SGNL snags $30M for a new take on ID security based on zero-standing privileges

/in

Security experts often describe identity as the “new perimeter” in the world of security: in the world of cloud services where network assets and apps can range far and wide, the biggest vulnerabilities are often leaked and spoofed log-in credentials.  A startup called SGNL has built a new approach that it believes is better at […]

© 2024 TechCrunch. All rights reserved. For personal use only.

Security News | TechCrunch – ​Read More

Researchers Find New Exploit Bypassing Patched NVIDIA Container Toolkit Vulnerability

/in

Cybersecurity researchers have discovered a bypass for a now-patched security vulnerability in the NVIDIA Container Toolkit that could be exploited to break out of a container’s isolation protections and gain complete access to the underlying host.
The new vulnerability is being tracked as CVE-2025-23359 (CVSS score: 8.3). It affects the following versions –

NVIDIA Container Toolkit (All

The Hacker News – ​Read More

Is AI a Friend or Foe of Healthcare Security?

/in

When it comes to keeping patient information safe, people empowerment is just as necessary as deploying new technologies.

darkreading – ​Read More

Ivanti, Fortinet Patch Remote Code Execution Vulnerabilities

/in

Ivanti and Fortinet on Tuesday released patches for multiple critical- and high-severity vulnerabilities in their products.

The post Ivanti, Fortinet Patch Remote Code Execution Vulnerabilities appeared first on SecurityWeek.

SecurityWeek – ​Read More

Apple Confirms ‘Extremely Sophisticated’ Exploit Threatening iOS Security

/in

Apple fixes the USB Restricted Mode flaw in iOS 18.3.1 and iPadOS 18.3.1.  Vulnerability exploited in targeted attacks.…

Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – ​Read More

Drata to Acquire SafeBase in $250 Million Deal

/in

Security and compliance automation firm Drata has acquired trust center platform SafeBase in a quarter billion dollar deal.

The post Drata to Acquire SafeBase in $250 Million Deal appeared first on SecurityWeek.

SecurityWeek – ​Read More

What Is GRC? Understanding Governance, Risk, and Compliance

/in

Find out what GRC stands for, its history, and where it can be used today.

Security | TechRepublic – ​Read More

GAO Tells Coast Guard to Improve Cybersecurity of Maritime Transportation System

/in

A new GAO report assesses that the Coast Guard needs to improve Maritime Transportation System (MTS) cybersecurity.

The post GAO Tells Coast Guard to Improve Cybersecurity of Maritime Transportation System appeared first on SecurityWeek.

SecurityWeek – ​Read More

North Korean Hackers Exploit PowerShell Trick to Hijack Devices in New Cyberattack

/in

The North Korea-linked threat actor known as Kimsuky has been observed using a new tactic that involves deceiving targets into running PowerShell as an administrator and then instructing them to paste and run malicious code provided by them.
“To execute this tactic, the threat actor masquerades as a South Korean government official and over time builds rapport with a target before sending a

The Hacker News – ​Read More

Cisco Says Ransomware Group’s Leak Related to Old Hack

/in

A fresh post on the Kraken ransomware group’s leak website refers to data stolen in a 2022 cyberattack, Cisco says.

The post Cisco Says Ransomware Group’s Leak Related to Old Hack appeared first on SecurityWeek.

SecurityWeek – ​Read More