Tag: Security

GitHub acquires Semmle to help developers spot security vulnerabilities

Popular software hosting service GitHub has acquired Semmle, a code analysis platform that helps product developers and security researchers discover potential zero-days and critical vulnerabilities in large codebases. The financial terms of the deal were not disclosed by the two companies. But GitHub intends to make Semmle’s automated code review products available via GitHub Actions. The San […]

Read More

GitHub acquires Semmle to help developers spot code exploits

Microsoft-owned GitHub today announced that it’s acquired Semmle, a San Francisco startup developing an engineering analytics solution for software development process management. The terms of the purchase weren’t disclosed, but GitHub says it’ll make Semmle’s code analysis engine available across public and enterprise repositories through its GitHub Actions tool. GitHub also revealed this morning that it’s […]

Read More

Canopy provides a blueprint for privacy-focused content recommendations

With the advent of cloud computing, e-commerce, and social media, it’s difficult to keep tabs on who has access to our data, and harder still to know how much care they’re taking with it — barely a day goes by without some form of data-breach, lapse, or privacy scandal coming to the fore. But what […]

Read More

Acronis raises $147 million for tools that back up, protect, and restore data

Data recovery juggernaut Acronis today announced it’s nabbed $147 million in an investment round led by Goldman Sachs at a valuation of over $1 billion, following on the heels of angel, debt, and later-stage raises from March 2014 to May 2016. The capital infusion brings Singapore- and Switzerland-based Acronis’ total raised to well over $150 […]

Read More

IT firm manager arrested in massive Ecuador data breach case affecting 20M people

Credit: Wikimedia Commons Ecuador offiicals have arrested the general manager of IT consulting firm Novaestrat after a massive data breach exposed the personal information of more than 20 million individuals, including 6.7 million children. The 18GB cache of data was attributed to a leaky Elasticsearch server, but it has since been plugged. In response, local […]

Read More

GitLab raises $268 million at a $2.7 billion valuation

DevOps powerhouse GitLab has raised $268 million in a series E round of funding led by Goldman Sachs and Iconiq Capital, with participation from both new and existing investors including Y Combinator Continuity Fund, in what is likely to be the company’s final fundraising effort before going public next year. Additionally, GitLab said it is […]

Read More

Trulioo raises $52.8 million to verify customers’ identities

Vancouver-based Trulioo, a startup that provides electronic identity and address verification for 5 billion people and 250 million business entities in 195 countries, today announced that it’s raised $70 million CAD (about $52.8 million) in funding. It included $60 million CAD in a series C round led by Goldman Sachs with participation from Citi Ventures, […]

Read More

VMRay raises $10 million for real-time malware monitoring and mitigation tools

VMRay, a Bochum, Germany-based provider of automated malware analysis and detection tools, today announced that it’s raised $10 million in series B funding led by Digital+ Partners with participation from eCapital. The capital infusion brings the company’s total raised to $13.36 million (€12 million), following early investments from eCapital and High-Tech Gruenderfonds. Cofounder and CEO […]

Read More

US sanctions 3 North Korean hacking groups behind Sony and WannaCry attacks

The US Treasury imposed sanctions on three state-sponsored North Korean hacking groups that have been found to engage in a variety of cyber attacks targeting criticial infrastructure. The groups are Lazarus, Bluenoroff, and Andariel, all of them notorious for a variety of financially-motivated operations ranging from cyberespionage to data theft, so as to fund the […]

Read More

Security on the road: Locking down tomorrow’s connected vehicles

This article is part of a series on the subject of edge computing that was made possible with funding from Intel. This coverage remains entirely independent, with no input from Intel on how this article was reported or written. The kinetic energy of a 3,500-pound Toyota Camry barreling down the freeway at 75 miles per […]

Read More

iOS 13 Exploit Lets Anyone Bypass Lockscreen and Access Contact Information

A security researcher has unearthed an exploit that allows hackers to bypass the lockscreen on iOS 13.  The exploit not only allows you to bypass lock screen but also gain access to all the contact information on the iPhone. If left unchecked the exploit will potentially allow anyone to access your private information without unlocking […]

Read More

Attackers actively exploiting ‘Simjacker’ flaw to steal device data and spy on individuals

Cybersecurity researchers have warned of a critical vulnerability in SIM cards that could allow remote attackers to compromise targeted mobile phones and spy on victims without their knowledge just by sending an SMS. Dublin-based firm AdaptiveMobile Security said the flaw — dubbed “Simjacker” — has been actively exploited for at least two years by a […]

Read More

U.S. raises Huawei 5G security concerns with Gulf allies

(Reuters) — The United States has raised its concerns with Gulf allies over a possible security risk in using Huawei’s technology for their 5G mobile infrastructure, U.S. officials said on Thursday. Washington has been warning allies against using the Chinese company’s equipment, which it says presents a security risk, but has so far largely made […]

Read More

Shape Security eyes IPO after raising $51 million at $1 billion valuation

Shape Security, a cybersecurity startup that helps businesses prevent fraudulent use of their online systems, has raised $51 million in a round of funding led by C5 Capital, with participation from Kleiner Perkins, HPE Growth, Norwest Ventures Partners, Focus Ventures, JetBlue Technology Ventures, Top Tier Capital Partners, and Epic Ventures. As a result of this […]

Read More

Lacework raises $42 million to protect cloud environments from data breaches

Lacework, a four-year-old Mountain View, California-based developer of automated containerized workload defense, intrusion detection, and compliance solutions, today announced that it’s raised $42 million in funding from Sutter Hill Ventures and Liberty Global Ventures, bringing its total raised to over $70 million. CEO Dan Hubbard said the fresh funding, which follows on the heels of […]

Read More