche nach Möglichkeiten, sich vor ständig wachsenden Cyberbedrohungen zu schützen, erliegen nicht wenige Unternehmen...
View Article