British security firm Snyk Ltd. has raised $7 million in new funding for its protection service for developers who use open-source software. The Series A round for the three-year-old startup was led by Boldstart Ventures and Canaan Partners and included Heavybit, FundFire, Peter McKay and others. Described as a “developer-first security solution that helps you use ...

Ransomware is evolving into just another tool in hackers’ utility belts as cybercriminals move away from opportunistic attacks and move on to more profitable types of attacks, according to a report from Recorded Future’s Allan Liska. The “5 Ransomware Trends to Watch in 2018” report examines the changing ransomware landscape, noting trends such as ransomware as ...

Robotic process automation startup UiPath Inc. has raised a healthy $153 million in new funding, giving it a “unicorn” valuation topping $1.1 billion. The Series B round was led by Accel and included CapitalG, Kleiner Perkins Caufield & Byers, Earlybird’s Digital East Fund, Credo Ventures and Seedcamp. Founded in 2012, UiPath is building an Enterprise RPA platform that allows users ...

In what could be the most disturbing security trend of 2018, another new record distributed denial-of-service attack has been detected as hackers continue to exploit a technique that uses the Memcached memory caching system to amplify data volume. The new Memcached-based DDoS attack, detected by Arbor Networks, targeted a “customer of a U.S. based Service Provider” with 1.7 terabytes of data ...

Pennsylvania sued Uber Technologies Inc. today, becoming the latest government to take legal action over the ride-hailing giant’s coverup of a data breach that affected 57 million customer and contractors in 2016. The new suit, announced by Attorney General Josh Shapiro Monday, alleges that Uber violated Pennsylvania’s Breach of Personal Information Notification Act, a law that requires companies that ...

Stealing bitcoin appears to be passé in 2018. Now, thieves in two countries are stealing bitcoin mining equipment instead. In the largest known theft to date, thieves in Iceland stole 600 bitcoin mining rigs along with 100 power sources, 100 motherboards, 100 memory discs and 100 central processing units. The gear is reported to have a total ...

Just when Intel Corp. was addressing the Spectre security vulnerabilities first revealed in January, researchers have spoiled the party by revealing a new, previously unknown variant. Dubbed SgxPectre, the vulnerability allows an attacker to undertake a so-called side-channel attack via Intel’s SGX secure environments. SGX, short for Software Guard Extensions, is a set of central processing unit ...

Microsoft Corp. today released a new patch for one of the Spectre central processing unit vulnerabilities and has announced plans to distribute further patches when they become available. The new patch is available via the Microsoft Update Catalog for those running Windows 10 Fall Creators Update and Windows Server Core with Skylake processor chips. It addresses CVE 2017-5715, the Spectre Variant ...

Consumer credit reporting agency Equifax Inc. revealed Thursday that an additional 2.4 million people had their data stolen in their infamous 2017 hack — that is, on top of the 143 million consumer records it previously believed had been stolen. In a statement, Equifax said that the additional 2.4 million stolen records were discovered as ...

Shares in Overstock.com Inc. dropped as much as 10 percent Thursday after the company revealed that the U.S. Securities and Exchange Commission was investigating its tZERO initial coin offering. The revelation, disclosed in an 8K filing, stated that the SEC had requested “certain documents related to the offering and the tokens” in February. The filing also ...