The year 2024 witnessed heightened cybersecurity activity, with security professionals and adversaries locked in a continuous game of cat and mouse. The dynamic nature of cyber threats and the ever-expanding digital attack surface have compelled organizations to refine and bolster their security architectures. Despite hopes for a respite from the relentless tide of phishing, ransomware, […]
Nearly $500 million in cryptocurrency was stolen from more than 332,000 victims in 2024 by means of wallet drainer malware, anti-scam firm Scam Sniffer says. Wallet drainers trick victims into signing malicious transactions, which results in their assets being stolen. Last year, wallet drainer malware caused losses of approximately $494 million, marking a 67% year-over-year […]
A security defect in the Nuclei vulnerability scanner could have allowed threat actors to execute arbitrary code using custom code templates. Relying on simple YAML-based templates, Nuclei is a highly popular vulnerability scanner that can be used with a broad range of assets and which has more than 21,000 stars on GitHub and over 2.1 […]
Thirty-seven cybersecurity-related merger and acquisition (M&A) deals were announced in December 2024. An analysis conducted by SecurityWeek shows that 178 cybersecurity M&A deals were announced in the first half of 2024, representing the least busy half year since SecurityWeek started tracking M&A deals in 2021. Here is a list of the most important cybersecurity M&A […]
Tenable has disabled two Nessus scanner agent versions after discovering that they would go offline when triggering a differential plugin update. Lightweight programs that are installed locally, the Tenable Nessus agents enable organizations to collect information from assets by scanning for vulnerabilities, compliance issues, and other data. On December 31, Tenable announced that it discovered […]
Your car is spying on you. That is one takeaway from the fast, detailed data that Tesla collected on the driver of one of its Cybertrucks that exploded in Las Vegas earlier this week. Privacy data experts say the deep dive by Elon Musk’s company was impressive, but also shines a spotlight on a difficult […]
The US Department of the Treasury’s Office of Foreign Assets Control (OFAC) has announced sanctions against a Chinese technology company for supporting cyberattacks against US critical infrastructure. Based in Beijing, the sanctioned firm, Integrity Technology Group (Integrity Tech), develops and sells cybersecurity products such as network simulation, network security training, and network security competition solutions. […]
French IT services giant Atos said its systems have not been compromised after a ransomware group claimed to have stolen data belonging to the company. A cybercrime group named Space Bears listed Atos on its Tor-based leak website last week, claiming to have obtained a “company database”. Shortly after, Atos issued a statement saying that […]
Cybersecurity giant Tenable announced over the weekend the unexpected passing of its chairman and chief executive officer, Amit Yoran, at the age of 54, after a battle with cancer. Yoran, a cybersecurity industry veteran and a respected member of the community, had served as CEO of Tenable since 2016. Prior to Tenable, Yoran held leadership […]
SecurityWeek’s cybersecurity news roundup provides a concise compilation of noteworthy stories that might have slipped under the radar. We provide a valuable summary of stories that may not warrant an entire article, but are nonetheless important for a comprehensive understanding of the cybersecurity landscape. Each week, we curate and present a collection of noteworthy developments, […]