Author: Staff Writer

Remember 23andMe? The company that gave customers saliva-based DNA testing kits to learn about their ancestry?Founded in 2006, the company also conducted health research and drug development. But it struggled to find a profitable business model and eventually filed for Chapter 11 bankruptcy protection back in March, raising concerns about the safety of customer data.Well, 27 states and the District of Columbia on Monday filed a lawsuit in bankruptcy court seeking to block the sale of the company’s archive of genetic data without customer consent. The lawsuit comes as a biotechnology company seeks court’s approval to buy the struggling firm.If…

ArmorCode, the leading AI-powered Application Security Posture Management (ASPM) platform trusted by over 175,000 practitioners, announced the launch of AI Code Insights. This powerful new set of capabilities leverages ArmorCode’s agentic AI, Anya, to provide enterprises with an unprecedented contextual understanding of their code repositories, empowering security and development teams to secure what matters most. Amidst the rapid pace of DevSecOps, AI Code Insights directly addresses the critical challenge of “black box” code repositories, transforming them into a source of actionable intelligence. Developers are now leveraging AI to push hundreds of commits daily, often leaving security teams struggling to identify…

New Capability in ION MXDR Slashes Investigation Time by 50% and Helps Resolve 99.5% of Incidents Without the Need for Customer Involvement Ontinue, a leading provider of AI-powered managed extended detection and response (MXDR) services and winner of the 2023 Microsoft Security Services Innovator of the Year award, announced it is the first Microsoft-focused MXDR provider to bring autonomous investigations to market. This groundbreaking technology transforms MXDR by scaling expert-level security analysis, accelerating investigations, and reducing customers’ SecOps burdens using Agentic AI. Automation has long accelerated Tier 1 incident triage by handling repetitive tasks, helping defenders quickly resolve commonly seen…

Trellix, the company delivering the future of AI-powered cybersecurity, announced a new report, Mind of the CISO: Closing the gap between reaction and readiness, which found nearly all CISOs (98%) face barriers when acting on threat intelligence, with the top challenges reported as keeping pace with evolving threats (45%), integration issues (39%), and regulatory constraints (38%). As a result, threat intelligence defaults to a reactive function within a workstream, rather than an embedded, proactive strategy to build resilience, accelerate response, and stay ahead of evolving threats. “Global threat detection volume from APT actors rose 45% at the beginning of this year, and CISOs…

Azul Intelligence Cloud detects known vulnerabilities down to the class level, eliminating up to 99% of false positives and boosting DevOps capacity and productivity Azul, the only company 100% focused on Java, announced an enhancement to Azul Intelligence Cloud, a breakthrough capability in Azul Vulnerability Detection that brings unprecedented precision to detection of Java application security vulnerabilities. Unlike traditional AppSec or APM tools that flag vulnerabilities by matching component file names or SBOM information — often leading to an overwhelming number of security false positives — Azul Vulnerability Detection uses class-level production runtime data to detect vulnerabilities. This enables organizations to focus only…

Quick Takeaways Vulnerability Exploitation: A crucial flaw named ‘DanaBleed’ in the DanaBot malware, identified by Zscaler’s ThreatLabz, allowed researchers to access sensitive data and helped facilitate ‘Operation Endgame’, leading to significant law enforcement action against the cybercriminals. Operation Dismantling: The operation resulted in the indictment of 16 members of the DanaBot team, seizure of critical infrastructure including 650 domains, and nearly $4 million in cryptocurrency, effectively disrupting their cybercriminal activities. Memory Leak Impact: The DanaBleed flaw, introduced in June 2022, caused a memory leak in the command and control protocol, unintentionally exposing private data such as threat actor details, victim…

Mattermost, the platform that delivers secure chat operations and collaborative workflow, announced the Mattermost Intelligent Mission Environment (IME). Recognizing that legacy systems slow down missions and expose critical operations to risk, IME is built to meet the evolving demands of an era where speed, coordination, and decision advantage are paramount.  Mattermost’s IME is a force multiplier — replacing fragmented legacy tools, accelerating mission outcomes, and enabling national security and critical infrastructure teams to automate complex workflows, unify communications, and maintain absolute control over sensitive operations. The Intelligent Mission Environment (IME) delivers a secure, self-hosted environment that enhances operational focus, resilience, and adaptability…

Summary Points Certificate Rotation Announcement: ConnectWise is rotating the digital code signing certificates for ScreenConnect, Automate, and RMM executables due to security concerns raised by a third-party researcher about potential misuse. Security Assurance: Digital certificates ensure executables are from trusted sources, preventing tampering before reaching the end user; this process remains confidential from any recent security incidents. Immediate Updates Required: Affected users, both on-premises and cloud-hosted, must update to the new certificate versions by June 13, 2025, to avoid operational disruptions. Cloud users will receive updates automatically, but should still verify their agent status. Phishing Threats: Previous reports indicated that…

Together, Xona’s Secure Remote Access Platform and Forescout’s OT Security Solutions Help Industrial Organizations Connect Without Exposing Critical Assets Xona, the leading provider of secure access for critical infrastructure, announced a strategic partnership with Forescout Technologies, a global cybersecurity leader. The integration between the Xona Platform and the Forescout 4D Platform will give industrial and critical infrastructure operators secure, policy-enforced access to operational systems, backed by continuous network visibility and automated enforcement. As threats to industrial control systems intensify and compliance requirements become more demanding, the integration of Forescout’s continuous device visibility, intelligence, and control with Xona’s secure remote access capabilities enables…

Collaboration establishes a new, student-run SOC that will support cybersecurity needs and upskill the next-generation workforce TekStream, a cybersecurity and IT solutions leader, announces its partnership with the New Jersey Institute of Technology (NJIT), one of the nation’s leading public polytechnic universities. The collaboration enhances the institution’s cybersecurity while fostering workforce development through a new, student-run Security Operation Center (SOC) that leverages Splunk’s enterprise security solutions. With more than 13,000 students and 2,000 faculty and staff, the University recognized the need for an affordable, comprehensive cybersecurity program. To ensure students receive the best educational experience possible, NJIT sought a technology…