Category: Dark Reading

The automated capabilities can discover misconfigurations, compliance violations, and risk or excessive privileges in Kubernetes clusters. This article has been indexed from Dark Reading Read the original article: Ermetic Adds Kubernetes Security to CNAPP

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: 2 of the Worst Healthcare Data Breaches in US History Happened…

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Octillo Launches Women’s Cybersecurity Scholarship in Partnership With the Center for…

Read more →

The cyberattackers might have potentially accessed customer information, the service provider warns. This article has been indexed from Dark Reading Read the original article: Dish Blames Ransomware Attack for Disruptions of Internal Systems, Call Center Services

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Fastly Launches Managed Security Service to Protect Enterprises From Rising Web…

Read more →

New eXtended Detection and Response Solution is 450X more efficient than typical SOCs at converting telemetry and logs into actionable alerts. This article has been indexed from Dark Reading Read the original article: Forescout Addresses Modern SecOps Challenges With Launch…

Read more →

By authenticating and authorizing every application, and by maintaining data lineage for auditing, enterprises can reduce the chances of data exfiltration. This article has been indexed from Dark Reading Read the original article: Visibility Is as Vital as Zero Trust…

Read more →

Volume of SaaS assets and events magnifies risks associated with manual management and remediation. This article has been indexed from Dark Reading Read the original article: DoControl’s 2023 SaaS Security Threat Landscape Report Finds Enterprises and Mid-Market Organizations Have Exposed…

Read more →

Updated OffSec™ identity substantiates the company’s commitment to expanding its cybersecurity content and resources to prepare infosec professionals for the future. This article has been indexed from Dark Reading Read the original article: Offensive Security Is Now OffSec – Refresh…

Read more →

An infamous Chinese cyber-hacking team has extended its SysUpdate malware framework to target Linux systems. This article has been indexed from Dark Reading Read the original article: Linux Support Expands Cyber Spy Group’s Arsenal

Read more →

More cyberattackers are targeting organizations’ cloud environments, but some cloud services, such as Google Cloud Platform’s storage, fail to create adequate logs for forensics. This article has been indexed from Dark Reading Read the original article: What Happened in That…

Read more →

Make sure cybersecurity is taken seriously and consistently across the board. Educate the ecosystem beyond your own organization to mitigate security risks for everyone. This article has been indexed from Dark Reading Read the original article: The Importance of Recession-Proofing…

Read more →

As companies increasingly adopt MFA (even as companies like Twitter disable it), cybercriminals are developing a variety of strategies to steal credentials and gain access to high-value accounts anyway. This article has been indexed from Dark Reading Read the original…

Read more →

The flaw, which drew attention in October when it was found in ConnectWise products, could pose a significant risk to the supply chain if not patched immediately. This article has been indexed from Dark Reading Read the original article: CISA:…

Read more →

The open authentication standard addresses existing multifactor authentication security vulnerabilities. This article has been indexed from Dark Reading Read the original article: Without FIDO2, MFA Falls Short

Read more →

The data protection capability is now available across multiple Workspace applications: Gmail, Calendar, Drive, Docs, Slides, Sheets, and Meet. This article has been indexed from Dark Reading Read the original article: Google Adds Client-Side Encryption to Gmail, Calendar

Read more →

The biggest dilemmas in running a modern cybersecurity team are not all about software, said CISOs from HSBC, Citi, and Sepio. This article has been indexed from Dark Reading Read the original article: CISOs Share Their 3 Top Challenges for…

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Two of The Worst Healthcare Data Breaches in US History Happened…

Read more →

Platform uniquely designed to facilitate automated compliance, security behavior change. This article has been indexed from Dark Reading Read the original article: Hoxhunt Launches Human Risk Management Platform

Read more →

The adversaries obtained a decryption key to a LastPass database containing multifactor authentication and federation information as well as customer vault data, company says. This article has been indexed from Dark Reading Read the original article: LastPass DevOps Engineer Targeted…

Read more →

The framework-as-a-service signals an intensification of the cat-and-mouse game between defenders detecting lateral movement, and cybercriminals looking to go unnoticed. This article has been indexed from Dark Reading Read the original article: Exfiltrator-22: The Newest Post-Exploitation Toolkit Nipping at Cobalt…

