HackDig : Dig high-quality web security articles

Google Workspace Now Warns Admins of Sensitive Changes

Google this week announced that new warnings added in the Google Workspace Alert Center will keep administrators notified of critical and sensitive configuration changes.Previously known as G Suite, Google Workspace provides secure collaboration and productivity tools for enterprises of all sizes. Accessible from anywhere in Google Workspace, the Alert Cente
Publish At:2022-06-30 12:03 | Read:169 | Comments:0 | Tags:NEWS & INDUSTRY Incident Response Management & Strat

Cyolo Banks $60M Series B for ZTNA Technology

Cyolo, an Israeli startup building technology for zero trust networking, on Monday announced a new $60 million investment led by the venture investing arm of National Grid.In addition to National Grid Partners, Cyolo said it scored investments from Glilot Capital Partners, Flint Capital, Differential Ventures, and Merlin Ventures. The Series B financing
Publish At:2022-06-28 16:12 | Read:220 | Comments:0 | Tags:Cyberwarfare Endpoint Security Mobile Security Network Secur

Normalyze Announces $22 Million for DSPM Technology

Bay Area startup Normalyze on Monday announced a $22 million in Series A funding as venture capital investors rush to place bets on the newly coined Data Security Posture Management (DSPM) space.Normalyze, based in San Francisco, said the funding round was co-led by Lightspeed Venture Partners and Battery Ventures and brings the total raised to $26.6 million
Publish At:2022-06-28 16:12 | Read:162 | Comments:0 | Tags:Endpoint Security Mobile Security Network Security NEWS &

FTC Takes Action Against CafePress Over Massive Data Breach, Cover-Up

The Federal Trade Commission (FTC) on Friday announced that it has finalized an order against CafePress, requiring it to improve its security posture following a cybersecurity incident that the company attempted to cover up.CafePress is an online retailer of products such as T-shirts, bags, calendars and mugs, which users can customize with their own graphic
Publish At:2022-06-27 12:02 | Read:234 | Comments:0 | Tags:NEWS & INDUSTRY Audits Incident Response Compliance Cybe

Hadrian Raises $11 Million for Offensive Security Platform

Offensive security startup Hadrian today announced that it has received €10.5 million ($11 million) in unsolicited seed funding that brings the total invested in the company to $13.7 million.The investment round was led by HV Capital, with participation from Picus Capital, previous investor Slimmer.AI, and various angel investors.Founded in 2021, the Amsterd
Publish At:2022-06-24 12:02 | Read:224 | Comments:0 | Tags:NEWS & INDUSTRY Incident Response Risk Management Securi

CrowdStrike: Ransomware Actor Caught Exploiting Mitel VOIP Zero-Day

Security researchers at CrowdStrike have stumbled upon ransomware actors deploying zero-day exploits against Mitel VOIP appliances sitting on the network perimeter.The discovery is added confirmation that ransomware criminals are increasingly investing in zero-day exploits for use in data-extortion attacks and that poorly configured network devices present a
Publish At:2022-06-24 12:02 | Read:359 | Comments:0 | Tags:Cyberwarfare Endpoint Security Network Security NEWS & I

MCG Health Faces Lawsuit Over Data Breach Impacting 1.1 Million Individuals

Patient care guidelines provider MCG Health faces a proposed class lawsuit over the compromise of patient information during a March 2022 data breach.A wholly-owned subsidiary of the New York-based Hearst Health network, MCG Health combines artificial intelligence with clinical expertise to help healthcare organizations provide care to their patients.On June
Publish At:2022-06-23 08:04 | Read:367 | Comments:0 | Tags:NEWS & INDUSTRY Incident Response Cybercrime

Aqua Security Ships Open Source Tool for Auditing Software Supply Chain

Cloud security startup Aqua Security has partnered with the Center for Internet Security (CIS) to create guidelines for software supply chain security and followed up by shipping an open-source auditing tool to ensure compliance with the new benchmark.The open-source tool, called Chain-Bench, is described an open source tool for auditing an organization’s so
Publish At:2022-06-22 11:11 | Read:182 | Comments:0 | Tags:Disaster Recovery Endpoint Security Network Security NEWS &a

