Category: Dark Reading

Enterprising, or simply lazy, cybercriminals are using Lockbit v3 to cut corners on ransomware. This article has been indexed from Dark Reading Read the original article: Cybercriminals Harness Leaked LockBit Builder in Wave of New Attacks

Read more →

TD Ameritrade, Charles Schwab named in new class action data breach lawsuit, following last week’s filing against Prudential. This article has been indexed from Dark Reading Read the original article: Financial Firms Breached in MOVEit Cyberattacks Now Face Lawsuits

Read more →

Hackers hit a third-party contractor’s IT systems, but they didn’t steal any addresses or financial details, officials say. This article has been indexed from Dark Reading Read the original article: London Police Warned to Stay Vigilant Amid Major Data Breach

Read more →

With bad guys frequently upping their game, security can’t leave these protections to a once-a-year upgrade. This article has been indexed from Dark Reading Read the original article: 5 Ways to Prepare for Google’s 90-Day TLS Certificate Expiration

Read more →

Duo’s service outage last week, impacting schools and businesses, highlights how companies should build in resiliency and business continuity into their authentication schemes. This article has been indexed from Dark Reading Read the original article: Authentication Outage Underscores Why ‘Fail…

Read more →

Imposing government-regulated security requirements on software companies may go too far and create unintended consequences. This article has been indexed from Dark Reading Read the original article: Legal Liability for Insecure Software Might Work, but It’s Dangerous

Read more →

Report unmasks recent cybersecurity challenges for governments, healthcare, financial services, and vital infrastructure. This article has been indexed from Dark Reading Read the original article: Malware Unleashed: Public Sector Hit in Sudden Surge, Reveals New Research

Read more →

The impulse to achieve strong SaaS security adherence through strict gatekeeping during procurement fails to reduce the risk that matters most. This article has been indexed from Dark Reading Read the original article: Better SaaS Security Goes Beyond Procurement

Read more →

While Zoom has scrapped plans to harvest customer content for use in its AI and ML models, the incident should raise concerns for enterprises and consumers a like. This article has been indexed from Dark Reading Read the original article:…

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Genworth Financial Under Investigation for Data Breach

Read more →

The cyber espionage group has created a stealthy, hard-to-mitigate network of persistent access across a range of organizations, but the endgame is unclear. This article has been indexed from Dark Reading Read the original article: China Unleashes Flax Typhoon APT…

Read more →

Roblox gaming developers are lured in by a package that claims to create useful scripts to interact with the Roblox website, for example by “promot(ing) users, shout events, and so on, or to create Discord utiltiies (sic) to manage their…

Read more →

Deployed by the infamous SmokeLoader botnet, the location-tracking malware could be used for a host of follow-on cyberattacks or even physical targeting. This article has been indexed from Dark Reading Read the original article: ‘Whiffy Recon’ Malware Transmits Device Location…

Read more →

Using AI for threat detection and response is essential — but it can’t replace human intelligence, expertise, and intuition. This article has been indexed from Dark Reading Read the original article: Is Bias in AI Algorithms a Threat to Cloud…

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Cerby Announces $17M in Series A Funding to Secure Nonstandard Applications

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Critical Insight Releases H1 2023 Report

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Malwarebytes Announces Acquisition of Online Privacy Company Cyrus

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Black Hat USA 2023 Closes on Record-Breaking Event in Las Vega

Read more →

Foreign intelligence entities have the US space industry in their sights, posing serious threats to US national security, multiple federal agencies say. This article has been indexed from Dark Reading Read the original article: US Space Industry More Prone to…

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Kyndryl and Cisco Expand Partnership Focusing on Cyber Resilience

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Cypago Raises $13M and Unveils its Cyber GRC Automation (CGA) Platform…

Read more →

TZW is the latest version of Adhubllka, which has been active since 2019 but has gone largely unreported due to its lower ransom demands. This article has been indexed from Dark Reading Read the original article: Ransomware With an Identity…

