Chicago-based Infrastructure-as-Code (IaC) startup oak9 has attracted new interest from venture capitalists with Cisco Investments and Morgan Stanley’s Next Level Fund joining a new $8 million funding round.
read more
Tag: Endpoint Security
Global Security News, Vulnerabilities
North Korea Lazarus Hackers Blamed for $100 Million Horizon Bridge Heist
by Ryan Naraine •
The infamous North Korean Lazarus hacking group is the prime suspect in the $100 million hack of Harmony’s Horizon Bridge, according to new data and research from blockchain analytics firm Elliptic.
read more
Global Security News, Vulnerabilities
Normalyze Announces $22 Million for DSPM Technology
by Ryan Naraine •
Bay Area startup Normalyze on Monday announced a $22 million in Series A funding as venture capital investors rush to place bets on the newly coined Data Security Posture Management (DSPM) space.
read more
Global Security News, Vulnerabilities
Cyolo Banks $60M Series B for ZTNA Technology
by Ryan Naraine •
Cyolo, an Israeli startup building technology for zero trust networking, on Monday announced a new $60 million investment led by the venture investing arm of National Grid.
In addition to National Grid Partners, Cyolo said it scored investments from Gl…
Global Security News
NIST Releases New macOS Security Guidance for Organizations
by Ionut Arghire •
The National Institute of Standards and Technology (NIST) has published the final version of its guidance on securing macOS endpoints and assessing their security.
read more
Global Security News, Vulnerabilities
CrowdStrike: Ransomware Actor Caught Exploiting Mitel VOIP Zero-Day
by Ryan Naraine •
Security researchers at CrowdStrike have stumbled upon ransomware actors deploying zero-day exploits against Mitel VOIP appliances sitting on the network perimeter.
read more
Global Security News
US, UK, New Zealand Issue PowerShell Security Guidance
by Ionut Arghire •
The US Cybersecurity and Infrastructure Security Agency (CISA), the National Security Agency (NSA), and the National Cyber Security Centres in New Zealand (NZ NCSC) and the United Kingdom (NCSC-UK) have issued joint guidance on the proper configuration…
Global Security News, Vulnerabilities
Top Cryptographers Flag ‘Devastating’ Flaws in MEGA Cloud Storage
by Ryan Naraine •
Cryptographers at Swiss university ETH Zurich have found at least five exploitable security flaws in the privacy-themed MEGA cloud storage service and warned that the issues could lead to “devastating attacks on the confidentiality and integrity of use…
Global Security News, Vulnerabilities
Aqua Security Ships Open-Source Tool for Auditing Software Supply Chain
by Ryan Naraine •
Cloud security startup Aqua Security has partnered with the Center for Internet Security (CIS) to create guidelines for software supply chain security and followed up by shipping an open-source auditing tool to ensure compliance with the new benchmark….
Global Security News
Adobe Acrobat Reader Shuns Security Products Due to Compatibility Issues
by Ionut Arghire •
Adobe Acrobat Reader blocks certain antimalware solutions from injecting their DLLs into its processes, essentially denying them visibility and creating security risks, ransomware prevention company Minerva Labs reports.
read more
Global Security News, Vulnerabilities
RevealSecurity Raises $23M for Application Detection and Response
by Ryan Naraine •
RevealSecurity, an Israeli data security startup building technology to thwart malicious insider threats, on Tuesday announced the closing of a $23 million funding round led by SYN Ventures.
In addition to SYN Ventures, Hanaco Ventures, SilverTech Vent…
Global Security News, Vulnerabilities
‘MaliBot’ Android Malware Steals Financial, Personal Information
by Ionut Arghire •
Researchers at F5 Labs have nabbed a new Android malware family capable of exfiltrating financial and personal information after taking control of infected devices.
read more
Global Security News, Vulnerabilities
Volexity Blames ‘DriftingCloud’ APT For Sophos Firewall Zero-Day
by Ryan Naraine •
Big-game malware hunters at Volexity are shining the spotlight on a sophisticated Chinese APT caught recently exploiting a Sophos firewall zero-day to plant backdoors and launch man-in-the-middle attacks.
