Twitter API bug leaked private data to other accounts
A bug in Twitter’s account activity API inadvertently leaked sensitive data to other developers, including direct messages and protected tweets, Twitter announced on Friday.
Wyden: Tech company has told multiple senators of foreign hacking attempts
A major tech company has informed “a number of senators and Senate staff members” that hackers have targeted their personal email accounts, according to Sen. Ron Wyden.
Sen. Rubio wants answers from Apple on privacy-violating app
On Wednesday, Sen. Marco Rubio, R-Fla., wrote to Apple demanding answers on why it reportedly took the tech giant weeks to address security issues in a popular app.
NSS Labs files antitrust suit against multiple cybersecurity vendors
The company alleges that CrowdStrike, Symantec and ESET as well as the Anti-Malware Testing Standards Organization conspired to restrict testing of products.
Magecart strikes again, this time at electronics retailer Newegg
Chinese-speaking cybercrime group launches destructive malware family
Iron, also known as Rocke, is a Chinese-speaking hacking group that have gained a spotlight this year for its use of cryptojacking malware using a backdoor from HackingTeam's leaked code.
Pegasus spyware active in 45 countries, Citizen Lab says
An infamous brand of mobile spyware may be operating in 45 countries as part of a sprawling footprint that could enable human rights abuses, according to a new report.
Fidelis Cybersecurity gets $25 million investment for detection and response services
Fidelis says the infusion will help boost its flagship product as well as a new managed detection and response service it announced earlier this summer.
Proofpoint: One month out from deadline, half of agency domains are DMARC compliant
Proofpoint predicts that no more than 70 percent will have full DMARC implementation by the Oct. 16 deadline.
Zero day in popular video surveillance technology goes public, unpatched
"The Peekaboo flaw is extremely concerning because it exploits the very technology we rely on to keep us safe," Tenable chief technology officer Renaud Deraison said in a statement.
SCYTHE raises $3 million for attack simulation platform
SCYTHE says its platform lets enterprises simulate attacks on its own system in order to assess their own readiness.
Deterrence or waste of time? Experts at odds over DOJ's actions on North Korea
There's a rift among legal and cybersecurity experts over the way in which government handled the recent complaint against North Korea.
Cryptojacking campaign targets add-ons for popular streaming app Kodi
SET discovered that add-ons for Kodi were part of a cryptojacking campaign extending back to at least December 2017.
Lawmakers ask intelligence community for 'deepfakes' assessment
Rep. Adam Schiff and others have asked the intelligence community to assess how foreign governments could use the technology — video, audio, and images fueled by machine-learning algorithms and other tools — to harm national security interests.
Bomgar to acquire fellow access management company BeyondTrust
The combined entity will use the name of BeyondTrust, even though it's the company being acquired. It will be led by Bomgar CEO Matt Dircks.
How to combat the long lives of zero-day vulnerabilities
Nyotron CTO Nir Gaist talks about how to deal with misconceptions around zero day vulnerabilities and what enterprises can do to guard against them.
Sysdig raises $68.5 million for container security solutions
The company specializes in platforms that help developers monitor and protect their containers and microservices.
Trend Micro blames data collection issue on code library re-use
Cybersecurity giant Trend Micro has apologized after researchers discovered that a number of the company's consumer-facing apps were collecting users’ browser history.
Religious groups find their calling in threat sharing
Citing growing threats to donor data and religious websites, the FB-ISAO’s backers said it will fill a void by working with technology vendors to offer faith-based groups threat analysis.
Corelight raises $25 million to grow Bro-based business
Corelight has built its products on top of the Bro network security monitor, giving government agencies and large enterprises a way to make sense of the traffic they see on a daily basis.