SecurityWeek

Google Disrupts Chinese Hackers Targeting Telecoms, Governments

Google has disrupted a significant China-linked cyberespionage campaign targeting telecoms and government organizations ...
SecurityWeek

Trend Micro Patches Critical Apex One Vulnerabilities

TrendAI announced patches for vulnerabilities found in the Windows and macOS versions of the Apex One endpoint security ...
SecurityWeek

Gambit Security Emerges From Stealth With $61 Million in Funding

Gambit Security has emerged from stealth mode with $61 million in funding to help organizations improve resilience.
SecurityWeek

Claude Code Flaws Exposed Developer Devices to Silent Hacking

Vulnerabilities in Anthropic’s Claude Code tool could have allowed attackers to silently gain control of a developer’s computer.
SecurityWeek

Zyxel Patches Critical Vulnerability in Many Device Models

Zyxel has patched a critical-severity OS command execution vulnerability that is remotely exploitable via crafted UPnP requests.
SecurityWeek

The Blast Radius Problem: Stolen Credentials are Weaponizing Agentic AI

More than half (56%) of the 400,000 vulnerabilities IBM X-Force tracked in 2025 required no authentication before ...
SecurityWeek

US Sanctions Russian Exploit Broker Operation Zero

The US has sanctioned Operation Zero, a Russian exploit broker that bought zero-days from a now jailed US defense contractor executive.
SecurityWeek

Cisco Patches Catalyst SD-WAN Zero-Day Exploited by Highly Sophisticated Hackers

Patches were released for a Cisco Catalyst SD-WAN zero-day exploited in the wild to bypass authentication and gain administrative privileges.
SecurityWeek

SolarWinds Patches Four Critical Serv-U Vulnerabilities

SolarWinds has patched four critical-severity remote code execution vulnerabilities in the Serv-U enterprise file transfer product.