Read more →

Thanks to a simple Telegram bot that democratizes phishing, ordinary Russians can conduct full-fledged phishing attacks with zero technical knowhow. This article has been indexed from Dark Reading Read the original article: eBay Users Beware Russian ‘Telekopye’ Telegram Phishing Bot

Read more →

Hive tells us a lot about ransomware-as-a-service trends and the best ways to defend against attacks. This article has been indexed from Dark Reading Read the original article: What the Hive Ransomware Case Says About RaaS and Cryptocurrency

Read more →

Embracing a risk-first mindset empowers organizations to make informed decisions, strengthen security, safeguard valuable assets, and reduce financial impact. This article has been indexed from Dark Reading Read the original article: 5 Best Practices for Implementing Risk-First Cybersecurity

Read more →

The world’s most notorious threat actor is using an unprecedented tactic for sneaking spyware into the IT networks of important companies. This article has been indexed from Dark Reading Read the original article: North Korea’s Lazarus Group Used GUI Framework…

Read more →

The eSentire LLM Gateway provides monitoring and governance of ChatGPT and other Large Language Models being used in the organization. This article has been indexed from Dark Reading Read the original article: eSentire Labs Open Sources Project to Monitor LLMs

Read more →

Probes are tiny processes which run inside containers and scan applications for vulnerabilities. This article has been indexed from Dark Reading Read the original article: Prelude Security Tackles Continuous Security Testing in Containers

Read more →

It’s not going anywhere: Easy-to-exploit bugs like MOVEit, leaks of stolen data, and rapid-fire escalation are keeping ransomware attacks as painful as ever. This article has been indexed from Dark Reading Read the original article: Ransomware Reaches New Heights

Read more →

Attacks targeting the now-patched bug have been going on since at least April 2023, security vendor says. This article has been indexed from Dark Reading Read the original article: Threat Actor Exploits Zero-Day in WinRAR to Target Crypto Accounts

Read more →

The most recent stolen bitcoin comes just after three major operations occurred in June, with millions stolen in each heist. This article has been indexed from Dark Reading Read the original article: FBI Warns of Cryptocurrency Heists by North Korea’s…

Read more →

Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card. This article has been indexed from Dark Reading Read the original article: Name That Toon: Swift as an Arrow

Read more →

The offending ads and pages leveraged interest in AI to spread a malicious credential-stealing browser extension. This article has been indexed from Dark Reading Read the original article: Attackers Dangle AI-Based Facebook Ad Lures to Hijack Business Accounts

Read more →

The Defense Department must modernize user activity monitoring by prioritizing data that can be used early to proactively mitigate insider risk. This article has been indexed from Dark Reading Read the original article: 5 Early Warning Indicators That Are Key…

Read more →

Spin.AI’s risk assessment of some 300,000 browser extensions had overly permissive access and could execute potentially malicious behaviors. This article has been indexed from Dark Reading Read the original article: More Than Half of Browser Extensions Pose Security Risks

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Grip Security Raising $41M Series B Led by Third Point Ventures

Read more →

Spin.AI’s risk assessment of some 300,000 browser extensions had overly permissive access and could execute potentially malicious behaviors. This article has been indexed from Dark Reading Read the original article: Study: More Than Half of Browser Extensions Pose Security Risks

Read more →

The vulnerability was being exploited in the wild, targeting two versions of Adobe ColdFusion. This article has been indexed from Dark Reading Read the original article: Adobe Patches Critical Deserialization Vulnerability, but Exploits Persist

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Absolute Dental Services Notifies Patients of Data Security Incident

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Forescout Joins MISA and Announces Integration With Microsoft Sentinel

Read more →

The increase in cyberattacks against the Middle East in the last few years has pressured Jordan and other nations to better secure their infrastructures. This article has been indexed from Dark Reading Read the original article: Controversial Cybercrime Law Passes…

