The U.S. Commerce Department has imposed trade sanctions on China’s largest chipmaker, Semiconductor Manufacturing International Corp., that will restrict the company’s access to U.S. technology. The restrictions are not as harsh as those imposed on Huawei Technology Co. Ltd. and ZTE Corp., which were outright bans on gaining access to U.S. technology rather than a requirement that ...

Facebook Inc. has patched a vulnerability in its photo-sharing app Instagram that could have allowed hackers to take over user accounts through a malicious image. The vulnerability, discovered and publicized today by researchers at Check Point Software Technologies Ltd., involved a remote code execution hack. The vulnerability would allow attackers to perform any action they wish through ...

An exploit in Microsoft Corp.’s Windows Server is actively being exploited in the wild even though a patch for the critical vulnerability was issued last month. Dubbed “ZeroLogon” by cybersecurity professionals and “Netlogon EoP” by Microsoft, the vulnerability, patched in the Microsoft Patch Tuesday security update in August is rated with a critical vulnerability score ...

The U.S. Department of Homeland Security’s Cybersecurity and Infrastructure Agency today issued an analysis report in relation to a U.S. federal agency that has suffered a data breach after being hacked. CISA didn’t name the federal agency targeted, but the report makes for sober reading in terms of cybersecurity, and in this case, the basic ...

Cerberus Cyber Sentinel Corp. today acquired cybersecurity assessment firm Clear Skies Security LLC for an undisclosed price. Founded in 2008, Clear Skies specializes in helping companies discover vulnerabilities in their computer networks and applications before they can be exploited by hackers. The company offers a range of services, including application assessments, penetration testing, vulnerability assessments, architecture reviews ...

They may not be stealing from the rich and giving to the poor, but the folks at free stock-trading app maker Robinhood Market Inc. are certainly merry as the company raised yet more venture capital ahead of its expected initial public offering. The latest raise of $460 million is an extension on its Series G round ...

Shopify Inc. has suffered a data breach and details from about 200 merchant accounts were stolen by employees. Reported Tuesday, the data theft involved two “rogue” Shopify support team members whom the company describes as engaged in a “scheme” to obtain customer transactions records from certain merchants. The data stolen included contact information such as ...

CrowdStrike Holdings Inc. said today it plans to acquire zero trust cybersecurity startup Preempt Security Inc. for $96 million. The deal consists of a cash payment of $86 million and $10 million in stock and options subject to vesting conditions. Founded in 2014 and launched in 2016, Preempt Security offers a zero-trust and conditional access solution ...

Google Cloud’s Chronicle security service today announced Chronicle Detect, a threat detection solution that leverages Google’s infrastructure to help enterprises identify threats faster and at larger scale. Designed to deliver threat detection to enterprises with the next generation of Google’s rules engine that “operates at the speed of search,” Detect offers a data fusion model that ...

The U.S. Department of Homeland Security’s Cybersecurity and Infrastructure Agency today issued an alert on the increased spread of LokiBot, a form of malware designed to steal confidential information. LokiBot was discovered in 2016, but it’s the increased detection rate since July that has authorities concerned. Various forms of the malware, offered as open source on the ...