Category: Dark Reading

Back to basics is a good start, but too often security teams don’t handle their deployment correctly. Here’s how to avoid the common pitfalls. This article has been indexed from Dark Reading Read the original article: Cyber Hygiene: A First…

Read more →

Traditional CAPTCHAs, such as reCAPTCHA, no longer protect online businesses adequately. Real users hate them. Bots bypass them. It’s time to upgrade. This article has been indexed from Dark Reading Read the original article: Don’t Get Burned by CAPTCHAs: A…

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Latest Acquisition Powers AI-based Network Detection and Response and Open XDR…

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Wing Security Launches Compliance-Grade SaaS Security Solution for Just $1.5K

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: ClassLink Provides Cybersecurity Training Course to Help Schools Protect Public Directory…

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Recast Software Acquires Liquit, Consolidating the Endpoint and Application Management Markets

Read more →

What application security posture management does, it does well. But you’ll still need to fill in some holes, especially concerning API security. This article has been indexed from Dark Reading Read the original article: ASPM Is Good, But It’s Not…

Read more →

Whether achieved through AI-enabled automation, proactive identification and resolution of issues, or the equitable distribution of risk management responsibilities, the goal must be resilience. This article has been indexed from Dark Reading Read the original article: Guardians of the Cyberverse:…

Read more →

Cisco’s surprise agreement could reshape secure information and event management (SIEM) and extended detection and response (XDR) markets. This article has been indexed from Dark Reading Read the original article: Cisco Moves Into SIEM With $28B Deal to Acquire Splunk

Read more →

Cisco’s surprise agreement could reshape secure information and event management (SIEM) and extended detection and response (XDR) markets. This article has been indexed from Dark Reading Read the original article: Cisco Moves into SIEM with $28B Deal to Acquire Splunk

Read more →

The Sandman group’s main malware is among the very few that use the Lua scripting language and its just-in-time compiler. This article has been indexed from Dark Reading Read the original article: Mysterious ‘Sandman’ APT Targets Telecom Sector With Novel…

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Salvador Technologies Wins Funding for $2.2M Cybersecurity Project From BIRD Foundation

Read more →

It’s time to focus on the “P” in cybersecurity performance management. This article has been indexed from Dark Reading Read the original article: What Does Socrates Have to Do With CPM?

Read more →

A financially motivated threat actor uses known vulnerabilities, ordinary TTPs, and off-the-shelf tools to exploit the unprepared, highlighting the fact that many organizations still don’t focus on the security basics. This article has been indexed from Dark Reading Read the…

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: OPSWAT-Sponsored SANS 2023 ICS/OT Cybersecurity Report Reveals Vital Priorities to Mitigate…

Read more →

The mobile company states that the issue was due to a glitch that occurred in an update. This article has been indexed from Dark Reading Read the original article: T-Mobile Racks Up Third Consumer Data Exposure of 2023

Read more →

The lost revenue due to downtime for gaming and hotel bookings is difficult to ballpark. This article has been indexed from Dark Reading Read the original article: MGM Restores Casino Operations 10 Days After Cyberattack

Read more →

The intercoms are used in thousands of apartments and offices across the world, and they can be used to spy on targets through the other devices they connect to. This article has been indexed from Dark Reading Read the original…

Read more →

Attackers use convincing fake website interfaces and sophisticated geo-fencing to target users exclusively in Mexico and Brazil with a new variant of the malware. This article has been indexed from Dark Reading Read the original article: BBTok Banking Trojan Impersonates…

Read more →

Though widely used in many organizations, the concept still requires adaptation when aimed at protecting against new types of attacks. This article has been indexed from Dark Reading Read the original article: Mastering Defense-In-Depth and Data Security in the Cloud…

Read more →

The nature of cloud environments means security and technical teams need a different mindset to understand and manage their new attack surface. This article has been indexed from Dark Reading Read the original article: Understanding the Differences Between On-Premises and…

