Security operations firm Arctic Wolf announced on Monday that it has acquired Cylance endpoint security technology from BlackBerry. BlackBerry has agreed to sell Cylance assets to Arctic Wolf for $160 million of cash and roughly 5.5 million Arctic Wolf common shares.  BlackBerry will receive approximately $80 million in cash at closing and roughly $40 million […]

Citrix has issued a fresh warning on password spraying attacks targeting NetScaler and NetScaler Gateway appliances deployed by organizations worldwide. The attacks appear to be related to a broad campaign that was initially detailed in April 2024, targeting VPN and SSH services from Cisco, CheckPoint, Fortinet, SonicWall, and other organizations to brute-force them. Cisco patched […]

More than 300 organizations were hacked by ransomware groups using undocumented vulnerabilities in DrayTek devices, including a potential zero-day flaw, according to a warning from cybersecurity vendor Forescout. In October, Forescout published an advisory documenting 14 security defects in DrayTek Vigor router models potentially impacting hundreds of thousands of devices, many of which had not […]

LKQ Corporation, a major US-based provider of auto parts, informed the SEC late last week that a recent cyberattack caused disruptions at a Canadian business unit. LKQ provides parts for repairing and accessorizing consumer cars and other vehicles. The company has 1,600 locations across two dozen countries, and a total of 45,000 employees.  In an […]

SRP Federal Credit Union is notifying over 240,000 people that their personal information was stolen in a recent cyberattack. According to the credit union, a threat actor had access to its systems from at least September 5, 2024, until November 4, 2024, and “potentially acquired certain files from our network during that time”. After securing […]

A notorious ransomware group has taken credit for the recent attacks exploiting vulnerabilities in file transfer products from enterprise software developer Cleo. The attacks involve vulnerabilities affecting Cleo’s Harmony, VLTrader, and LexiCom file transfer tools. Attacks exploiting the flaws have been seen since December 3.  The vulnerabilities allow unauthenticated attackers to achieve remote code execution. […]

Denmark-based SaaS data protection and backup provider Keepit on Monday announced that it has raised $50 million, which brings the total investment received by the company to $90 million. The latest funding round was led by One Peak and EIFO (Export and Investment Fund of Denmark), and it will be used to accelerate product innovation […]

ConnectOnCall is notifying more than 900,000 individuals that their personal information and medical information was compromised in a data breach earlier this year. A digital, on-call answering solution, ConnectOnCall enables healthcare providers to manage after-hour calls and simplify patient communication and care coordination. The newly disclosed incident, the company says, was discovered on May 12, […]

Vulnerabilities in the Reyee cloud management platform and Reyee OS network appliances could allow threat actors to take over tens of thousands of devices, according to a warning from cybersecurity firm Claroty. Ruijie devices use the MQTT messaging protocol for communication, where devices authenticate to a broker using a username/password pair, where the username is […]

The U.S. has updated a decades-old science and technology agreement with China to reflect their growing rivalry for technological dominance. The new agreement, signed Friday after many months of negotiations, has a narrower scope and additional safeguards to minimize the risk to national security. The State Department said the agreement sustains intellectual property protections, establishes […]