Tiffany and Company is notifying customers in the United States and Canada that their personal information was stolen by hackers.| SecurityWeek
This online event is expected to attract more than 2,500 attendee registrations from around the world. The post Call for Presentations Open for 2025 CISO Forum Virtual Summit appeared first on SecurityWeek.| SecurityWeek
Researchers found more methods for tricking an AI assistant into aiding sensitive data theft. The post Google Patches Gemini AI Hacks Involving Poisoned Logs, Search Results appeared first on SecurityWeek.| SecurityWeek
Mondoo has raised more than $32 million in total, with the latest funding round led by HV Capital. The post Mondoo Raises $17.5 Million for Vulnerability Management Platform appeared first on SecurityWeek.| SecurityWeek
Flynn has been DeepMind’s VP of security since May 2024. Before then he had been a CISO with Amazon, CISO at Uber, and director of information security at Facebook. The post CISO Conversations: John ‘Four’ Flynn, VP of Security at Google DeepMind appeared first on SecurityWeek.| SecurityWeek
Agencies in several countries have created guidance titled ‘Creating and Maintaining a Definitive View of Your OT Architecture’. The post New Guidance Calls on OT Operators to Create Continually Updated System Inventory appeared first on SecurityWeek.| SecurityWeek
The Transparency in Frontier Artificial Intelligence Act (TFAIA) requires AI companies to implement and disclose publicly safety protocols to prevent their most advanced models from being used to cause major harm. The post California Gov. Gavin Newsom Signs Bill Creating AI Safety Measures appeared first on SecurityWeek.| SecurityWeek
The flaws could allow attackers to escalate privileges, manipulate notifications, and enumerate usernames. The post High-Severity Vulnerabilities Patched in VMware Aria Operations, NSX, vCenter appeared first on SecurityWeek.| SecurityWeek
Webinar: How do you embrace AI’s potential while defending against its threats? The post Webinar Today: AI and the Trust Dilemma: Balancing Innovation and Risk appeared first on SecurityWeek.| SecurityWeek
The vulnerability could lead to a denial-of-service condition or memory corruption when a malicious font is processed. The post Apple Updates iOS and macOS to Prevent Malicious Font Attacks appeared first on SecurityWeek.| SecurityWeek
Japanese brewing giant Asahi Group Holdings announced that its operations in the country have been disrupted by a cyberattack.| SecurityWeek
New report outlines the Top 25 MCP vulnerabilities and how attackers could exploit AI agents, plus strategies for defense.| SecurityWeek
SolarWinds announced a hotfix for RCE vulnerability in Web Help Desk, and this is the third time it attempts to address the issue.| SecurityWeek
L1TF Reloaded is a vulnerability combining the old L1TF and half-Spectre hardware flaws to bypass deployed software mitigations.| SecurityWeek
Supermicro has patched two BMC vulnerabilities that can be exploited to perform malicious firmware updates on impacted devices.| SecurityWeek
Libraesva has addressed a vulnerability in its integrated email security platform that has been exploited in the wild.| SecurityWeek
British automobile manufacturer Jaguar Land Rover (JLR) is scrambling to restore applications and operations that were impacted by a cyberattack.| SecurityWeek
Several ICS giants published new security advisories this Patch Tuesday, including Rockwell, Siemens, Schneider, and Phoenix Contact.| SecurityWeek
Threat actors are exploiting a critical-severity vulnerability in DELMIA Apriso factory software, CISA warns.| SecurityWeek
Rockwell Automation has published several advisories describing critical and high-severity vulnerabilities affecting its products.| SecurityWeek
HMI products made by Novakon are affected by serious vulnerabilities, and the vendor does not appear to have released any patches.| SecurityWeek
At least two ransomware groups exploited the Windows zero-day CVE-2025-29824 before it was patched by Microsoft.| SecurityWeek
Fortinet patches critical vulnerabilities, including a zero-day that has been exploited in the wild since at least November 2024.| SecurityWeek
Hackers have leaked 15,000 Fortinet firewall configurations, which were apparently obtained as a result of exploitation of CVE-2022–40684.| SecurityWeek
Israeli company Irregular, previously known as Pattern Labs, on Wednesday announced raising $80 million for its AI security lab.| SecurityWeek
The vulnerability (CVE-2025-55177) was exploited along an iOS/macOS zero-day in suspected spyware attacks.| SecurityWeek
Payment solutions company KioSoft took a long time to address a serious vulnerability affecting some of its NFC-based cards.| SecurityWeek
Threat actors injected malicious code into multiple popular NPM packages after their maintainers fell for a well-crafted phishing email.| SecurityWeek
Researchers have earned significant rewards from Google for reporting two serious vulnerabilities found in the Chrome web browser.| SecurityWeek
Apple has rolled out iOS and macOS updates that resolve a zero-day vulnerability exploited in highly targeted attacks.| SecurityWeek
Apple has announced major mobile and desktop platform releases and addressed an exploited bug in older platforms.| SecurityWeek
South Dakota Gov. Kristi Noem says her personal cell phone was hacked and linked it to the release of documents by the January 6 committee.| SecurityWeek
The small Swiss town of Rolle acknowledged that it had underestimated the severity of a cyberattack, following reports the personal data of the entire population was exposed online| SecurityWeek
A massive hoard of internal chats has been leaked from Black Basta, rivalling the Conti leaks of late February 2022.| SecurityWeek
Cornwell Quality Tools has informed authorities that a data breach discovered late last year impacts more than 100,000 people.| SecurityWeek
Fairmont Federal Credit Union notifying 187,000 individuals that their personal and financial information was stolen in a 2023 data breach.| SecurityWeek
Samsung’s September 2025 security updates for Android devices include a patch for a vulnerability that has been exploited in the wild.| SecurityWeek
British train operator LNER (London North Eastern Railway) has disclosed a data breach impacting customer information.| SecurityWeek
SecurityWeek provides cybersecurity news and information to global enterprises, with expert insights & analysis for IT security professionals| SecurityWeek
Wireless carrier Cellcom has confirmed that a week-long widespread service outage is the result of a cyberattack.| SecurityWeek