Read more →

The bug has a CVSS score of 9.6 and allows unauthorized users to compromise private repositories. This article has been indexed from Dark Reading Read the original article: GitLab Users Advised to Update Against Critical Flaw Immediately

Read more →

A linguist analyzes whether GPT will improve the notoriously agrammatical scam — or finally render it a thing of the past. This article has been indexed from Dark Reading Read the original article: Will Generative AI Kill the Nigerian Prince…

Read more →

The group’s use of malware that forces Windows computers to reboot into Safe Mode before encrypting files is noteworthy, advisory says. This article has been indexed from Dark Reading Read the original article: FBI, CISA Issue Joint Warning on ‘Snatch’…

Read more →

A supposed exploit for a notable RCE vulnerability in the popular Windows file-archiving utility delivers a big sting for unwitting researchers and cybercriminals. This article has been indexed from Dark Reading Read the original article: Fake WinRAR PoC Exploit Conceals…

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: 83% of IT Security Professionals Say Burnout Causes Data Breaches

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Bishop Fox Expands Leadership With First CISO and CTO

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: OneLayer Expands Its Private Cellular Network Security Solutions to Operations and…

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Dig Security Enhances DSPM Platform to Secure Enterprise Data in On-Prem,…

Read more →

The ICC did not reveal details on the cyber breach. This article has been indexed from Dark Reading Read the original article: International Criminal Court Suffers Cyberattack

Read more →

MFA may go a long way in improving password security, but it’s not foolproof. This article has been indexed from Dark Reading Read the original article: How Choosing Authentication Is a Business-Critical Decision

Read more →

The GitLab code hijacks computer resources to mine Dero cryptocurrency as part of a larger cryptomining operation. This article has been indexed from Dark Reading Read the original article: ‘Culturestreak’ Malware Lurks Inside GitLab Python Package

Read more →

The CISO’s role has grown far beyond supervising Patch Tuesday to focus on prevention and response and to cover people, processes, and technology. This article has been indexed from Dark Reading Read the original article: Changing Role of the CISO:…

Read more →

The group known as “Cyber Avengers” has targeted other Israeli services in the past and often publishes technical details of its hits. This article has been indexed from Dark Reading Read the original article: Pro-Iranian Attackers Target Israeli Railroad Network

Read more →

To protect their own and their customers’ data, organizations are exploring different approaches to guard against unwanted effects of using AI. This article has been indexed from Dark Reading Read the original article: Companies Rely on Multiple Methods to Secure…

Read more →

“SprySOCKS” melds features from multiple previously known badware and adds to the threat actor’s growing malware arsenal, Trend Micro says. This article has been indexed from Dark Reading Read the original article: China-Linked Actor Taps Linux Backdoor in Forceful Espionage…

Read more →

The critical vulnerability involves uninstalling third-party security products and has been used in cyberattacks. This article has been indexed from Dark Reading Read the original article: Trend Micro Patches Zero-Day Endpoint Vulnerability

Read more →

MGM and Caesars are putting new SEC incident disclosure regulations to a real-world test in the aftermath of twin cyberattacks on the casinos, as class-action lawsuits loom. This article has been indexed from Dark Reading Read the original article: MGM,…

Read more →

The WebP vulnerability affects multiple browsers besides Firefox and Thunderbird, with active exploitation ongoing. This article has been indexed from Dark Reading Read the original article: Qatar Cyber Chiefs Warn on Mozilla RCE Bugs

Read more →

Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card. This article has been indexed from Dark Reading Read the original article: Name That Toon: Somewhere in Sleepy Hollow

Read more →

Everyone’s favorite pandemic-era brand is experiencing store shortages in the wake of a cyberattack that impacted its global production lines — and there’s no timeline for normal operations to resume. This article has been indexed from Dark Reading Read the…

Read more →

Pakistani threat group Transparent Tribe targets military and diplomatic personnel in India and Pakistan with romance-themed lures in the latest spyware campaign. This article has been indexed from Dark Reading Read the original article: CapraRAT Impersonates YouTube to Hijack Android…