Read more →

Malware aimed at macOS is no longer just a knockoff of a Windows bug, as a new infostealer proliferating on Mac laptops demonstrates. This article has been indexed from Dark Reading Read the original article: Newer, Better XLoader Signals a…

Read more →

Makers of vulnerable apps that are exploited in wide-scale supply chain attacks need to improve software security or face steep fines and settlement fees. This article has been indexed from Dark Reading Read the original article: Software Makers May Face…

Read more →

Risk-aware leaders can be a cybersecurity advantage. Their flexible leadership style and emphasis on security first help set the tone and demonstrate a commitment to avoiding risk. This article has been indexed from Dark Reading Read the original article: When…

Read more →

Understanding potential threats and regularly updating response plans are the best lines of defense in the new world of cyberattacks. This article has been indexed from Dark Reading Read the original article: The Physical Impact of Cyberattacks on Cities

Read more →

How a Russian cybercrime group using Cuban Revolution references and iconography has emerged as one of the most profitable ransomware operations. This article has been indexed from Dark Reading Read the original article: ‘Cuba’ Ransomware Group Uses Every Trick in…

Read more →

Dubbed Carderbee, the group used legitimate software and Microsoft-signed malware to spread the Korplug/PlugX backdoor to various Asian targets. This article has been indexed from Dark Reading Read the original article: Chinese APT Targets Hong Kong in Supply Chain Attack

Read more →

Security vendor will not say if attackers are already actively exploiting the flaw, as some reports have claimed. This article has been indexed from Dark Reading Read the original article: Ivanti Issues Fix for Critical Vuln In Its Sentry Gateway…

Read more →

The carmaker also reported it’s taken legal action against the former employees involved in the data breach, which involved more than 75,000 names. This article has been indexed from Dark Reading Read the original article: Tesla Data Breach Investigation Reveals…

Read more →

Energy One is trying to determine the initial point of entry and whether personal information has been compromised. This article has been indexed from Dark Reading Read the original article: Energy One Investigates Cyberattack

Read more →

The space industry must improve security as foreign intelligence entities seek to steal trade secrets and disrupt space-based infrastructure, US agencies caution. This article has been indexed from Dark Reading Read the original article: Fed Warning: US Space Industry Subject…

Read more →

AI innovation is moving faster than our laws and regulations, making it hard to decide whether Web or content scraping activity is good or bad, and what (if anything) you should do about it. This article has been indexed from…

Read more →

Touted as the largest red teaming exercise against LLMs in history, the AI Village attracted more than 2,000 hackers and throngs of media. This article has been indexed from Dark Reading Read the original article: DEF CON’s AI Village Pits…

Read more →

Visibility is just the first step to secure your operational technology environment against today’s threats. You need a proactive, defense-in-depth approach. This article has been indexed from Dark Reading Read the original article: Visibility Is Just Not Enough to Secure…

Read more →

CISA’s public-private partnership produces RMM strategies to shore up critical infrastructure and to educate the MSPs that provide remote access to them. This article has been indexed from Dark Reading Read the original article: CISA Committee Tackles Remote Monitoring and…

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: ProjectDiscovery Announces $25M Series A Financing and Launch of Cloud Platform

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: CyCognito Finds Large Volume of Personal Identifiable Information in Vulnerable Cloud…

Read more →

A good chunk of the entire user base of a particular email service is being targeted for sensitive credentials. This article has been indexed from Dark Reading Read the original article: Phishing Attack Targets Hundreds of Zimbra Customers in Four…

Read more →

In this Dark Reading News Desk segment, Sysdig’s Anna Belak discusses how the boom in cloud services and applications expanded the definition of what constitutes an endpoint. This article has been indexed from Dark Reading Read the original article: Expand…

Read more →

If rule writing for SIEMs isn’t managed properly, it can lead to false positives and misconfigurations, which create extra work for the SOC team. This article has been indexed from Dark Reading Read the original article: Tel Aviv Stock Exchange…

