China-Linked Hackers Exploit Google Calendar to Target Governments

ConnectWise Discloses State-Sponsored Hack

Friday, May 30, 2025 Request a Free Identity Security Risk Assessment (Sponsored) CYBERSECURITY NEWS HEADLINES Chinese Hacking Group APT41 Exploits Google Calendar to Target Governments ConnectWise Discloses Suspected State-Sponsored Hack Firebase, Google Apps Script Abused in Fresh Phishing Campaigns MITRE Publishes Post-Quantum Cryptography Migration Roadmap CISA Releases Guidance on SIEM and SOAR Implementation US Sanctions Philippine Company for Supporting Crypto Scams Watch Now: Why Context is a Secret Weapon in Application Security Posture Management Trending: OneDrive Gives Web Apps Full Read Access to All Files People on the Move - Zscaler has appointed Kevin Rubin as CFO. See From an Attacker’s Perspective. Uncover hidden and indirect pathways attackers could exploit to escalate access. Get a red-team-level Identity Security Risk Assessment—at no cost. Identify Urgent Risks Now SecurityWeek Expert Insights Beyond GenAI: Why Agentic AI Was the Real Conversation at RSA 2025 - Agentic AI can be a great tool for many of the ‘gray area’ tasks that SOC analysts undertake. (Marc Solomon) Security Theater or Real Defense? The KPIs That Tell the Truth - In the end, cybersecurity isn’t just about collecting data. It’s about proving that your defenses actually work. (Torsten George) Taming the Hacker Storm: Why Millions in Cybersecurity Spending Isn’t Enough - Despite massive investment, the explosion of sophisticated malware and deepfake attacks persists because organizations struggle to verify digital identities and establish fundamental trust. (Stu Sjouwerman) Is AI Use in the Workplace Out of Control? - Trying to block AI tools outright is a losing strategy. SaaS and AI are increasingly inseparable, and AI isn’t limited to tools like ChatGPT or Copilot anymore. (Alastair Paterson) Sharing Intelligence Beyond CTI Teams, Across Wider Functions and Departments - CTI, digital brand protection and other cyber risk initiatives shouldn’t only be utilized by security and cyber teams. (Marc Solomon) If you missed it... Chinese Hacking Group ‘Earth Lamia’ Targets Multiple Industries Unbound Raises $4 Million to Secure Gen-AI Adoption GreyNoise Flags 9,000 ASUS Routers Backdoored Via Patched Vulnerability Victoria’s Secret Website Taken Offline After Cyberattack Adidas Data Breach Linked to Third-Party Vendor Beyond GenAI: Why Agentic AI Was the Real Conversation at RSA 2025 MATLAB Maker MathWorks Recovering From Ransomware Attack The Root of AI Hallucinations: Physics Theory Digs Into the ‘Attention’ Flaw Zscaler to Acquire MDR Specialist Red Canary 364,000 Impacted by Data Breach at LexisNexis Risk Solutions Czech Government Condemns Chinese Hack on Critical Infrastructure Cerby Raises $40 Million for Identity Automation Platform Vietnamese Hackers Distribute Malware via Fake AI-Themed Websites OneDrive Gives Web Apps Full Read Access to All Files Chrome 137, Firefox 139 Patch High-Severity Vulnerabilities Vulnerabilities in CISA KEV Are Not Equally Critical: Report $223 Million Stolen in Cetus Protocol Hack On Demand: Threat Detection & Incident Response (TDIR) Summit Russian Government Hackers Caught Buying Passwords from Cybercriminals Iranian Man Pleads Guilty to Role in Baltimore Ransomware Attack DragonForce Ransomware Hackers Exploiting SimpleHelp Vulnerabilities Ongoing Campaign Uses 60 NPM Packages to Steal Data Dutch Intelligence Agencies Say Russian Hackers Stole Police Data in Cyberattack Inside the $111 Billion Cloud Security Market: Acquisition, Expansion, and Where to Aim Next Law Firms Warned of Silent Ransom Group Attacks Nova Scotia Power Confirms Ransomware Attack, 280k Notified of Data Breach Signal Adds Screenshot-Blocker to Thwart ‘Windows Recall’  Chinese Spies Exploit Ivanti Vulnerabilities Against Critical Sectors Volkswagen App Hacked, DR32 Sentenced, New OT Security Solution Russian Qakbot Gang Leader Indicted in US Companies Warned of Commvault Vulnerability Exploitation Cityworks Zero-Day Exploited by Chinese Hackers in US Local Government Attacks DanaBot Botnet Disrupted, 16 Suspects Charged Akamai, Microsoft Disagree on Severity of Unpatched ‘BadSuccessor’ Flaw Marks & Spencer Expects Ransomware Attack to Cost $400 Million Marlboro-Chesterfield Pathology Data Breach Impacts 235,000 People Security Theater or Real Defense? The KPIs That Tell the Truth Coinbase Says Rogue Contractor Data Breach Affects 69,461 Users View SecurityWeek's 2025 Virtual Event Lineup RSS Feed | LinkedIn | Webcasts | Virtual Events © 2025 Wired Business Media

SecurityWeek | 470 Atlantic Ave 4th Floor | Boston, MA 02210 US Unsubscribe | Update Profile | Our Privacy Policy | Constant Contact Data Notice