Read more →

The worst-case consequences of cyberattacks are sharply, qualitatively different on IT versus OT networks. This article has been indexed from Dark Reading Read the original article: Engineering-Grade OT Protection

Read more →

The threat cluster hasn’t been seen before, but its custom Windows server backdoors have researchers intrigued thanks to their extremely effective stealth mechanisms. This article has been indexed from Dark Reading Read the original article: ‘ShroudedSnooper’ Backdoors Use Ultra-Stealth in…

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Omdia Research Finds Risk-Based Vulnerability Management Set to Encompass the Vulnerability…

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Niagara Networks and Scope Middle East Announce Strategic VAD Partnership

Read more →

“Silent Skimmer” is a technically complex campaign that has successfully targeted online businesses in the Asia Pacific region for over a year. This article has been indexed from Dark Reading Read the original article: Payment Card-Skimming Campaign Now Targeting Websites…

Read more →

Shared Access Signature (SAS) link exposed a storage bucket with 38TB of private data, including passwords, Teams messages, and the backups of two Microsoft AI research employees’ workstations. This article has been indexed from Dark Reading Read the original article:…

Read more →

The LockBit group is using native IT management software to live off the land, planting and then spreading itself before deploying its ransomware. This article has been indexed from Dark Reading Read the original article: LockBit Is Using RMMs to…

Read more →

Conferences are where vendors and security researchers meet face to face to address problems and discuss solutions — in public. This article has been indexed from Dark Reading Read the original article: Security Conferences Keep Us Honest

Read more →

Generative AI models are forcing companies to become creative in how they keep employees from giving away sensitive data. This article has been indexed from Dark Reading Read the original article: Companies Explore Ways to Safeguard Data in the Age…

Read more →

CISOs can refine their soft skills to help get their cybersecurity best-practices message across. Steps include increasing staff incident-response training and staying current with the threat landscape. This article has been indexed from Dark Reading Read the original article: How…

Read more →

The funds will be used to expand its global presence beyond Europe and the US. This article has been indexed from Dark Reading Read the original article: Dragos Raises $74M in Latest Funding Round

Read more →

A pledge to solve the skills and talent shortage by the US government has seen one Nigerian company join the effort and aid Africa. This article has been indexed from Dark Reading Read the original article: A Playbook for Bridging…

Read more →

The global infosec community needs to help African nations defend against growing threats. This article has been indexed from Dark Reading Read the original article: Supporting Africa’s Cybersecurity Talent Makes the World Safer

Read more →

Just like with using open source, organizations need to be diligent about testing AI components and understanding where and how it is used in their software. This article has been indexed from Dark Reading Read the original article: AI in…

Read more →

Before working with new vendors, it’s important to understand the potential risks they may pose to your digital environments. This article has been indexed from Dark Reading Read the original article: Evaluating New Partners and Vendors From an Identity Security…

Read more →

Escalating incursions into military base infrastructure, telecom networks, utilities, and more signal that Beijing is laying the groundwork for mass disruption. This article has been indexed from Dark Reading Read the original article: DoD: China’s ICS Cyber Onslaught Aimed at…

Read more →

The maintainers of the widely used library recently patched multiple memory corruption vulnerabilities that attackers could have abused to, ahem, curse targets with malicious code and escalate privileges. This article has been indexed from Dark Reading Read the original article:…

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: CISO Global Deepens Capabilities With Integrated Threat Intelligence Feed

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Enea Qosmos Threat Detection SDK Launched to Boost the Performance of…

Read more →

ALPHV/BlackCat ransomware operators have used their leak site to “set the record straight” about the MGM Resorts cyberattack. Meanwhile, more attacks abusing Okta could be likely. This article has been indexed from Dark Reading Read the original article: Okta Flaw…

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Armis Launches Armis Centrix™, the AI-powered Cyber Exposure Management Platform