Read more →

Interpol- and Afripol-led crackdown disrupts cybercrime ecosystem responsible for some $40 million in losses to victims. This article has been indexed from Dark Reading Read the original article: African Cybercrime Operations Shut Down in Law Enforcement Operation

Read more →

Neglecting security of Border Gateway Protocol (BGP) and other routing protocols has created multiple vulnerabilities that must be addressed. This article has been indexed from Dark Reading Read the original article: Unveiling the Hidden Risks of Routing Protocols

Read more →

The company’s moves to expand its TLS and domain name services strengthens the security and trust of its global web infrastructure. This article has been indexed from Dark Reading Read the original article: Fastly Launches Certainly CA

Read more →

Determining what to report, and what details to disclose, is a complex question with elusive answers. This article has been indexed from Dark Reading Read the original article: Confusion Surrounds SEC’s New Cybersecurity Material Rule

Read more →

In this Dark Reading News Desk segment, John Shier, Field CTO Commercial, Sophos, discusses the “Royal” ransomware. This article has been indexed from Dark Reading Read the original article: Sophos: ‘Royal’ Is Trying to Make Itself the King of Ransomware

Read more →

In this Dark Reading News Desk segment, Normalyze’s Ravi Ithal discusses cloud security and data security posture management (DPSM). This article has been indexed from Dark Reading Read the original article: Normalyze: How Focusing On Data Can Improve Cloud Security

Read more →

In this Dark Reading News Desk segment, Terence Liu of TXOne Networks discusses operational technology and industrial cybersecurity. This article has been indexed from Dark Reading Read the original article: TXOne: How to Improve Your Operational Technology Security Posture

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Foretrace Announces Launch of “Tim,” Generative AI Analyst for Assessing and…

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: ISC2 Announces Milestone As Community Grows to Half a Million

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Israel-US Binational Industrial R&D Foundation to Invest $3.85M in Critical Infrastructure…

Read more →

A Biden administration adviser puts federal departments and agencies on notice to come into full compliance with presidential guidelines by the end of the year. This article has been indexed from Dark Reading Read the original article: White House Orders…

Read more →

How mobile attackers could gaslight iPhone users, allowing the perfect cover for post-exploitation malicious activity. This article has been indexed from Dark Reading Read the original article: Researchers Trick an iPhone Into Faking Airplane Mode

Read more →

Users report losing access to their accounts, with some being pressured into paying a ransom to get back in or else face permanent account deletion. This article has been indexed from Dark Reading Read the original article: LinkedIn Suffers ‘Significant’…

Read more →

Security demands a strong fortress in cyberspace, and Dubai has rolled out two cybersecurity strategies to protect the data of the government and citizens. This article has been indexed from Dark Reading Read the original article: An Overview of Dubai’s…

Read more →

Attackers use remote monitoring and management tools at MSPs to gain unfettered access to target networks. This article has been indexed from Dark Reading Read the original article: ‘Play’ Ransomware Group Targeting MSPs Worldwide in New Campaign

Read more →

Digital commerce remains the richest target for cybercriminals, yet physical payment threats remain strong. This article has been indexed from Dark Reading Read the original article: How Innovation Accelerators Are at Work on the Dark Side

Read more →

Cyberattackers are slow to implement AI in their attack chains, according to Mandiant’s analysis. This article has been indexed from Dark Reading Read the original article: Cyber Defenders Lead the AI Arms Race for Now

Read more →

Microsoft is aware of the issue, but so far its attempts to address it don’t appear to have worked, the vendor says. This article has been indexed from Dark Reading Read the original article: PowerShell Gallery Prone to Typosquatting, Other…

Read more →

Researchers found that many Dark Web forums have stronger password rules than most government and military entities. This article has been indexed from Dark Reading Read the original article: Researchers Harvest, Analyze 100K Cybercrime Forum Credentials