read more
Global Security News, Vulnerabilities
GreyNoise Attracts Major Investor Interest
by Ryan Naraine •
GreyNoise Intelligence, a startup competing in the crowded threat-intelligence space, has deposited $15 million in a new round of venture capital funding led by Radian Capital.
read more
Global Security News, Vulnerabilities
GreyNoise Attracts Major Investor Interest
by Ryan Naraine •
GreyNoise Intelligence, a startup competing in the crowded threat-intelligence space, has deposited $15 million in a new round of venture capital funding led by Radian Capital.
read more
Global Security News, Vulnerabilities
Jit Banks Massive $38.5 Seed Round Funding
by Ryan Naraine •
Jit, an Israeli startup promising technology to help developers simplify security when deploying cloud apps, has banked an eye-opening $38.5 million in seed-stage funding.
The funding round was Boldstart Ventures. Venture capital outfit Insight Partner…
Global Security News, Vulnerabilities
New ‘Hertzbleed’ Remote Side-Channel Attack Affects Intel, AMD Processors
by Eduard Kovacs •
A team of academic researchers has identified a new side-channel method that can allow hackers to remotely extract sensitive information from a targeted system through a CPU timing attack.
read more
Global Security News, Vulnerabilities
Adobe Plugs 46 Security Flaws on Patch Tuesday
by Ryan Naraine •
Adobe’s security response team has pushed out a massive batch of patches to cover at least 46 vulnerabilities in a wide range of enterprise-facing software products.
As part of its scheduled Patch Tuesday release for June, Adobe warned of “critical” co…
Global Security News, Vulnerabilities
Report: L3 Emerges as Suitor for Embattled NSO Group
by Ryan Naraine •
L3 Technologies, a U.S. government contractor that sells aerospace and defense technology, has emerged as a suitor for Israeli exploit merchant NSO Group.
read more
Global Security News, Vulnerabilities
Avast: New Linux Rootkit and Backdoor Align Perfectly
by Ionut Arghire •
Malware hunters at Avast have analyzed a newly discovered rootkit and backdoor that target Linux and appear designed to function in synergy with each other.
read more
Global Security News, Vulnerabilities
Avast: New Linux Rootkit and Backdoor Align Perfectly
by Ionut Arghire •
Malware hunters at Avast have analyzed a newly discovered rootkit and backdoor that target Linux and appear designed to function in synergy with each other.
read more
Global Security News, Vulnerabilities
Drupal Patches ‘High-Risk’ Third-Party Library Flaws
by Ryan Naraine •
The Drupal security team has released a “moderately critical” advisory to call attention to serious vulnerabilities in a third-party library and warned that hackers can exploit the bugs to remotely hijack Drupal-powered websites.
read more
Global Security News, Vulnerabilities
HYCU Raises $53 Million for Data Backup Technology
by Ionut Arghire •
Backup-as-a-service firm HYCU has raised $53 million in a Series B funding round that brings the total invested in the company to $140.5 million.
The new funding round was led by Acrew Capital, with participation from all previous investors, along with…
Global Security News, Vulnerabilities
Academics Devise New Speculative Execution Attack Against Apple M1 Chips
by Ionut Arghire •
A group of academic researchers has devised a new hardware attack that bypasses pointer authentication protections on Apple’s M1 processor.
read more
Global Security News, North America
Microsoft helps prevent lateral movement from compromised unmanaged devices
by Zeljka Zorz •
A new feature in Microsoft Defender for Endpoint can make it more difficult for attackers to perform lateral movement within company networks, as it allows admins to prevent traffic flowing to and from unmanaged devices that have been compromised. Isol…
Global Security News, Vulnerabilities
Billion-Dollar Valuations Can’t Halt Layoffs at OneTrust, Cybereason
by Ryan Naraine •
Two cybersecurity vendors that recently boasted of raising hundreds of millions of dollars at unicorn valuations have confirmed staff cuts as the turmoil in the capital markets start to wreak havoc on late-stage startups.
