Third-party risk management provider Visio Trust has announced raising $7 million in a funding round that brings the total raised by the company to $24 million. The new investment came from Allstate Strategic Ventures, Bain Capital Ventures, Cisco Investments, EnvisionX Capital, Lytical Ventures, Scale Asia Ventures, Sierra Ventures, and Work-Bench. Founded in 2020, the San […]

The North Korean fake IT worker scheme is spread globally, with businesses in China, Russia, and other countries also affected, Microsoft says. Recent reports have shown that hundreds of companies in the US, UK, and Australia have hired fake IT workers from North Korea, who generated millions in revenue for the Pyongyang regime between 2020 […]

UK-based vehicle tracking solutions provider Microlise confirmed last week that data was stolen from its systems during an October cyberattack. Disclosed on October 31, the incident resulted in a large portion of Microlise’s network being disrupted, which impacted tracking systems and panic alarms in the prison vans and courier vehicles of at least two operators, […]

A Russian cyberespionage group was caught entering a targeted organization’s network through a Wi-Fi connection after hacking into the systems of an entity located across the street from the victim. The attack, discovered in 2022, was investigated by cybersecurity firm Volexity, which identified the victim as Organization A. The attack was discovered right before Russia’s […]

Gambling and lottery giant International Game Technology (IGT) has taken certain systems offline after falling victim to a cyberattack over the weekend. The incident, the company says, was discovered on November 17, and has disrupted certain parts of its internal IT network. “An unauthorized third party gained access to certain of its systems, and the […]

SecurityWeek’s cybersecurity news roundup provides a concise compilation of noteworthy stories that might have slipped under the radar. We provide a valuable summary of stories that may not warrant an entire article, but are nonetheless important for a comprehensive understanding of the cybersecurity landscape. Each week, we curate and present a collection of noteworthy developments, […]

The US Department of Justice this week announced the seizure of PopeyeTools, a marketplace for trading stolen credit card information, and charges against three of its administrators. PopeyeTools, DoJ announced, was disrupted after the US legally seized its .com, .co.uk, and .to domains that facilitated access to the marketplace. According to court documents, in or […]

A Russia-linked cyberespionage group has made over 60 victims in Asia and Europe, mainly in the government, human rights, and education sectors, Recorded Future reports. Initially identified in May 2023 and tracked as TAG-110, the threat actor’s activity overlaps that of UAC-0063, which Ukraine’s CERT team has linked to Russian state-sponsored advanced persistent threat (APT) […]

When I ask around about who most consistently exemplifies strength and resilience in our industry, the answer is quite often cybersecurity industry veteran Wendy Nather. While we’ve never worked directly together, I have been so fortunate to cross paths with her often with the many different hats we have both worn in this industry. I’m […]

Hundreds of thousands of internet-accessible hosts are potentially exposed to exploits targeting the top routinely exploited vulnerabilities of 2023, VulnCheck reports. Released last week, the list of 2023’s top exploited vulnerabilities identifies 15 security defects in Apache, Atlassian, Barracuda, Citrix, Cisco, Fortinet, Microsoft, Progress, PaperCut, and Zoho products, and draws attention to 32 other bugs […]