Category: Dark Reading

Mainly Apple iOS in-app ads were targeted, injecting malicious JavaScript code to rack up phony views. This article has been indexed from Dark Reading Read the original article: Massive Adware Campaign Shuttered

Read more →

Traditional compliance and IAM are insufficient to secure the modern enterprise. We must shift left with modern access controls to avoid costly data breaches. This article has been indexed from Dark Reading Read the original article: Shift Identity Left: Preventing…

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Roaming Mantis Uses DNS Changers to Target Users via Compromised Public…

Read more →

Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card. This article has been indexed from Dark Reading Read the original article: Name That Toon: Poker Hand

Read more →

Craft specific awareness training for high-exposure teams like finance, and reinforce other critical awareness training across the organization. This article has been indexed from Dark Reading Read the original article: As Social Engineering Tactics Change, So Must Your Security Training

Read more →

The report highlights concerning security stats following two years of extreme tech growth. This article has been indexed from Dark Reading Read the original article: The Media Industry Is the Most Vulnerable to Cyber Attacks, Report Shows

Read more →

ICS/OT cybersecurity firm finds 35% of CVEs in second half of 2022 unpatchable. This article has been indexed from Dark Reading Read the original article: SynSaber Releases ICS Vulnerabilities & CVEs Report Covering Second Half of 2022

Read more →

New program enables students and early career professionals to learn critical skills required in today’s entry-level cybersecurity field, helping address urgent cyber workforce jobs gap. This article has been indexed from Dark Reading Read the original article: International Council of…

Read more →

KnowBe4 partners with the Center for Cyber Safety and Education to bolster women in cybersecurity for the fourth consecutive year. This article has been indexed from Dark Reading Read the original article: KnowBe4 to Offer $10,000 Women in Cybersecurity Scholarship…

Read more →

Open architecture, non-standalone roaming, nation-state attacks, ransomware, and the need for more industry collaboration are among the major 5G security challenges that operators must address in the year ahead. This article has been indexed from Dark Reading Read the original…

Read more →

Research shows that over 50% of organizations performing software development struggle with fully integrating security into their software development lifecycle. This article has been indexed from Dark Reading Read the original article: New Research From EMA Reveals How Organizations Are…

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Mendix and Software Improvement Group Launch a New Software Application Quality…

Read more →

There’s a fine line between a hacker and an attacker, but it pays to be proactive. Consider tests by ethical hackers, a red team, or pen testers, and then bolster your company’s defenses against malicious attacks. This article has been…

Read more →

The growing use of mobile devices for MFA and the proliferation of 5G and VoIP in general could result in more attacks in future, experts say. This article has been indexed from Dark Reading Read the original article: Cybercriminals Target…

Read more →

Ensuring that data can be easily discovered, classified, and secured is a crucial cornerstone of a data security strategy. This article has been indexed from Dark Reading Read the original article: Data Security in Multicloud: Limit Access, Increase Visibility

Read more →

Without noncompetes, how do organizations make sure employees aren’t taking intellectual property when they go work to work for a competitor? This article has been indexed from Dark Reading Read the original article: How Would the FTC Rule on Noncompetes…

Read more →

These specialized database servers, which collect and archive information on device operation, often connect IT and OT networks. This article has been indexed from Dark Reading Read the original article: Vulnerable Historian Servers Imperil OT Networks

Read more →

The powerful AI bot can produce malware without malicious code, making it tough to mitigate. This article has been indexed from Dark Reading Read the original article: ChatGPT Could Create Polymorphic Malware Wave, Researchers Warn

Read more →

Layoffs intended to cut costs, help company shift its focus on cybersecurity services, Sophos says. This article has been indexed from Dark Reading Read the original article: Sophos Cuts Jobs to Focus on Cybersecurity Services

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Founder and Majority Owner of Cryptocurrency Exchange Charged With Processing Over…

Read more →

KnowBe4 releases overall 2022 and Q4 2022 global phishing test reports and finds business-related emails continue to be utilized as a phishing strategy and reveal top holiday email phishing subjects. This article has been indexed from Dark Reading Read the…