Read more →

Unknown attackers made off with a raft of PII, the Justice Department says — but witnesses in the protection program are still safe. This article has been indexed from Dark Reading Read the original article: US Marshals Ransomware Hit Is…

Read more →

Marcus Hutchins, who set up a “kill switch” that stopped WannaCry’s spread, later pled guilty to creating the infamous Kronos banking malware. This article has been indexed from Dark Reading Read the original article: WannaCry Hero & Kronos Malware Author…

Read more →

The opportunistic “SCARLETEEL” attack on a firm’s Amazon Web Services account turns into targeted data theft after the intruder uses an overpermissioned service to jump into cloud system. This article has been indexed from Dark Reading Read the original article:…

Read more →

Separate attacks on two subsidiaries of an Asian conglomerate reflect a surge of cyber-espionage activity in the region in the last 12 months. This article has been indexed from Dark Reading Read the original article: China’s BlackFly Targets Materials Sector…

Read more →

The war on critical infrastructure demands a better security strategy. This article has been indexed from Dark Reading Read the original article: The DoJ Disruption of the Hive Ransomware Group Is a Short-Lived Win

Read more →

The publisher of the Wall Street Journal, New York Post, and several other publications had last year disclosed a breach it said was the work of a state-backed actor likely working for China. This article has been indexed from Dark…

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Active Digital Identity Apps to Surpass 4.1B by 2027

Read more →

Cloud security vendor Wiz has raised $900 million since its founding in 2020. This article has been indexed from Dark Reading Read the original article: Wiz Reaches $10B Valuation With Consolidated Cloud Security Platform

Read more →

Vouched now covers more than 85% of the global population, as demand accelerates for its platform to securely automate KYC and KYP compliance to better serve patients and drive revenue. This article has been indexed from Dark Reading Read the…

Read more →

New Zero Trust OT Security solution secures critical infrastructure without additional sensors. This article has been indexed from Dark Reading Read the original article: Palo Alto Announces Zero-Trust Security Solution for OT

Read more →

Vulnerabilities impact each industry differently, so each sector needs to think about its defenses and vulnerability management differently. This article has been indexed from Dark Reading Read the original article: All CVEs Are Not Created Equal

Read more →

The exposure and exploitation of hardcoded secrets continues to drive software supply chain attacks. One solution: zero new hardcoded secrets. This article has been indexed from Dark Reading Read the original article: How to Reduce Code Risk Using Pipelineless Security

Read more →

Mobile malware developers were busy bees in 2022, flooding the cybercrime landscape with twice the number of banking trojans than the year before. This article has been indexed from Dark Reading Read the original article: Mobile Banking Trojans Surge, Doubling…

Read more →

Upgrades boost Edgio’s ability to mitigate sophisticated threats and safeguard applications and data. This article has been indexed from Dark Reading Read the original article: Edgio Strengthens Security Offering With WAAP Enhancements and DDoS Scrubbing Solution

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: ThreatHunter.ai Launches “More Eyes” Program to Help Large Organizations Mitigate Cyber…

Read more →

Infighting, conscription, emigration. The war in Ukraine has pitted cybercriminals against one another like no other event before it. This article has been indexed from Dark Reading Read the original article: How the Ukraine War Opened a Fault Line in…

Read more →

Build a playbook for employees on how to handle suspicious communications, use mail filters, and screen and verify unfamiliar calls to bolster a defensive social engineering security strategy. This article has been indexed from Dark Reading Read the original article:…

Read more →

Preparation and cooperation helped to mitigate the worst of the digital damage, amid cyber sorties from all sides. This article has been indexed from Dark Reading Read the original article: Evaluating the Cyberwar Set Off by Russian Invasion of Ukraine

Read more →

The cloud-native application protection platform market is expanding as security teams look to protect their applications and the software supply chain. This article has been indexed from Dark Reading Read the original article: Tackling Software Supply Chain Issues With CNAPP