Read more →

This incident bears notable resemblance to an attack that occurred just last month affecting London’s Metropolitan Police, raising concerns over UK cybersecurity safeguards for public safety. This article has been indexed from Dark Reading Read the original article: Greater Manchester…

Read more →

For months, the Iran-backed APT has carried out waves of password spray attacks attempting to authenticate to thousands of environments across multiple targets worldwide. This article has been indexed from Dark Reading Read the original article: Microsoft: ‘Peach Sandstorm’ Cyberattacks…

Read more →

Ransomware becoming less of a factor as threat actors extort businesses with payment options that are less than regulatory fines. This article has been indexed from Dark Reading Read the original article: NCSC: Why Cyber Extortion Attacks No Longer Require…

Read more →

Trust is the crucial bridge between security and people, but excessive or misguided trust can pose serious security risks. This article has been indexed from Dark Reading Read the original article: How to Mitigate Cybersecurity Risks From Misguided Trust

Read more →

Dark Reading News Desk: CrowdStrike’s Adam Meyers talks China, Iran, Russia, and more in this expert dive into the current APT threat actor landscape. This article has been indexed from Dark Reading Read the original article: Why Identity Management Is…

Read more →

The exploit is one of many that government and intelligence agencies have to infect target devices with the notorious surveillance tool. This article has been indexed from Dark Reading Read the original article: Zero-Click iPhone Exploit Drops Pegasus Spyware on…

Read more →

Collaboration apps are a boost to business productivity, but also a uniquely attractive target for cyberattackers. This article has been indexed from Dark Reading Read the original article: Microsoft Teams Hacks Are Back, As Storm-0324 Embraces TeamsPhisher

Read more →

Pursuant to new regulation, both gaming companies reported recent cyber incidents to the SEC. This article has been indexed from Dark Reading Read the original article: MGM, Caesars File SEC Disclosures on Cybersecurity Incidents

Read more →

The false advertisement has been left up for days, flying under the radar by managing to adhere to Google Ads’ policies. This article has been indexed from Dark Reading Read the original article: Cybercriminals Use Webex Brand to Target Corporate…

Read more →

In a notable shift in strategy, the threat actors are abusing code-signing certificates to spread a double whammy of infostealers and ransomware payloads. This article has been indexed from Dark Reading Read the original article: Stealer Thugs Behind RedLine &…

Read more →

The Russian-speaking ransomware gang continues to update its tactics while managing to steal highly sensitive information from its victims. This article has been indexed from Dark Reading Read the original article: Cuba Ransomware Gang Continues to Evolve With Dangerous Backdoor

Read more →

Leverage the human layer as a crucial cog in building cyber resilience within the organization. This article has been indexed from Dark Reading Read the original article: How to Transform Security Awareness Into Security Culture

Read more →

Around 900 pages were identified as using Arabic language and familiar brand names to snare users and steal their money and personal details — presenting big brand protection issues for retailers. This article has been indexed from Dark Reading Read…

Read more →

It takes a diverse village of experts to enact effective cybersecurity guidelines, practices, and processes. This article has been indexed from Dark Reading Read the original article: Cybersecurity and Compliance in the Age of AI

Read more →

Sports teams, major leagues, global sporting associations, and entertainment venues are all home to valuable personal and business data. Here’s how to keep them safe. This article has been indexed from Dark Reading Read the original article: Professional Sports: The…

Read more →

The ransomware group is a collection of young adults, and also recently breached Caesars Entertainment and made a ransom score in the tens of millions range. This article has been indexed from Dark Reading Read the original article: ‘Scattered Spider’…

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: NordVPN Launches Sonar to Prevent Phishing Attacks

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Claroty Unveils Vulnerability & Risk Management Capabilities to Elevate Risk Reduction…

Read more →

All Windows endpoints within a vulnerable Kubernetes cluster are open to command injection attacks, new research finds. This article has been indexed from Dark Reading Read the original article: Kubernetes Admins Warned to Patch Clusters Against New RCE Vulns