read more
Global Security News, Vulnerabilities
IBM to Acquire Randori for Attack Surface Management Tech
by Ryan Naraine •
Technology giant IBM has announced plans to acquire early-stage attack surface management startup Randori in a deal that signals a major expansion of Big Blue’s cybersecurity ambitions.
read more
Global Security News, Vulnerabilities
Critical U-Boot Vulnerability Allows Rooting of Embedded Systems
by Ionut Arghire •
A critical vulnerability in the U-Boot boot loader could be exploited to write arbitrary data, which can allow an attacker to root Linux-based embedded systems, according to NCC Group.
read more
Global Security News, Vulnerabilities
Ten Eleven Ventures Raises $600M Fund for Cybersecurity Investments
by Ryan Naraine •
Ten Eleven Ventures has joined a growing list of cybersecurity-focused venture capital firms raising new funds to invest in startups solving information security problems.
read more
Global Security News
Digital Experience Monitoring: More Important Than Ever
by Torsten George •
With the shift to work-from-anywhere, many organizations have seen an increase in scale of remote work locations that their IT team must support. At the same time, users expect consistent and good quality experiences no matter where they are. Ultimatel…
Global Security News, Vulnerabilities
Chainguard Bags Massive $50M Series A for Supply Chain Security
by Ryan Naraine •
Venture capital powerhouse Sequoia is leading a massive $50 million early-stage investment in Chainguard, a startup created by a team of ex-Google software engineers to “make software supply chain secure by default.”
read more
Global Security News, Vulnerabilities
Report: Clipminer Botnet Operators Rake in $1.7 Million
by Ionut Arghire •
Cybercriminals operating the Clipminer botnet have raked in at least $1.7 million in illicit gains to date, according to an estimate by security researchers at Symantec.
read more
Global Security News, Vulnerabilities
Logging and Security Analytics Firm Devo Banks New $100 Million Investment
by Ryan Naraine •
Devo Technology, a late-stage startup building technology for data logging and security analytics, has closed a new $100 million funding round that pushes its valuation in the $2 billion range.
read more
Global Security News, Vulnerabilities
Leaks Show Conti Ransomware Group Working on Firmware Exploits
by Eduard Kovacs •
The recent Conti leaks show that the notorious ransomware group has been working on firmware exploits targeting the Intel Management Engine (ME) system.
read more
Global Security News, Vulnerabilities
ReliaQuest to Buy Digital Shadows for $160 Million
by Ryan Naraine •
Fresh off a $300 million funding round and a billion-dollar valuation, security operations vendor ReliaQuest on Wednesday announced plans to acquire threat intelligence startup Digital Shadows in a deal valued at $160 million.
read more
Global Security News, Vulnerabilities
Three Nigerian Users of Agent Tesla RAT Arrested
by Ionut Arghire •
Interpol on Monday announced the arrest of three Nigerians accused on using the Agent Tesla remote access trojan (RAT) in financial scams.
read more
Global Security News, Vulnerabilities
Surefire Cyber Tackles Incident Response With $10M Series A Funding
by Ryan Naraine •
Forgepoint Capital, a venture capital firm focused on cybersecurity investments, is pumping $10 million into an early-stage startup created to provide incident response services within the lucrative cyber-insurance ecosystem.
read more
Global Security News, Vulnerabilities
Microsoft Finds Major Security Flaws in Pre-Installed Android Apps
by Ryan Naraine •
Bug hunters at Microsoft are calling attention to several high-severity vulnerabilities in a mobile framework used in pre-installed Android System apps, warning that exploitation could have allowed the implantation of a persistent backdoor on Android d…
Global Security News
Google Announces New Chrome and Chrome OS Security Features for Enterprises
by Eduard Kovacs •
Google on Thursday announced several new security features for enterprises that are using Chrome and Chrome OS.
read more
Global Security News, Vulnerabilities
SYN Ventures Closes $300M Fund for Cybersecurity Bets
by Ryan Naraine •
SYN Ventures, a Florida-based venture capital firm placing early-stage bets in cybersecurity startups, has closed a new $300 million fund and announced the addition of serial entrepreneur Ryan Permeh as full-time operating partner.
read more