Read more →

New module introduces shadow SaaS application discovery, monitoring, and remediation to protect businesses from supply chain attacks. This article has been indexed from Dark Reading Read the original article: DoControl Announces SaaS Security Platform Expansion With Shadow Apps Module Launch

Read more →

From updating employee education and implementing stronger authentication protocols to monitoring corporate accounts and adopting a zero-trust model, companies can better prepare defenses against chatbot-augmented attacks. This article has been indexed from Dark Reading Read the original article: ChatGPT Opens…

Read more →

Threat actors are diversifying across all aspects to attack critical infrastructure, muddying the threat landscape, and forcing industrial organizations to rethink their security. This article has been indexed from Dark Reading Read the original article: ICS Confronted by Attackers Armed…

Read more →

The latest critical bug is exploitable in dozens of ManageEngine products and exposes systems to catastrophic risks, researchers warn. This article has been indexed from Dark Reading Read the original article: Unpatched Zoho ManageEngine Products Open to Possible Attack

Read more →

Range of Addressable Concerns Includes “Brute Forcing Accounts with Weak Passwords” and “Excessive File System Permissions.” This article has been indexed from Dark Reading Read the original article: Lares Research Highlights Top 5 Penetration Test Findings From 2022

Read more →

CISOs’ top cloud challenge is harmonizing standards, policies, and procedures across blended environments. This article has been indexed from Dark Reading Read the original article: Governance in the Cloud Shifts Left

Read more →

People are working harder than ever, but they’re not happy about it — and the insider threat is all too real. This article has been indexed from Dark Reading Read the original article: Cybersecurity and the Myth of Quiet Quitting

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: New Coalfire Report Reveals CISOs Rising Influence

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Abacus Group Acquires Gotham Security and GoVanguard to Expand Cybersecurity Service…

Read more →

With Actions Integrations, Okta is expanding its no-code offerings to help administrators manage and customize their identity workflow. This article has been indexed from Dark Reading Read the original article: Okta Expands No-Code Offerings for Identity Cloud

Read more →

Companies are being urged to update 0Auth, runner, and project API tokens, along with other secrets stashed with CircleCI. This article has been indexed from Dark Reading Read the original article: Secrets Rotation Recommended After CircleCI Security Incident

Read more →

A rapid increase in the number of operators in the space — the “locksmiths” of the cyber underground — has made it substantially cheaper for cybercriminals to buy access to target networks. This article has been indexed from Dark Reading…

Read more →

The latest critical bug is exploitable in dozens of ManageEngine products and exposes systems to catastrophic risks, researchers warn. This article has been indexed from Dark Reading Read the original article: Unpatched Zoho MangeEngine Products Under Active Cyberattack

Read more →

VIPRE Endpoint Detection & Response (EDR) delivers streamlined, sophisticated, high-performing cloud-based EDR management in a single, easy-to-navigate console. This article has been indexed from Dark Reading Read the original article: VIPRE Security Group Launches New Endpoint Detection and Response (EDR)…

Read more →

Security professionals must update their skill sets and be proactive to stay ahead of cybercriminals. It’s time to learn to think and act like an attacker to cope with the cyber “new normal.” This article has been indexed from Dark…

Read more →

Open source AI is lowering the barrier of entry for cybercriminals. Security teams must consider the right way to apply defensive AI to counter this threat. This article has been indexed from Dark Reading Read the original article: A New…

Read more →

Standalone product provides permission insights for Active Directory security and compliance. This article has been indexed from Dark Reading Read the original article: Cygna Labs Introduces Entitlement and Security for Active Directory

Read more →

In 2022, multiple high-profile vulnerabilities like Log4j and OpenSSL provided important takeaways for future public reporting. This article has been indexed from Dark Reading Read the original article: 3 Lessons Learned in Vulnerability Management

Read more →

Following these basic cybersecurity hygiene policies can help make data more secure and protect colleges and universities from becoming the next ransomware headline. The steps aren’t complicated, and they won’t break the bank. This article has been indexed from Dark…

