Infrastructure-as-code security startup Oak9 Inc. has raised $8 million in new funding to grow its free Community Edition and help launch a next-generation “Security as Code” offering. The round was led by Menlo Ventures and included Cisco Investments, Morgan Stanley’s Next Level Fund and HPA. Including the new funding, the company has raised $13.9 million to date, according ...

Nonfungible token marketplace OpenSea has suffered a data breach after an employee of a third-party contractor downloaded email addresses belonging to OpenSea users and newsletter subscribers. The breach involved an employee of Customer.io downloading the email addresses and providing them to an unauthorized external party. Who the third party was or whether money was involved was not ...

Cryptocurrency exchange FTX Digital Markets Ltd. is reportedly close to finalizing a deal to acquire crypto lender BlockFi Lending LLC for only $25 million. CNBC reports that FTX is close to finalizing a term sheet for the deal that is expected to be signed by the end of the week. At $25 million, the price ...

Microsoft Corp. has issued a patch for a vulnerability in Service Fabric that allows attackers to gain root privileges on a node and then take over other nodes in a cluster. Service Fabric hosts more than 1 million applications and runs on millions of cores daily. It powers Azure services, including Azure Service Fabric, Azure ...

A California Department of Justice website relating to firearms registration has been found to be exposing personal information. A June 27 update to the Firearm Dashboard Portal exposed details of individuals who were granted or denied a concealed and carry weapons permit between 2011 and 2021. The information exposed included names, dates of birth, gender, ...

A U.S. District Court judge has ruled that former Uber Technologies Inc. Chief Security Officer Joe Sullivan must face wire fraud charges over allegations that he covered up a security breach involving the theft of 57 million passenger and driver records. Sullivan (pictured) was initially charged in August 2020 with obstruction of justice and “misprision” ...

A newly discovered form of malware has been found to be actively targeting small office-home office routers in Europe and North America. Dubbed “ZuoRAT” today by researchers at Lumen Technologies Inc.’s Black Lotus Labs, the malware is described as a multistage remote access trojan and is believed to have been active since 2020. The malware grants ...

Security researchers at Cyble Inc. have uncovered more than 900,000 exposed Kubernetes clusters that could be vulnerable to malicious scans or data theft. The 900,000-plus exposed clusters were found by the researchers as part of a threat-hunting exercise. It’s noted that although not all are vulnerable to attacks or the loss of sensitive data, they ...

Advanced Micro Devices Inc. is investigating a potential data breach after a hacking group claimed to have stolen 450 gigabytes of data from the chipmaker. The stolen data claim comes from a hacking group calling itself RansomHouse. The group claims on its darknet site that it breached AMD on Jan. 5 and got the data ...

OpenReplay, a startup that provides an open-source session replay tool for developers, said today it has raised $4.7 million in new funding to grow its community, accelerate deployment at scale and improve user experience. Runa Capital led the seed round, with Expa, 468 Capital, Rheingau Founders and Tekion co-founders also participating. Including the new funding, OpenReplay has ...