Vulnerabilities Expose mySCADA myPRO Systems to Remote Hacking
The myPRO product of Czech industrial automation company mySCADA is affected by several critical vulnerabilities, including ones that can allow a remote, unauthenticated attacker to take complete control of the targeted system. myPRO is a human-machine interface (HMI) and supervisory control and data acquisition (SCADA) system designed for visualizing and controlling industrial processes. The product […]
Read More
Halcyon Raises $100 Million at $1 Billion Valuation
Cybersecurity firm Halcyon has closed a $100 million Series C funding round to fuel growth and support its mission to combat ransomware. This latest funding round brings the total amount raised by the Austin, Texas-based company to $190 million, including a $50 million Series A in April 2023 and a $40 million Series B in December […]
Read More
Visio Trust Raises $7 Million for Third-Party Risk Management Platform
Third-party risk management provider Visio Trust has announced raising $7 million in a funding round that brings the total raised by the company to $24 million. The new investment came from Allstate Strategic Ventures, Bain Capital Ventures, Cisco Investments, EnvisionX Capital, Lytical Ventures, Scale Asia Ventures, Sierra Ventures, and Work-Bench. Founded in 2020, the San […]
Read More
North Korea Deploying Fake IT Workers in China, Russia, Other Countries
The North Korean fake IT worker scheme is spread globally, with businesses in China, Russia, and other countries also affected, Microsoft says. Recent reports have shown that hundreds of companies in the US, UK, and Australia have hired fake IT workers from North Korea, who generated millions in revenue for the Pyongyang regime between 2020 […]
Read More
Microlise Confirms Data Breach as Ransomware Group Steps Forward
UK-based vehicle tracking solutions provider Microlise confirmed last week that data was stolen from its systems during an October cyberattack. Disclosed on October 31, the incident resulted in a large portion of Microlise’s network being disrupted, which impacted tracking systems and panic alarms in the prison vans and courier vehicles of at least two operators, […]
Read More
Russian Cyberspies Hacked Building Across Street From Target for Wi-Fi Attack
A Russian cyberespionage group was caught entering a targeted organization’s network through a Wi-Fi connection after hacking into the systems of an entity located across the street from the victim. The attack, discovered in 2022, was investigated by cybersecurity firm Volexity, which identified the victim as Organization A. The attack was discovered right before Russia’s […]
Read More
Cyberattack Disrupts Systems of Gambling Giant IGT
Gambling and lottery giant International Game Technology (IGT) has taken certain systems offline after falling victim to a cyberattack over the weekend. The incident, the company says, was discovered on November 17, and has disrupted certain parts of its internal IT network. “An unauthorized third party gained access to certain of its systems, and the […]
Read More
In Other News: Nvidia Fixes Critical Flaw, Chinese Linux Backdoor, New Details in WhatsApp-NSO Lawsuit
SecurityWeek’s cybersecurity news roundup provides a concise compilation of noteworthy stories that might have slipped under the radar. We provide a valuable summary of stories that may not warrant an entire article, but are nonetheless important for a comprehensive understanding of the cybersecurity landscape. Each week, we curate and present a collection of noteworthy developments, […]
Read More
US Takes Down Stolen Credit Card Marketplace PopeyeTools
The US Department of Justice this week announced the seizure of PopeyeTools, a marketplace for trading stolen credit card information, and charges against three of its administrators. PopeyeTools, DoJ announced, was disrupted after the US legally seized its .com, .co.uk, and .to domains that facilitated access to the marketplace. According to court documents, in or […]
Read More
Russian Cyberespionage Group Hit 60 Victims in Asia, Europe
A Russia-linked cyberespionage group has made over 60 victims in Asia and Europe, mainly in the government, human rights, and education sectors, Recorded Future reports. Initially identified in May 2023 and tracked as TAG-110, the threat actor’s activity overlaps that of UAC-0063, which Ukraine’s CERT team has linked to Russian state-sponsored advanced persistent threat (APT) […]
Read More