Netskope has an annual recurring revenue of more than $707 million, but it’s still not profitable, reporting a net loss of $170 million in H1. The post SASE Company Netskope Files for IPO appeared first on SecurityWeek.
The Arch Linux Project has been targeted in a DDoS attack that disrupted its website, repository, and forums. The post Arch Linux Project Responding to Week-Long DDoS Attack appeared first on SecurityWeek.
The advanced persistent threat (APT) actor known as Transparent Tribe has been observed targeting both Windows and BOSS (Bharat Operating System Solutions) Linux systems with malicious Desktop shortcut files in attacks targeting Indian Government entities. “Initial access is achieved through spear-phishing emails,” CYFIRMA said. “Linux BOSS environments are targeted viaRead More »Transparent Tribe Targets Indian Govt With Weaponized Desktop Shortcuts via Phishing
Farmers New World Life Insurance and Farmers Group have filed separate data breach notifications with state authorities. The post Farmers Insurance Data Breach Impacts Over 1 Million People appeared first on SecurityWeek.
Agentic AI, while performing routine tasks such as shopping online, could be tricked into carrying out certain actions.
Cybersecurity researchers have discovered a malicious Go module that presents itself as a brute-force tool for SSH but actually contains functionality to discreetly exfiltrate credentials to its creator. “On the first successful login, the package sends the target IP address, username, and password to a hard-coded Telegram bot controlled byRead More »Malicious Go Module Poses as SSH Brute-Force Tool, Steals Credentials via Telegram Bot
Cybersecurity researchers are calling attention to multiple campaigns that leverage known security vulnerabilities and expose Redis servers to various malicious activities, including leveraging the compromised devices as IoT botnets, residential proxies, or cryptocurrency mining infrastructure. The first set of attacks entails the exploitation of CVE-2024-36401 (CVSS score: 9.8), a critical
Nice short article on the bobtail squid. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Blog moderation policy.
This academic year, I am taking a sabbatical from the Kennedy School and Harvard University. (It’s not a real sabbatical—I’m just an adjunct—but it’s the same idea.) I will be spending the Fall 2025 and Spring 2026 semesters at the Munk School at the University of Toronto. I will beRead More »I’m Spending the Year at the Munk School
A Russia-sponsored campaign is targeting end-of-life devices via a seven-year-old vulnerability.