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Beyond Identity Launches Passkey Adoption Tool, The Passkey Journey

Read more →

This time, it’s the law firm that got breached, then sued for what victims claim was inadequate protection and compensation for theft of personal data. This article has been indexed from Dark Reading Read the original article: Insurance Data Breach…

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: 67% of Federal Government Agencies Are Confident in Meeting Zero Trust…

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Dig Security State of Cloud Data Security 2023 Report Finds Exposed…

Read more →

While relatively unchanged, the notorious IoT botnet still continues to drive DDoS. This article has been indexed from Dark Reading Read the original article: Mirai Common Attack Methods Remain Consistent, Effective

Read more →

Threats and opportunities are abound for the UAE and Gulf states, so can they deal with being a cybersecurity stronghold? This article has been indexed from Dark Reading Read the original article: The Gulf’s Dizzying Tech Ambitions Present Risk &…

Read more →

CISOs must demonstrate that security processes and updates reduce risk in measurable ways. Put emphasis on action, get the basics right, and improve processes. This article has been indexed from Dark Reading Read the original article: Boards Don’t Want Security…

Read more →

Iranian threat actors are combining offensive network ops with messaging and amplification to manipulate targets’ perceptions and behavior. Here are three examples. This article has been indexed from Dark Reading Read the original article: Iran and the Rise of Cyber-Enabled…

Read more →

Mandiant’s IoC Scanner will help enterprises collect indicators of compromise on affected Citrix NetScaler products. This article has been indexed from Dark Reading Read the original article: Mandiant Releases Scanner to Identify Compromised NetScaler ADC, Gateway

Read more →

Attackers sent more than 1,000 emails with 2FA, MFA, and other security-related lures aimed at stealing Microsoft credentials. This article has been indexed from Dark Reading Read the original article: QR Code Phishing Campaign Targets Top US Energy Company

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: Kaspersky Password Manager Adds 2FA One-Time Password Storage and New Browser…

Read more →

Nearly 90% of malicious emails manage to get past SPF, DKIM, or DMARC, since threat actors are apparently using the same filters as legitimate users. This article has been indexed from Dark Reading Read the original article: 3 Major Email…

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: edX and Drake State Technical and Community College Launch Free Training…

Read more →

Monitoring platform is trusted by Cisco, Savannah River Nuclear Solutions, and others in CISA’s critical infrastructure Sectors, say Synopsys researchers. This article has been indexed from Dark Reading Read the original article: Patch Now: OpenNMS Bug Steals Data, Triggers Denial…

Read more →

This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Dark Reading Read the original article: OX Security Receives Strategic Investment From IBM Ventures

Read more →

The platform plans to revamp its website code and conduct “a complete overhaul” of its security practices. This article has been indexed from Dark Reading Read the original article: Discord.io Temporarily Shuts Down Amid Breach Investigation

Read more →

The AI model trained on typing recorded over a smartphone was able to steal passwords with 95% accuracy. This article has been indexed from Dark Reading Read the original article: AI Steals Passwords by Listening to Keystrokes With Scary Accuracy

Read more →

A thriving economy needs several factors to continue an upward trajectory — but is Africa in a position to enable these factors to take place? This article has been indexed from Dark Reading Read the original article: Bolstering Africa’s Cybersecurity

Read more →

Can the government help fix what’s wrong in cloud security? An upcoming investigation is going to try. This article has been indexed from Dark Reading Read the original article: Microsoft Cloud Security Woes Inspire DHS Security Review

Read more →

A closer look at the nature of fake leaks can provide guidance on how to effectively mitigate associated risks. This article has been indexed from Dark Reading Read the original article: How & Why Cybercriminals Fabricate Data Leaks

Read more →

Abandoned sites — like WordPress — are easy to break into, offer a legitimate looking cover, and can remain active for longer than average. This article has been indexed from Dark Reading Read the original article: Phishing Operators Make Ready…

Read more →