1. Portscanner Online
  2. Latest Cybersecurity News and Articles

Latest Cybersecurity News and Articles

Unprotected DeepSeek Database Exposed Chats, Other Sensitive Information

30 January 2025
An unprotected database belonging to Chinese AI company DeepSeek exposed highly sensitive information, including chat history, secret keys, and backend data. The post Unprotected DeepSeek Database Exposed Chats, Other Sensitive Information appeared first on SecurityWeek.

Tenable to Acquire Vulcan Cyber for $150 Million

30 January 2025
Tenable plans to acquire exposure management company Vulcan Cyber for roughly $150 million in cash and stock.  The post Tenable to Acquire Vulcan Cyber for $150 Million appeared first on SecurityWeek.

SOC Analysts - Reimagining Their Role Using AI

30 January 2025
The job of a SOC analyst has never been easy. Faced with an overwhelming flood of daily alerts, analysts (and sometimes IT teams who are doubling as SecOps) must try and triage thousands of security alerts—often false positives—just to identify a handful of real threats. This relentless, 24/7 work leads to alert fatigue, desensitization, and increased risk of missing critical security incidents.

DeepSeek AI Database Exposed: Over 1 Million Log Lines, Secret Keys Leaked

30 January 2025
Buzzy Chinese artificial intelligence (AI) startup DeepSeek, which has had a meteoric rise in popularity in recent days, left one of its databases exposed on the internet, which could have allowed malicious actors to gain access to sensitive data. The ClickHouse database "allows full control over database operations, including the ability to access internal data," Wiz security researcher Gal

190M impacted by Change Healthcare breach, security leaders discuss

30 January 2025
 Security leaders discuss an update from Change Healthcare. 

Unpatched PHP Voyager Flaws Leave Servers Open to One-Click RCE Exploits

30 January 2025
Three security flaws have been disclosed in the open-source PHP package Voyager that could be exploited by an attacker to achieve one-click remote code execution on affected instances. "When an authenticated Voyager user clicks on a malicious link, attackers can execute arbitrary code on the server," Sonar researcher Yaniv Nizry said in a write-up published earlier this week. The

New Aquabot Botnet Exploits CVE-2024-41710 in Mitel Phones for DDoS Attacks

30 January 2025
A Mirai botnet variant dubbed Aquabot has been observed actively attempting to exploit a medium-severity security flaw impacting Mitel phones in order to ensnare them into a network capable of mounting distributed denial-of-service (DDoS) attacks. The vulnerability in question is CVE-2024-41710 (CVSS score: 6.8), a case of command injection in the boot process that could allow a malicious actor

DeepSeek blocked from some app stores in Italy amid questions on data use

29 January 2025
DeepSeek blocked from some app stores in Italy amid questions on data use Italian and Irish regulators want answers on how data harvested by chatbot could be used by Chinese governmentThe Chinese AI platform DeepSeek has become unavailable for download from some app stores in Italy as regulators in Rome and in Ireland demanded answers from the company about its handling of citizens’ data.Amid growing concern on Wednesday about how data harvested by the new chatbot could be used by the Chinese government, the app disappeared from the Apple and Google app stores in Italy with customers seeing messages that said it was “currently not available in the country or area you are in” for Apple and the download “was not supported” for Google, Reuters reported. Continue reading...

Lazarus Group Uses React-Based Admin Panel to Control Global Cyber Attacks

29 January 2025
The North Korean threat actor known as the Lazarus Group has been observed leveraging a "web-based administrative platform" to oversee its command-and-control (C2) infrastructure, giving the adversary the ability to centrally supervise all aspects of their campaigns. "Each C2 server hosted a web-based administrative platform, built with a React application and a Node.js API," SecurityScorecard's

New Zyxel Zero-Day Under Attack, No Patch Available

29 January 2025
GreyNoise reports active exploitation of a newly discovered zero-day vulnerability in Zyxel CPE devices. There are no patches available. The post New Zyxel Zero-Day Under Attack, No Patch Available appeared first on SecurityWeek.

Oligo Raises $50M to Tackle Application Detection and Response

29 January 2025
Oligo Security has raised $50 million in Series B funding for its application detection and response (ADR) platform. The post Oligo Raises $50M to Tackle Application Detection and Response appeared first on SecurityWeek.

Simplify your security toolkit

29 January 2025
What threats do security leaders need to worry about? Answer this question and more with Corey Nachreiner, CISO at WatchGuard.

DeepSeek: What to know about the Chinese artificial intelligence model

29 January 2025
Cyber experts delve into DeepSeek, the Chinese artificial intelligence model. 

New SLAP and FLOP CPU Attacks Expose Data From Apple Computers, Phones

29 January 2025
New CPU side-channel attacks named SLAP and FLOP can be exploited to remotely steal data from Apple mobile and desktop devices.  The post New SLAP and FLOP CPU Attacks Expose Data From Apple Computers, Phones appeared first on SecurityWeek.

Aquabot Botnet Targeting Vulnerable Mitel Phones

29 January 2025
The Mirai-based Aquabot botnet has been targeting a vulnerability in Mitel SIP phones for which a proof-of-concept (PoC) exploit exists. The post Aquabot Botnet Targeting Vulnerable Mitel Phones appeared first on SecurityWeek.

Security research discovers vulnerabilities in popular travel service

29 January 2025
An account takeover vulnerability has been discovered in a popular online travel service. 

Smiths Group Scrambling to Restore Systems Following Cyberattack

29 January 2025
Engineering firm Smiths Group has disclosed a cyberattack that forced it to take some systems offline and activate business continuity plans. The post Smiths Group Scrambling to Restore Systems Following Cyberattack appeared first on SecurityWeek.

AI in Cybersecurity: What's Effective and What’s Not – Insights from 200 Experts

29 January 2025
Curious about the buzz around AI in cybersecurity? Wonder if it's just a shiny new toy in the tech world or a serious game changer? Let's unpack this together in a not-to-be-missed webinar that goes beyond the hype to explore the real impact of AI on cybersecurity. Join Ravid Circus, a seasoned pro in cybersecurity and AI, as we peel back the layers of AI in cybersecurity through a revealing

Rockwell Patches Critical, High-Severity Vulnerabilities in Several Products

29 January 2025
Rockwell Automation has released six new security advisories to inform customers about several critical and high-severity vulnerabilities. The post Rockwell Patches Critical, High-Severity Vulnerabilities in Several Products appeared first on SecurityWeek.

Cyber Insights 2025: Artificial Intelligence

29 January 2025
Artificial intelligence is upending cybersecurity. It is used by adversaries in their attacks, and by defenders in their defense. The post Cyber Insights 2025: Artificial Intelligence appeared first on SecurityWeek.