Security industry mourns the loss of Keith Oringer
| April 16th, 2025
Keith Oringer, Founder and President of Security ProAdvisors, passed away on April 11, 2025.
Source:: Security magazin
Enhanced Version of ‘BPFDoor’ Linux Backdoor Seen in the Wild
| April 16th, 2025In recent attacks, the state-sponsored backdoor BPFDoor is using a controller to open a reverse shell and move laterally.
The post Enhanced Version of ‘BPFDoor’ Linux Backdoor Seen in the Wild appeared first on SecurityWeek.
Source:: securityweek
Virtue AI Attracts $30M Investment to Address Critical AI Deployment Risks
| April 15th, 2025By Ryan Naraine
San Francisco startup banks $30 million in Seed and Series A funding led by Lightspeed Venture Partners and Walden Catalyst Ventures.
The post Virtue AI Attracts $30M Investment to Address Critical AI Deployment Risks appeared first on SecurityWeek.
Source:: securityweek
MITRE Warns CVE Program Faces Disruption Amid US Funding Uncertainty
| April 15th, 2025By Ryan Naraine
MITRE warns of a deterioration of national vulnerability databases and advisories, slowed vendor reaction and limited response operations.
The post MITRE Warns CVE Program Faces Disruption Amid US Funding Uncertainty appeared first on SecurityWeek.
Source:: securityweek
Recognizing cybersecurity as a revenue growth strategy
| April 16th, 2025
Traditionally, cybersecurity has been viewed as a cost center, but forward-thinking enterprises are reframing it as a growth driver.
Source:: Security magazin
Internet Giants Agree to Reduce TLS Certificate Lifespan to 47 Days by 2029
| April 16th, 2025Major companies have agreed to gradually reduce the lifetime of TLS certificates over the next few years.
The post Internet Giants Agree to Reduce TLS Certificate Lifespan to 47 Days by 2029 appeared first on SecurityWeek.
Source:: securityweek
Oracle Patches 180 Vulnerabilities With April 2025 CPU
| April 16th, 2025Oracle’s April 2025 Critical Patch Update contains 378 security patches that resolve approximately 180 unique CVEs.
The post Oracle Patches 180 Vulnerabilities With April 2025 CPU appeared first on SecurityWeek.
Source:: securityweek
Chrome 135, Firefox 137 Updates Patch Severe Vulnerabilities
| April 16th, 2025Chrome 135 and Firefox 137 updates have been rolled out with patches for critical- and high-severity vulnerabilities.
The post Chrome 135, Firefox 137 Updates Patch Severe Vulnerabilities appeared first on SecurityWeek.
Source:: securityweek
Microsoft Warns of Node.js Abuse for Malware Delivery
| April 16th, 2025In the past months Microsoft has seen multiple campaigns involving Node.js to deliver malware and other malicious payloads.
The post Microsoft Warns of Node.js Abuse for Malware Delivery appeared first on SecurityWeek.
Source:: securityweek
Critical Vulnerability Found in Apache Roller Blog Server
| April 16th, 2025A critical vulnerability in Apache Roller could be used to maintain persistent access by reusing older sessions even after password changes.
The post Critical Vulnerability Found in Apache Roller Blog Server appeared first on SecurityWeek.
Source:: securityweek