Read more →

Two of the vulnerabilities — in Azure Functions and Azure Digital Twins — required no account authentication for an attacker to exploit them. This article has been indexed from Dark Reading Read the original article: Microsoft Patches 4 SSRF Flaws in…

Read more →

Default settings can leave blind spots but avoiding this issue can be done. This article has been indexed from Dark Reading Read the original article: The Dangers of Default Cloud Configurations

Read more →

About three-quarters of Java and .NET applications have vulnerabilities from the OWASP Top 10 list, while only 55% of JavaScript codebases have such flaws, according to testing data. This article has been indexed from Dark Reading Read the original article:…

Read more →

Password manager accounts may have, ironically, been compromised via simple credential stuffing, thanks to password reuse. This article has been indexed from Dark Reading Read the original article: Norton LifeLock Warns on Password Manager Account Compromises

Read more →

Analyzing and learning from incidents is the ideal path to finding more insightful data and metrics, according to the VOID report. This article has been indexed from Dark Reading Read the original article: Why Mean Time to Repair Is Not…

Read more →

The bargain T95 Android TV device was delivered with preinstalled malware, adding to a trend of Droid devices coming out-of-the-box tainted. This article has been indexed from Dark Reading Read the original article: Malware Comes Standard With This Android TV…

Read more →

Rhadamanthys spreads through Google Ads that redirect to bogus download sites for popular workforce software — as well as through more typical malicious emails. This article has been indexed from Dark Reading Read the original article: Sneaky New Stealer Woos…

Read more →

High-profile software provider compromises in the past few months show that threat actors are actively targeting the services underpinning corporate infrastructure. Here’s what to do about it. This article has been indexed from Dark Reading Read the original article: CircleCI,…

Read more →

Establish clear and consistent processes and standards to scale lite threat modeling’s streamlined approach across your organization. This article has been indexed from Dark Reading Read the original article: Fast-Track Secure Development Using Lite Threat Modeling

Read more →

This move accelerates the company’s vision of becoming the de facto identity security platform of choice for the modern enterprise. This article has been indexed from Dark Reading Read the original article: SailPoint Acquires SecZetta to Provide Identity Security for…

Read more →

Critical national infrastructure, widespread cybercrime, and cyber insecurity are major risks in the report This article has been indexed from Dark Reading Read the original article: WEF’s Global Risks Report 2023 Keeps Cybersecurity on the Agenda

Read more →

SBOMs aren’t enough. OpenSSF’s Alpha-Omega brings in new blood to help secure the open source projects most impactful to the software supply chain. This article has been indexed from Dark Reading Read the original article: Software Supply Chain Security Needs…

Read more →

In the ad, cybercriminals are offering to sell employee-level access to Telegram, researchers warn. This article has been indexed from Dark Reading Read the original article: $20K Buys Insider Access to Telegram Servers, Dark Web Ad Claims

Read more →

A security vendor’s investigation of infrastructure associated with a new, crypto-focused Magecart skimmer leads to discovery of cryptoscam sites, malware distribution marketplace, Bitcoin mixers, and more. This article has been indexed from Dark Reading Read the original article: Researchers Find…

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Darktrace Publishes 2022 Cyberattack Trend Data For Energy, Healthcare & Retail…

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Cloudflare Expands Relationship With Microsoft

Read more →

Corsha’s Annual State of API Secrets Management Report finds over 50% of respondents suffered a data breach due to compromised API secrets. This article has been indexed from Dark Reading Read the original article: New Survey Sheds Light on Why…

Read more →

Unpatched Cisco bugs, tracked as CVE-2023-20025 and CVE-2023-20026, allow lateral movement, data theft, and malware infestations. This article has been indexed from Dark Reading Read the original article: Critical Cisco SMB Router Flaw Allows Authentication Bypass, PoC Available

Read more →

This move accelerates the company’s vision of becoming the de facto identity security platform of choice for the modern enterprise. This article has been indexed from Dark Reading Read the original article: SailPoint Acquires SecZetta to Provide Comprehensive Identity Security…

Read more →

Energy has become the new battleground for both physical and cyber security warfare, driven by nation state actors, increasing financial rewards for ransomware gangs and decentralized devices. Chris Price reports. This article has been indexed from Dark Reading Read the…

