MITRE Updates List of 25 Most Dangerous Software Vulnerabilities
The MITRE Corporation has updated its Common Weakness Enumeration (CWE) Top 25 Most Dangerous Software Weaknesses list, which reflects the latest trends in the cyber threat landscape. The list provides information on the most common and impactful weaknesses that threat actors exploit in attacks to take over systems, steal sensitive information, and cause disruptions. Cross-site […]
Read More
ICS Security: 145,000 Systems Exposed to Web, Many Industrial Firms Hit by Attacks
Worldwide there are more than 145,000 internet-exposed industrial control systems (ICS), according to internet intelligence platform provider Censys. The company’s latest ‘State of the Internet’ report also reveals that the devices are spread out across 175 countries, with 38% of them located in North America, 35% in Europe and 22% in Asia. In the United […]
Read More
Mexico’s President Says Government Is Investigating Reported Ransomware Hack of Legal Affairs Office
Mexico’s president said Wednesday that the government is investigating an alleged ransomware hack of her administration’s legal affairs office after what appeared to be samples of personal information from a database of government employees were posted online. The website Cybernews said a group called Ransomhub had posted a sample of apparently hacked government files on […]
Read More
Financial Software Firm Finastra Investigating Data Breach
UK fintech giant Finastra is investigating a data breach after a hacker offered for sale on an underground forum data allegedly stolen from the company. Roughly two weeks ago, the financial software firm notified its customers of suspicious activity on an internal file-transfer application used to exchange data with certain customers. “We immediately launched an […]
Read More
US Charges Five Alleged Scattered Spider Members
The US Department of Justice on Wednesday announced charges against five individuals for their alleged roles in phishing attacks resulting in credential, data, and cryptocurrency theft. According to the indictment, from at least September 2021 to April 2023, the suspects sent phishing text messages to employees at numerous companies, posing as the employing organization or […]
Read More
AI – Implementing the Right Technology for the Right Use Case
If 2023 and 2024 were the years of exploration, hype and excitement around AI, 2025 (and 2026) will be the year(s) that organizations start to focus on specific use cases for the most productive implementations of AI and, more importantly, to understand how to implement guardrails and governance so that it is viewed as less […]
Read More
US Gathers Allies to Talk AI Safety as Trump’s Vow to Undo Biden’s AI Policy Overshadows Their Work
President-elect Donald Trump has vowed to repeal President Joe Biden’s signature artificial intelligence policy when he returns to the White House for a second term. What that actually means for the future of AI technology remains to be seen. Among those who could use some clarity are the government scientists and AI experts from multiple […]
Read More
Risk Intelligence Startup RIIG Raises $3 Million
Riggleman Information & Intelligence Group (RIIG), an early stage risk intelligence and security startup, has raised $3 million in a seed funding round led by Felton Group. The Charlottesville, Virginia-based company is building open source intelligence products for Zero Trust architectures to help organizations improve their security and risk management. With access to data intelligence […]
Read More
Twine Snags $12M for AI-Powered ‘Digital Employees’ Tech
Twine, an Israeli security startup co-founded by Claroty veteran Benny Porat, emerged from stealth Wednesday with $12 million in seed capital to build AI-powered technology to address the cybersecurity skills shortage. The Tel Aviv company said the funding round was co-led by Ten Eleven Ventures and Dell Technologies Capital, with investments from prominent angel investors, […]
Read More
Surf Security Adds Deepfake Detection Tool to Enterprise Browser
London-based startup Surf Security on Wednesday announced the launch of a deepfake detection tool that is integrated into its enterprise web browser. Surf’s Enterprise Zero-Trust Browser is a security-focused browser that provides data leakage prevention, download protection, anti-social engineering, and access control capabilities. The latest addition to the browser — currently available in beta — […]
Read More