Read more →

CISOs in the rail industry must protect an older, more complex infrastructure than most industries. Here are some of the unique, high-stakes challenges. This article has been indexed from Dark Reading Read the original article: Rail Cybersecurity Is a Complex…

Read more →

To boot, the technology could be riddled with other flaws via its Apache services components, a security vendor says. This article has been indexed from Dark Reading Read the original article: Microsoft Azure HDInsight Plagued With XSS Vulnerabilities

Read more →

In October, the US Food and Drug Administration will start rejecting medical devices that lack a secure design or a post-market cybersecurity plan. This article has been indexed from Dark Reading Read the original article: Federal Mandates on Medical-Device Cybersecurity…

Read more →

Nothing good happens after 2 a.m., they say, especially when hackers have two kinds of ransomware at their disposal. This article has been indexed from Dark Reading Read the original article: When LockBit Ransomware Fails, Attackers Deploy Brand-New ‘3AM’

Read more →

Giving users time to detect and then update hijacked packages can help developers avoid using malicious code in software development. This article has been indexed from Dark Reading Read the original article: A 2-Week Prescription for Eliminating Supply Chain Threats

Read more →

Gamers and former sound engineers and roadies can help boost the cybersecurity talent pool. Their flexible mindset and attention to detail make them valuable resources. This article has been indexed from Dark Reading Read the original article: Cybersecurity Skills Gap:…

Read more →

The operators of the Rhysida ransomware-as-a-service have claimed credit for a crippling attack on Mississippi’s Singing River health system. This article has been indexed from Dark Reading Read the original article: Recent Rhysida Attacks Show Focus on Healthcare By Ransomware…

Read more →

Five critical bugs, zero-days exploited in the wild, Exchange Server, and more headline Microsoft’s September 2023 Patch Tuesday release. Here’s what to patch now. This article has been indexed from Dark Reading Read the original article: Microsoft Patches a Pair…

Read more →

Attacks against critical infrastructure are becoming more commonplace and, if a recent PRC-sponsored attack is anything to go by, easier to pull off. This article has been indexed from Dark Reading Read the original article: China’s Winnti APT Compromises National…

Read more →

The security vulnerability could lead to arbitrary code execution by way of application crashing. This article has been indexed from Dark Reading Read the original article: Critical Google Chrome Zero-Day Bug Exploited in the Wild

Read more →

Vital medical equipment was unaffected, but attackers stole and leaked lots of personal data. This article has been indexed from Dark Reading Read the original article: Israeli Hospital Hit By Ransomware Attack, 1TB Data Stolen

Read more →

The data security broker from Baffle brings field and file level encryption of sensitive data to new IBM Cloud Security Compliance Center. This article has been indexed from Dark Reading Read the original article: IBM Adds Data Security Broker to…

Read more →

By code or by command, cybercriminals are circumventing ethical and safety restrictions to use generative AI chatbots in the way that they want. This article has been indexed from Dark Reading Read the original article: ChatGPT Jailbreaking Forums Proliferate in…

Read more →

The “MrTonyScam” has a surprisingly high success rate, spreading a Python-based stealer to some 100,000 business accounts per week. This article has been indexed from Dark Reading Read the original article: Millions of Facebook Business Accounts Bitten by Python Malware

Read more →

State-sponsored attacks are alarming and difficult to prevent, but they suffer from a fundamental weakness that can be leveraged by defenders. This article has been indexed from Dark Reading Read the original article: The Double-Edged Sword of Cyber Espionage

Read more →

Telegram has not stated why it has suspended the group’s primary account, but it is likely due to its use of bots. This article has been indexed from Dark Reading Read the original article: ‘Anonymous Sudan’ Sets Its Sights on…

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Google and Acalvio Partner to Deliver Active Defense to Protect Customers…

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: World Security Report Finds Physical Security Incidents Cost Companies USD $1T…

Read more →