Read more →

Russia’s NoName057(16) group offers incentives and prizes via Telegram channel for “heroes” to mount attacks against targets within Ukraine and pro-Ukrainian countries. This article has been indexed from Dark Reading Read the original article: Big Prizes, Cash on Offer for…

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Man Sentenced for Role in International Telemarketing Scheme

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Hack the Box Secures $55 Million in Series B Funding Led…

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: 1 in 3 Organizations Do Not Provide Any Cybersecurity Training to…

Read more →

Organizations must be vigilant about balancing performance gains with security, governance, and compliance as they expand their use of Kubernetes. This article has been indexed from Dark Reading Read the original article: Kubernetes-Related Security Projects to Watch in 2023

Read more →

This Tech Tip outlines the steps enterprise defenders should take as they protect their data in cloud environments in response to the security incident with the CI/CD platform. This article has been indexed from Dark Reading Read the original article:…

Read more →

Space Rogue gives a behind the scenes look at the famous hacking group, their senate testimony, and how their legacy continues to shape the security of the online world today. This article has been indexed from Dark Reading Read the…

Read more →

Organizations are looking for new methods to safeguard the virtual machines, containers, and workload services they use in the cloud. This article has been indexed from Dark Reading Read the original article: 5 Ways Cybersecurity for Cloud Workloads Will Evolve…

Read more →

Traditional metrics don’t reflect real-world severity. Instead, analyzing previously reported incidents can help teams decide how to react, a new report says. This article has been indexed from Dark Reading Read the original article: Why Analyzing Past Incidents Helps Teams…

Read more →

Current defenses are able to protect against today’s AI-enhanced cybersecurity threats, but that won’t be the case for long as these attacks become more effective and sophisticated. This article has been indexed from Dark Reading Read the original article: Better…

Read more →

Catchpoint’s Internet Performance Monitoring Platform helps IT teams identify and mitigate BGP incidents, including hijack attempts and routing issues, with the industry’s broadest network of vantage points in the world drawing on real-time BGP monitoring. This article has been indexed…

Read more →

School to resume Thursday, Jan. 12, after Iowa school district detected unusual network activity and pulled the plug. This article has been indexed from Dark Reading Read the original article: Cyberattack Cancels Classes for Des Moines Public Schools

Read more →

CISOs’ top cloud challenge is harmonizing standards, policies, and procedures across blended environments. This article has been indexed from Dark Reading Read the original article: Governance in the Cloud Shifts Left

Read more →

With artificial intelligence poised to displace many SOC professionals, it’s important to think ahead to potential niches for cybersmart humans — even to outer space. This article has been indexed from Dark Reading Read the original article: Cyber Jobs of…

Read more →

Jesper Andersen has decided to retire and will continue to serve on the Board of Directors. This article has been indexed from Dark Reading Read the original article: Infoblox Appoints Scott Harrell to CEO

Read more →

Shift your mindset from risk to resilience. This article has been indexed from Dark Reading Read the original article: The Resolution Every CSO/CISO Should Make This Year

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Cloudflare Announces Email Security & Data Protection Tools

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: SecureAuth Announces Seven New Patents for Biobehavioral Credentials for Continuous Authentication,…

Read more →

After a delay of more than a year, Intel’s on-chip confidential computing feature is coming to all the major cloud providers, starting with Microsoft’s Azure. This article has been indexed from Dark Reading Read the original article: Intel’s New Xeon…

Read more →

Microsoft’s January 2023 Patch Tuesday security update contains fixes for bugs in multiple products. Here’s what you need to patch now. This article has been indexed from Dark Reading Read the original article: 98 Patches: Microsoft Greets New Year With…

Read more →

Are you asking the right questions about potential scenarios when thinking about disaster recovery and business continuity? This article has been indexed from Dark Reading Read the original article: Security Planning: Ask What Could Go Wrong

Read more →

While it has been a perennial forecast that efficient universal quantum computers are “a decade away,” that prospect now seems a legitimate possibility. Organizations need to get ready now. This article has been indexed from Dark Reading Read the original…

