MITRE CVE Program Saved!

Microsoft Warns of Node.js Abuse for Malware Delivery

Wednesday, April 16, 2025 The AI Risk Summit | August 19-20, Ritz-Carlton, Half Moon Bay CYBERSECURITY NEWS HEADLINES MITRE CVE Program Gets Last-Hour Funding Reprieve Microsoft Warns of Node.js Abuse for Malware Delivery Many Mobile Apps Fail Basic Security—Posing Serious Risks to Enterprises Internet Giants Agree to Reduce TLS Certificate Lifespan to 47 Days by 2029 Pillar Security Banks $9M for AI Security Guardrails Ransomware Group Claims Hacking of Oregon Regulator After Data Breach Denial Enhanced Version of ‘BPFDoor’ Linux Backdoor Seen in the Wild Critical Vulnerability Found in Apache Roller Blog Server Chrome 135, Firefox 137 Updates Patch Severe Vulnerabilities Oracle Patches 180 Vulnerabilities With April 2025 CPU MITRE Warns CVE Program Faces Disruption Amid US Funding Uncertainty CISO Conversations: Maarten Van Horenbeeck, SVP & Chief Security Officer at Adobe AI Hallucinations Create a New Software Supply Chain Threat AI Risk Summit The AI Risk Summit brings together security and risk management executives, AI researchers, policy makers, software developers and influential business and government stakeholders. Aug. 19-20 | Ritz-Carlton, Half Moon Bay Why Attend? SecurityWeek Expert Insights Rising Tides: Bryson Bort on Cyber Entrepreneurship and the Needed Focus on Critical Infrastructure - Very few people in the cybersecurity industry do not know, or know of, Bryson Bort, CEO/Founder of SCYTHE and the co-founder of ICS Village. (Jennifer Leggio) Groucho’s Wit, Cloud Complexity, and the Case for Consistent Security Policy - The greatest security policies in the world are useless if enterprises don’t have a reasonable, consistent, and reliable way to implement them. (Joshua Goldfarb) DNS: The Secret Weapon CISOs May Be Overlooking in the Fight Against Cyberattacks - While often relegated to a purely functional role, DNS offers unparalleled opportunities for preemptive defense against cyberattacks. (Danelle Au) AI Giving Rise of the ‘Zero-Knowledge’ Threat Actor - The rise of zero-knowledge threat actors powered by AI marks a turning point in the business of cybercrime where sophisticated attacks are no longer confined to skilled attackers. (Etay Maor) If you missed it this week.. China Pursuing Alleged NSA Operatives Over Cyberattacks During Asian Games Trend Micro Flags Incomplete Nvidia Patch That Leaves AI Containers Exposed Huntress Documents In-The-Wild Exploitation of Critical Gladinet Vulnerabilities Insurance Firm Lemonade Says API Glitch Exposed Some Driver’s License Numbers Kidney Dialysis Services Provider DaVita Hit by Ransomware Conduent Says Names, Social Security Numbers Stolen in Cyberattack 2.6 Million Impacted by Landmark Admin, Young Consulting Data Breaches Blockchain, Quantum, and IoT Firms Unite to Secure Satellite Communications Against Quantum Threats NetRise Raises $10 Million to Grow Software Supply Chain Security Platform Hertz Discloses Data Breach Linked to Cleo Hack Trending:Threat Actor Allegedly Selling Fortinet Firewall Zero-Day Exploit New ‘ResolverRAT’ Targeting Healthcare, Pharmaceutical Organizations Malicious NPM Packages Target Cryptocurrency, PayPal Users Rapid7 Reveals RCE Path in Ivanti VPN Appliance After Silent Patch Debacle Hackers Breach Morocco’s Social Security Database China Admitted to Volt Typhoon Cyberattacks on US Critical Infrastructure: Report In Other News: Scattered Spider Still Active, EncryptHub Unmasked, Rydox Extraditions Rising Tides: Bryson Bort on Cyber Entrepreneurship and the Needed Focus on Critical Infrastructure View SecurityWeek's 2025 Virtual Event Lineup RSS Feed | LinkedIn | Webcasts | Virtual Events © 2025 Wired Business Media

SecurityWeek | 470 Atlantic Ave 4th Floor | Boston, MA 02210 US Unsubscribe | Update Profile | Our Privacy Policy | Constant Contact Data Notice