Security Bulletin

Few enterprises have all the cybersecurity skills and resources they need in-house, making outsourcing a necessity. How do they select, and work with, third-party security service providers?

Alkira has raised $100 million in a Series C financing round led by Tiger Global that brought its total outside capital to $176 million, SiliconAngle reports.

San Francisco-based c/side has emerged from stealth mode with $1.7 million in funding to develop cybersecurity solutions targeting vulnerabilities in third-party scripts used within web browsers, reports Tech Funding News.

GitLab is set to introduce an enterprise edition of its AI add-on for the GitLab continuous integration/continuous delivery platform, according to DevOps.

A significant number of enterprises view their third-party suppliers as major security risks, according to Computer Weekly.

Zscaler has introduced advanced AI capabilities for its AI Data Protection Platform with the aim of enhancing data security and simplifying management across diverse environments, reports SiliconAngle.

A threat campaign luring users with malicious documents related to human rights and public notices is aimed at giving the Russia-backed threat group access to victims' systems for cyber-espionage purposes.

SecurityWeek reports that Google has noted that the preventable cyberattack aimed at U.S. government emails that the Cyber Safety Review Board attributed to Microsoft's significant security failings was indicative of the "monoculture" security risks...

The Open Source Security Foundation has unveiled the new Siren threat intelligence sharing list that seeks to facilitate real-time information sharing regarding security flaws impacting open source projects, reports The Register.

The U.S. Department of Health and Human Services has introduced the new Universal PatchinG and Remediation for Autonomous DEfense program, which offers $50 million toward the strengthening of hospital cybersecurity amid growing cybersecurity threats...

As we face continued headwinds on provisions like data flows and e-customs duties, further progress is both needed and achievable in digital trade policy.