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Bay Bridge Administrators, LLC Notifies Individuals of Data Breach

Read more →

Supreme Court rules WhatsApp can sue NSO Group for damages caused by unauthorized Pegasus spyware installations. This article has been indexed from Dark Reading Read the original article: SCOTUS OKs WhatsApp Suit Against NSO Group

Read more →

US cybersecurity services firm continues expansion into Latin America. This article has been indexed from Dark Reading Read the original article: Cerberus Sentinel to Acquire RAN Security

Read more →

Vice Society is boasting that it compromised the San Francisco transportation system, while BART maintains operations and mounts an investigation. This article has been indexed from Dark Reading Read the original article: San Fran’s BART Investigates Vice Society Data Breach…

Read more →

A paper by two dozen Chinese researchers maintains that near-future quantum computers could crack RSA-2048 encryption, but experts call the claims misleading. This article has been indexed from Dark Reading Read the original article: Quantum Decryption Breakthrough? Not So Fast

Read more →

The cryptomining malware, which typically targets Linux, is exploiting weaknesses in an open source container tool for initial access to cloud environments. This article has been indexed from Dark Reading Read the original article: Microsoft: Kinsing Targets Kubernetes via Containers,…

Read more →

While it has been a perennial forecast that efficient universal quantum computers are “a decade away,” that prospect now seems a legitimate possibility. Organizations need to get ready now. This article has been indexed from Dark Reading Read the original…

Read more →

nVisium’s cloud and application security experts join NetSPI to support, scale, and deliver the most comprehensive suite of offensive security solutions. This article has been indexed from Dark Reading Read the original article: NetSPI Acquires nVisium

Read more →

Moving Analytics, leading provider of virtual cardiac rehabilitation and prevention, announced that it is launching single sign on authentication for its entire software platform. This article has been indexed from Dark Reading Read the original article: Moving Analytics Launches Single…

Read more →

Annual survey uncovers surprising data but warns against complacency. This article has been indexed from Dark Reading Read the original article: Delinea 2022 State of Ransomware Report Reveals That Attacks Are Down 61% From the Previous Year, and Ransom Payments…

Read more →

401 distinct cloud apps shown to deliver malware; Microsoft OneDrive delivered 30% of all cloud malware downloads. This article has been indexed from Dark Reading Read the original article: Netskope Threat Research: Malware-Delivering Cloud Apps Nearly Tripled in 2022

Read more →

2023 Security Service Edge (SSE) Adoption Report finds that SSE technology addresses key pain points including much-needed solution consolidation, transition to hybrid work and need for hardened security. This article has been indexed from Dark Reading Read the original article:…

Read more →

New Add-On Empowers SOCs and MSPs to Automate & Orchestrate Incident Response for Microsoft 365. This article has been indexed from Dark Reading Read the original article: Vade Releases Advanced Threat Intel & Investigation Capabilities

Read more →

Hacking to kill: Dark Reading’s Fahmida Y. Rashid reflects on the monumental Black Hat 2011 moment when Jay Radcliffe showed how to hack his insulin pump. This article has been indexed from Dark Reading Read the original article: Black Hat…

Read more →

The issue concerns the boot layer of ARM chips, which are driving a low-power mobile ecosystem that includes 5G smartphones and base stations. This article has been indexed from Dark Reading Read the original article: Latest Firmware Flaws in Qualcomm…

Read more →

The issue concerns the boot layer of ARM chips, which are driving a low-power mobile ecosystem that includes 5G smartphones and base stations. This article has been indexed from Dark Reading Read the original article: Firmware Vulnerability in Chips Helps…

Read more →

The AI-based chatbot is allowing bad actors with absolutely no coding experience to develop malware. This article has been indexed from Dark Reading Read the original article: Attackers Are Already Exploiting ChatGPT to Write Malicious Code

Read more →

The Serbian government reports that it staved off five attacks aimed at crippling Serbian infrastructure. This article has been indexed from Dark Reading Read the original article: Serbia Slammed With DDoS Attacks

Read more →