Security Week

Cybersecurity News, Insights & Analysis

  1. Aryon Security Raises $29 Million in Series A Funding

    In the post-Mythos era, the company’s platform helps organizations enforce security controls across environments.

    The post Aryon Security Raises $29 Million in Series A Funding appeared first on SecurityWeek.

  2. Critical HVAC and UPS Vulnerabilities Could Let Hackers Disrupt Data Centers

    Claroty researchers have analyzed the security of Vertiv UPS network cards and the Trane Tracer SC+ HVAC controller.

    The post Critical HVAC and UPS Vulnerabilities Could Let Hackers Disrupt Data Centers appeared first on SecurityWeek.

  3. CISO Forum Webinar Today: 2026 Mid-Year Review

    Learn more about protecting against unmonitored use of generative AI (Shadow AI) in business units and building and enforcing AI governance frameworks.

    The post CISO Forum Webinar Today: 2026 Mid-Year Review appeared first on SecurityWeek.

  4. New Windows Zero-Day Exploit ‘RoguePlanet’ Released

    Exploiting a race condition in Microsoft Defender, the exploit leads to local privilege escalation to SYSTEM.

    The post New Windows Zero-Day Exploit ‘RoguePlanet’ Released appeared first on SecurityWeek.

  5. After AI Reaches Production: 12 Ways Security Teams Can Take Control

    Security teams need more than visibility into AI applications, they need a repeatable framework for monitoring, investigating, and defending them in production.

    The post After AI Reaches Production: 12 Ways Security Teams Can Take Control appeared first on SecurityWeek.

  6. ServiceNow Patches Vulnerability Exploited Against Some Customers

    The company updated hosted customer instances to patch a security issue it reportedly had known about since April 7.

    The post ServiceNow Patches Vulnerability Exploited Against Some Customers appeared first on SecurityWeek.

  7. Critical Vulnerabilities Patched in Fortinet, Ivanti Products

    Two OS command injection flaws can be exploited remotely, without authentication, for arbitrary code execution.

    The post Critical Vulnerabilities Patched in Fortinet, Ivanti Products appeared first on SecurityWeek.

  8. ICS Patch Tuesday: Vulnerabilities Fixed by Siemens, Schneider, Phoenix Contact

    In addition, Rockwell Automation announced some enhancements to its SecureOT cybersecurity solution for OT.

    The post ICS Patch Tuesday: Vulnerabilities Fixed by Siemens, Schneider, Phoenix Contact appeared first on SecurityWeek.

  9. No Patch Planned for Exploited Arista EOS Vulnerability

    Organizations are advised to apply vendor-supplied mitigations or discontinue the vulnerable devices.

    The post No Patch Planned for Exploited Arista EOS Vulnerability appeared first on SecurityWeek.

  10. Microsoft Patches 200 Vulnerabilities

    Three of the vulnerabilities fixed with the latest Patch Tuesday updates were publicly disclosed before Microsoft addressed them.

    The post Microsoft Patches 200 Vulnerabilities appeared first on SecurityWeek.