Eduard Kovacs
Managing Editor at SecurityWeek
Contributing Editor @SecurityWeek - I cover ICS security, data breaches, vulnerabilities, mobile security, cybercrime, malware, and industry news
Articles
-
1 day ago |
securityweek.com | Eduard Kovacs
Cybersecurity and application delivery solutions provider Radware has clarified that the vulnerabilities disclosed last week were addressed back in 2023. An advisory published on May 7 by the CERT Coordination Center (CERT/CC) at Carnegie Mellon University revealed that the Radware Cloud Web Application Firewall (WAF) was vulnerable to a couple of filter bypass methods that could allow threat actors to conduct attacks without being blocked by the firewall.
-
2 days ago |
securityweek.com | Eduard Kovacs
The cybersecurity agency CISA is calling attention to a vulnerability discovered in TeleMessage, a messaging application that was recently used by Trump’s former national security advisor, Mike Waltz. Waltz’s short tenure as national security advisor was marked by two incidents related to the use of messaging applications.
-
2 days ago |
securityweek.com | Eduard Kovacs
Illinois-based physical security company Andy Frain Services revealed on Friday that a data breach suffered last year impacts more than 100,000 people. Andy Frain provides security services for major sports arenas, event venues, universities, commercial businesses, airports, and organizations in the transportation industry.
-
2 days ago |
securityweek.com | Eduard Kovacs
Global Crossing Airlines, a US airline operating as GlobalX, has confirmed detecting a breach after hackers leaked data allegedly stolen from its systems. GlobalX was in the news recently for playing an important role in the Trump administration’s deportation campaign, particularly the controversial deportations of Venezuelan gang members to El Salvador. The charter airline’s systems were recently targeted by hackers claiming to be part of the Anonymous movement.
-
3 days ago |
securityweek.com | Eduard Kovacs
The US Department of Justice and the Black Lotus Labs team at telecom company Lumen Technologies announced on Friday the takedown of two proxy services powered by a botnet of thousands of hacked devices. The Justice Department has worked with Lumen and police in the Netherlands and Thailand to dismantle the proxy services named Anyproxy and 5socks. Their domains have been seized and Lumen has disrupted infrastructure by null-routing all traffic to and from known control points.
Try JournoFinder For Free
Search and contact over 1M+ journalist profiles, browse 100M+ articles, and unlock powerful PR tools.
Start Your 7-Day Free Trial →X (formerly Twitter)
- Followers
- 14K
- Tweets
- 35K
- DMs Open
- Yes
Supply chain attack compromises the popular rand-user-agent NPM package to deploy and activate a backdoor. https://t.co/xRgVju77h1
VMS firm Valsoft Corporation says the personal information of over 160,000 people was compromised in a February 2025 data breach. https://t.co/CFZKVKjGqa
Three NPM packages posing as developer tools for Cursor AI code editor’s macOS version contain a backdoor. https://t.co/4vKIMZXGwg