Read more →

A threat actor has leaked data — purportedly, samples of Telus employee payroll data and source code — on a hacker site. This article has been indexed from Dark Reading Read the original article: Canadian Telecom Firm Telus Reportedly Investigating…

Read more →

With the right kind of exploit, there’s hardly any function, app, or bit of data an attacker couldn’t access on your Mac, iPad, or iPhone. This article has been indexed from Dark Reading Read the original article: ‘New Class of…

Read more →

The Cybersecurity and Infrastructure Security Agency advises US and European nations to prepare for possible website attacks marking the Feb. 24 invasion of Ukraine by Russia. This article has been indexed from Dark Reading Read the original article: CISA: Beware…

Read more →

Preparation and cooperation helped to mitigate the worst of the digital damage, amid cyber sorties from all sides. This article has been indexed from Dark Reading Read the original article: Evaluating the Cyber War Set Off by Russian Invasion of…

Read more →

Employees of the EU Commission are no longer allowed to use the TikTok app thanks to concerns over data security. This article has been indexed from Dark Reading Read the original article: TikTok Ban Hits EU Commission Phones as Cybersecurity…

Read more →

CISA’s recently released cybersecurity performance goals can help lower risk and thwart the impact of cyberattacks. This article has been indexed from Dark Reading Read the original article: To Safeguard Critical Infrastructure, Go Back to Basics

Read more →

At the inaugural CloudNativeSecurityCon, DevSecOps practitioners discussed how to shore up the software supply chain. This article has been indexed from Dark Reading Read the original article: 87% of Container Images in Production Have Critical or High-Severity Vulnerabilities

Read more →

The number of people who have made the weaponized software available for sharing via torrent suggests that many unsuspecting victims may have downloaded the XMRig coin miner. This article has been indexed from Dark Reading Read the original article: Pirated…

Read more →

“Hundreds” of special education students’ psych records have turned up on the Dark Web. School records like these are covered by FERPA, not HIPAA, so parents have little recourse. This article has been indexed from Dark Reading Read the original…

Read more →

A previously unidentified threat group uses open source malware and phishing to conduct cyber-espionage on shipping and medical labs associated with COVID-19 treatments and vaccines. This article has been indexed from Dark Reading Read the original article: Hydrochasma Threat Group…

Read more →

Generative AI is heating up everywhere and fundamentally changing everything we know about how cybercriminals develop and deploy attacks. This article has been indexed from Dark Reading Read the original article: Generative AI Changes Everything We Know About Cyberattacks

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Forsage Founders Indicted in $340M DeFi Crypto Scheme

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: AUVSI Launches Green UAS Cybersecurity Certification Program For Commercial Drones

Read more →

The produce company said it suffered a ransomware attack earlier this month. This article has been indexed from Dark Reading Read the original article: Cyberattack on Dole Causes Temporary Salad Shortage

Read more →

Diverse ecosystem of global technology, finance, and university leaders join as first OpenWallet Foundation Members, many more expected. This article has been indexed from Dark Reading Read the original article: Linux Foundation Europe Announces Formation of OpenWallet Foundation

Read more →

A novel threat group, utilizing new malware, is out in the wild. But the who, what, where, and why are yet to be determined, and there’s evidence of a false-flag operation. This article has been indexed from Dark Reading Read…

Read more →

A previously unidentified threat group uses open source malware and phishing to conduct cyber-espionage on shipping and medical labs associated with COVID-19 treatments and vaccines. This article has been indexed from Dark Reading Read the original article: Hydrochasma Threat Group…

Read more →

Through its Cybersecurity Assurance Program, UL Solutions is helping the automotive industry advance cybersecurity management systems for connected vehicle technologies. This article has been indexed from Dark Reading Read the original article: UL Solutions Issues Automotive Cybersecurity Assurance Program Certificate…

Read more →

Cybercriminals and hacktivists have joined state-backed actors in using sabotage-bent malware in destructive attacks, new report shows. This article has been indexed from Dark Reading Read the original article: Wiper Malware Surges Ahead, Spiking 53% in 3 Months