RevealSecurity Raises $23M for Application Detection and Response

RevealSecurity, an Israeli data security startup building technology to thwart malicious insider threats, on Tuesday announced the closing of a $23 million funding round led by SYN Ventures.In addition to SYN Ventures, Hanaco Ventures, SilverTech Ventures and World Trade Ventures also joined as RevealSecurity investors.The Series A financing provides capital
Publish At:2022-06-21 13:11 | Read:231 | Comments:0 | Tags:Endpoint Security Network Security NEWS & INDUSTRY Priva

Volexity Blames 'DriftingCloud' APT For Sophos Firewall Zero-Day

Big-game malware hunters at Volexity are shining the spotlight on a sophisticated Chinese APT caught recently exploiting a Sophos firewall zero-day to plant backdoors and launch man-in-the-middle attacks.The Sophos firewall vulnerability -- tracked as CVE-2022-1040 -- was patched in March this year but only after Volexity intercepted a sophisticated zero-day
Publish At:2022-06-16 17:09 | Read:367 | Comments:0 | Tags:Cyberwarfare Disaster Recovery Endpoint Security Network Sec

'MaliBot' Android Malware Steals Financial, Personal Information

Researchers at F5 Labs have nabbed a new Android malware family capable of exfiltrating financial and personal information after taking control of infected devices.Dubbed MaliBot, the malware poses as a cryptocurrency mining application, but may also pretend to be a Chrome browser or another app. On nfected devices, the threat focuses on harvesting financial
Publish At:2022-06-16 17:09 | Read:330 | Comments:0 | Tags:Endpoint Security Network Security NEWS & INDUSTRY Appli

Avast: New Linux Rootkit and Backdoor Align Perfectly

Malware hunters at Avast have analyzed a newly discovered rootkit and backdoor that target Linux and appear designed to function in synergy with each other.Dubbed Syslogk, the rootkit is based on Adore-Ng, an older Linux rootkit, but packs new functionality that makes both the user-mode application and the kernel rootkit difficult to detect, Avast warned in
Publish At:2022-06-14 13:11 | Read:316 | Comments:0 | Tags:Cyberwarfare Disaster Recovery Endpoint Security Network Sec

Report: L3 Emerges as Suitor for Embattled NSO Group

L3 Technologies, a U.S. government contractor that sells aerospace and defense technology, has emerged as a suitor for Israeli exploit merchant NSO Group.According to a published report, the New York-based L3 Technologies is the “leading candidate” to acquire NSO Group, the controversial company that has been blacklisted by the U.S. government and sued by mu
Publish At:2022-06-14 13:11 | Read:380 | Comments:0 | Tags:Cyberwarfare Endpoint Security Network Security NEWS & I

Adobe Plugs 46 Security Flaws on Patch Tuesday

Adobe's security response team has pushed out a massive batch of patches to cover at least 46 vulnerabilities in a wide range of enterprise-facing software products.As part of its scheduled Patch Tuesday release for June, Adobe warned of "critical" code execution flaws that expose both Windows and macOS users to malicious hacker attacks.The most serious of t
Publish At:2022-06-14 13:11 | Read:289 | Comments:0 | Tags:Cyberwarfare Endpoint Security Network Security NEWS & I

Drupal Patches 'High-Risk' Third-Party Library Flaws

The Drupal security team has released a "moderately critical" advisory to call attention to serious vulnerabilities in a third-party library and warned that hackers can exploit the bugs to remotely hijack Drupal-powered websites.The vulnerabilities, tracked as CVE-2022-31042 and CVE-2022-31043, were found and fixed in Guzzle, a third-party library that Drupa
Publish At:2022-06-13 17:08 | Read:274 | Comments:0 | Tags:Endpoint Security Network Security NEWS & INDUSTRY Priva


Share high-quality web security related articles with you:)
Tell me why you support me <3