SecurityWeek’s cybersecurity news roundup provides a concise compilation of noteworthy stories that might have slipped under the radar.
We provide a valuable summary of stories that may not warrant an entire article, but are nonetheless important for a comprehensive understanding of the cybersecurity landscape.
Each week, we curate and present a collection of noteworthy developments, ranging from the latest vulnerability discoveries and emerging attack techniques to significant policy changes and industry reports.
Here are this week’s stories:
Over 80 vulnerabilities found in enterprise printer management solution
Over a period of several years, researcher Pierre Kim discovered more than 80 vulnerabilities in the Vasion Print (formerly PrinterLogic) enterprise printer management solution. The flaws can allow an attacker to compromise installations, move laterally to clients, and achieve remote code execution. Cross-tenant flaws could allow attackers to access other customers’ accounts. The security holes were reported between 2021 and 2024, but only recently most of them were patched. The researcher has now disclosed details and shared mitigations.
EY analysis shows cyber breaches cause stock price decline
Ernst & Young has conducted an analysis of the impact of cyber breaches on a company and found that companies typically see a 1.5% decrease in stock price in the 90 days following an incident. EY has also looked at the disconnect between CISOs and other C-level executives, pointing out that this disconnect can leave organizations exposed.
NATO cyber exercise
Twenty NATO government and national agencies recently conducted an exercise aimed at testing their ability to coordinate responses to significant cyberattacks aimed at critical national infrastructure. The drill took place in Czechia and tested the alliance’s Virtual Cyber Incident Support Capability, whose goal is to aid coordination of activities such as malware analysis, threat intelligence and forensics.
1,360 Microsoft product vulnerabilities found in 2024
A record-breaking number of vulnerabilities (1,360) were discovered in Microsoft products last year, with remote code execution and privilege escalation remaining the most common types of flaws. While the number is higher than in the previous four years, the difference is not significant. Additional details on Microsoft product vulnerabilities are available in the latest report from BeyondTrust.
4chan hacked
The popular image-based bulletin board 4chan has been mostly down since Tuesday as a result of a hack. TechCrunch reported that the attacker appeared to have gained deep access to the site, obtaining internal data, including source code and a list of moderators and so-called ‘janitors’ (users who can delete posts and threads). The cyberattack could expose the individuals who run the controversial forum.
Auto-reboot security feature coming to Android
Google is rolling out an auto-reboot feature in Android that is designed to improve security. The feature, which is optional, triggers an automatic restart of a device if it has been locked for three consecutive days, bringing it to a state where data is encrypted and more difficult to access. iPhones have a similar feature.
Bill aims to extend cybersecurity information sharing provisions
Senators Gary Peters and Mike Rounds have introduced a bipartisan bill that aims to extend the provisions of the Cybersecurity Information Sharing Act of 2015, incentivising businesses to voluntarily share information (including malware, IoCs and vulnerabilities) with the DHS to help it protect individuals and the nation’s systems against cyber threats. The lawmakers want to extend the benefits of the law for another ten years.
Omnissa vulnerabilities
Omnissa, formerly VMware’s End-User Computing business, has published two security advisories to inform customers about high-severity vulnerabilities found in its products. One advisory describes a local privilege escalation issue in Horizon Client for Windows, while the second covers a CORS bypass flaw in Unified Access Gateway (UAG).
Iranian administrator of Nemesis marketplace indicted by US
The US Justice Department announced that Iranian national Behrouz Parsarad has been charged over his alleged role as the founder and operator of the Nemesis dark web marketplace. The website facilitated the sale of drugs and cybercrime services between 2021 and 2024, when it was disrupted by law enforcement. Parsarad was sanctioned by the US last month for running Nemesis.
Sekoia.io raises €26 million
European cybersecurity firm Sekoia.io has announced raising €26 million ($30 million) in a Series B funding round, which brings the total raised by the company to €60 million. Sekoia aims to enhance security operations through advanced automation and detection technology.
Related: In Other News: Apple Improving Malware Detection, Cybersecurity Funding, Cyber Command Chief Fired
Related: In Other News: Scattered Spider Still Active, EncryptHub Unmasked, Rydox Extraditions