Read more →

As a data security solution focused solely on SaaS ecosystems, Metomic will use the Series A funding round to expand into the U.S. This article has been indexed from Dark Reading Read the original article: Metomic Raises $20 Million to…

Read more →

Eliminate passwords in user authentication workflow with Vault Vision’s passkey features like facial recognition, fingerprint and pin verification on all modern devices. This article has been indexed from Dark Reading Read the original article: Vault Vision Launches One Click Passwordless…

Read more →

Security Pro File: The old-school hacker traces a path from young hardware tinkerer to senior cybersecurity executive. This article has been indexed from Dark Reading Read the original article: Cris Thomas: Space Rogue, From L0pht Hacker to IBM Security Influencer

Read more →

(ISC)2 members and cybersecurity professionals worldwide are encouraged to share their expertise, best practices and experiences with their peers and career hopefuls. This article has been indexed from Dark Reading Read the original article: (ISC)² Opens Security Congress 2023 Call…

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Rezilion Research Discovers Hidden Vulnerabilities in Hundreds of Docker Container Images

Read more →

Before adopting SaaS apps, companies should set security guardrails to vet new vendors and check security integration for misconfiguration risks. This article has been indexed from Dark Reading Read the original article: Why Are My Employees Integrating With So Many…

Read more →

CloudNativeSecurityCon North America 2023 was a vendor-neutral cloud-native security conference. Here’s why it was important. This article has been indexed from Dark Reading Read the original article: Top Takeaways From CloudNativeSecurityCon 2023

Read more →

Sharing attestations on software supply chain data that are formed into a policy will give us a framework to interpret risk and develop compliance directives. This article has been indexed from Dark Reading Read the original article: This Will Be…

Read more →

Hackers will take anything newsworthy and turn it against you, including the world’s most advanced AI-enabled chatbot. This article has been indexed from Dark Reading Read the original article: Scammers Mimic ChatGPT to Steal Business Credentials

Read more →

A combined team of UL Solutions safety science experts will address automotive cybersecurity, functional safety, automated driving and software development processes to help customers bring safer, more secure innovations to market. This article has been indexed from Dark Reading Read…

Read more →

The platform uses no-code policy workflows to automate the provisioning and revoking of permissions. This article has been indexed from Dark Reading Read the original article: Entitle Brings Fine-Grained Cloud Permissions Management Out of Stealth

Read more →

Thanks to burnout and stress, Gartner predicts churn and even departure from profession among half of today’s security leaders by 2025. This article has been indexed from Dark Reading Read the original article: 1 in 4 CISOs Wants to Say…

Read more →

Open source software dependencies are affecting the software security of different industries in different ways, with mature industries becoming more selective in their open source usage. This article has been indexed from Dark Reading Read the original article: Half of…

Read more →

A DoD email server hosted in the cloud (and now secured) had no password protection in place for at least two weeks. This article has been indexed from Dark Reading Read the original article: US Military Emails Exposed via Cloud…

Read more →

Google’s Android and Chrome Vulnerability Reward Programs (VRPs) in particular saw hundreds of valid reports and payouts for security vulnerabilities discovered by ethical hackers. This article has been indexed from Dark Reading Read the original article: Google Delivers Record-Breaking $12M…

Read more →

It’s a banner year for attacks coming through traditional email as well as newer collaboration technologies, such as Slack and Microsoft Teams. What’s next? This article has been indexed from Dark Reading Read the original article: Phishing Fears Ramp Up…

Read more →

Despite increased threats, an uncertain economy, and increasing automation, your organization can still thrive. This article has been indexed from Dark Reading Read the original article: Headwinds Don’t Have to Be a Drag on Your Security Effectiveness

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Xcitium Brings ‘Zero Dwell’ Capability to Legacy EDR Platforms

Read more →

Technology tuck-in enhances industry’s broadest XDR security platform. This article has been indexed from Dark Reading Read the original article: Trend Micro Acquires SOC Technology Expert Anlyz

Read more →

Organizations are urged to update to the latest versions of FortiNAC to patch a flaw that allows unauthenticated attackers to write arbitrary files on the system. This article has been indexed from Dark Reading Read the original article: Exploit Code…

