PowerSchool, a California-based education technology company, recently announced a data breach that occurred between December 19 and December 28, 2024.
Source:: Security magazin
By algerj@bnpmedia.com (Jordyn Alger)
An increase in scanning activity targeted MOVEit Transfer systems may indicate emerging threat activity.
Source:: Security magazin
Google has released a Chrome 138 update that patches a high-severity vulnerability with an exploit in the wild.
The post Chrome 138 Update Patches Zero-Day Vulnerability appeared first on SecurityWeek.
Source:: securityweek
The US has made 29 searches of known or suspected laptop farms supporting North Korean individuals posing as US IT workers.
The post US Storms 29 Laptop Farms in Crackdown on North Korean IT Worker Schemes appeared first on SecurityWeek.
Source:: securityweek
The US government is again warning about potential Iranian cyberattacks as researchers find that hackers’ favorite ICS targets remain exposed.
The post Iranian Hackers’ Preferred ICS Targets Left Open Amid Fresh US Attack Warning appeared first on SecurityWeek.
Source:: securityweek
Many Citrix NetScaler systems are exposed to attacks exploiting the vulnerabilities tracked as CVE-2025-5777 and CVE-2025-6543.
The post Thousands of Citrix NetScaler Instances Unpatched Against Exploited Vulnerabilities appeared first on SecurityWeek.
Source:: securityweek
Esse Health says the personal information of over 263,000 individuals was stolen in an April 2025 cyberattack.
The post 263,000 Impacted by Esse Health Data Breach appeared first on SecurityWeek.
Source:: securityweek
The move could reshape how LLM developers gather information — and force new deals between creators and AI companies.
The post Cloudflare Puts a Default Block on AI Web Scraping appeared first on SecurityWeek.
Source:: securityweek
LevelBlue has announced plans to acquire Trustwave to create the largest pure-play managed security services provider (MSSP).
The post LevelBlue to Acquire Trustwave to Create Major MSSP appeared first on SecurityWeek.
Source:: securityweek
CISA has informed organizations about critical authentication bypass and remote code execution vulnerabilities in Microsens NMP Web+.
The post Critical Microsens Product Flaws Allow Hackers to Go ‘From Zero to Hero’ appeared first on SecurityWeek.
Source:: securityweek