Read more →

Attackers are now using multiple types of distributed denial-of-service (DDoS) attacks to take down sites. Here are some ways to defend and protect. This article has been indexed from Dark Reading Read the original article: 4 Tips to Guard Against…

Read more →

How to stay safe, even when tech-savvy admins can’t tell the difference between a scam and the truth. This article has been indexed from Dark Reading Read the original article: 7 Tips for Mitigating Cyber-Risks to Your Corporate Social Media

Read more →

Attribute-based encryption could help keep sensitive metadata off of the Dark Web. This article has been indexed from Dark Reading Read the original article: How to Stop Attackers That Target Healthcare Imaging Data

Read more →

With the fresh capital, Scrut aims to focus on simplifying risk management and infosec compliance for cloud-native SaaS, Fintech, and Healthtech companies This article has been indexed from Dark Reading Read the original article: Scrut Automation Raises Funding of $7.5M,…

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: CREST Calls for Greater Equity, Inclusion and Diversity As Part of…

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Black Hat to Launch Official Certification Program

Read more →

Making the option available only to paid subscribers — while also claiming SMS authentication is broken — doesn’t make sense, some say. Is it a cash grab? This article has been indexed from Dark Reading Read the original article: Analysts…

Read more →

Latest threat prevention module helps resource-strapped security teams block unsafe, untrusted or vulnerable applications. This article has been indexed from Dark Reading Read the original article: Malwarebytes Expands Platform With New Application Block Capabilities

Read more →

Nation-state adversaries, new reporting regulations, and a fast-paced threat landscape mean that financial services and technology firms need to bolster their security posture. This article has been indexed from Dark Reading Read the original article: Cyberthreats, Regulations Mount for Financial…

Read more →

An Israeli university is being blackmailed by hackers. However, they aren’t just after money but are looking to send a political message — and maybe something more. This article has been indexed from Dark Reading Read the original article: Israel’s…

Read more →

Fintech has drastically shifted the financial services industry toward digital technologies and, in so doing, has introduced a variety of new risks. This article has been indexed from Dark Reading Read the original article: Third-Party Providers Create Identity and Access…

Read more →

Some employees’ personal data was leaked, but the company responded swiftly to a socially engineered incident that gained access to legitimate employee login credentials. This article has been indexed from Dark Reading Read the original article: Coinbase Crypto Exchange Ensnared…

Read more →

Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card. This article has been indexed from Dark Reading Read the original article: Name That Toon: Join the Club

Read more →

By implementing tools that enable internal users to do their jobs efficiently and securely, companies reduce insider threat risk by building insider trust. This article has been indexed from Dark Reading Read the original article: Insider Threats Don’t Mean Insiders…

Read more →

Open source has changed the software game from build or buy to assemble with care. This article has been indexed from Dark Reading Read the original article: Modern Software: What’s Really Inside?

Read more →

New research shows that 57 vulnerabilities that threat actors are currently using in ransomware attacks enable everything from initial access to data theft. This article has been indexed from Dark Reading Read the original article: Majority of Ransomware Attacks Last…

Read more →

The system based on deep reinforcement learning can adapt to defenders’ tactics and stop 95% of simulated attacks, according to its developers. This article has been indexed from Dark Reading Read the original article: Researchers Create an AI Cyber Defender…

Read more →

What’s scarier than keeping all of your passwords in one place and having that place raided by hackers? Maybe reusing insecure passwords. This article has been indexed from Dark Reading Read the original article: Despite Breach, LastPass Demonstrates the Power…

Read more →

A growing group of OWASP members and board leaders are calling for the AppSec group to make big changes to stay apace with modern development. This article has been indexed from Dark Reading Read the original article: Is OWASP at…

Read more →

BEC gangs Midnight Hedgehog and Mandarin Capybara show how online marketing and translation tools are making it easy for these threat groups to scale internationally. This article has been indexed from Dark Reading Read the original article: Google Translate Helps…

Read more →

The primary victims so far have been employees of telcos in the Middle East, who were hit with custom backdoors via the cloud, in a likely precursor to a broader attack. This article has been indexed from Dark Reading Read…

Read more →