US Banks Will Be Required to Report Cyberattacks Within 36 Hours

There is currently no specific time frame during which banks must report to federal regulators that a security incident had occurred. A new notification rules changes that to 36 hours.

3 Takeaways from the Gartner Risk Management Summit

Security leaders can be treated as partners supporting the business and share accountability by establishing relationships with business stakeholders.

To Beat Ransomware, Apply Zero Trust to Servers Too

The path out of the ransomware crisis is full inspection and protection of all traffic flows. That means zero trust everywhere — even between servers.

Zero Trust: An Answer to the Ransomware Menace?

Zero trust isn't a silver bullet, but if implemented well it can help create a much more robust security defense.

US Indicts Iranian Nationals for Cyber-Enabled Election Interference

Among other things, the pair pretended to be Proud Boys volunteers and sent in a fake video and emails to Republican lawmakers purporting to show Democratic Party attempts to subvert the 2020 presidential elections.

Search CT Logs for Misconfigured SSL Certificates

Security defenders can run these queries against Certificate Transparency logs to identify misconfigured SSL certificates before they can be used by adversaries to map out attacks.

Cloud Security Startup Lacework Gets a Boost With New $1.3B Funding

Lacework's will use its $1.3 billion Series D to expand go-to-market strategies and its data-focused cloud security platform.

Microsoft Exchange Server Flaws Now Exploited for BEC Attacks

Attackers also are deploying ProxyShell and abusing the vulnerabilities in stealthier manner, researchers say.

Two Iranian Nationals Charged for Cyber-Enabled Disinformation and Threat Campaign Designed to Influence the 2020 US Presidential Election

An indictment was unsealed charging two Iranian nationals for their involvement in a cyber-enabled campaign to intimidate and influence American voters, and otherwise undermine voter confidence and sow discord, in connection with the 2020 US presidential election.

North Korean Hacking Group Targets Diplomats, Forgoes Malware

The TA406 group uses credential harvesting to target diplomats and policy experts in the United States, Russia, China, and South Korea, rarely resorting to malware.

California Pizza Kitchen Suffers Data Breach

Personal data, including Social Security numbers, of more than 100K employees exposed.

Addressing the Low-Code Security Elephant in the Room

The danger of anyone being able to spin up new applications is that few are thinking about security. Here's why everyone is responsible for the security of low-code/no-code applications.

Artificial Intelligence and Machine Learning, Cloud Computing, and 5G Will Be the Most Important Technologies in 2022, Says New IEEE Study

Chief information officers, chief technology officers, and technology leaders globally surveyed on key technology trends, priorities, and predictions for 2022 and beyond.

GBG Announces It Has Agreed to Acquire Acuant

GBG announces it has agreed to acquire Acuant, bringing together two leaders in the global digital identity market with combined revenue of c.£265 million.

Swarm Intelligence May Be Just the Ticket for Improved Network & Device Security

Based on the reaction of a single insect in a swarm, messages are passed along peer to peer, and an entire environment can respond without a central leader processing data and giving orders.

'PerSwaysion' Phishing Campaign Still Ongoing, and Pervasive

Research shows that multiple attack groups have been using the Microsoft file-sharing service - leveraging phishing kit for much longer than previously thought.

CISA Releases Incident and Vulnerability Response Playbooks to Strengthen Cybersecurity for Federal Civilian Agencies

Effort part of President Biden’s executive order to improve the nation’s sybersecurity.

Sift Acquires Passwordless Authentication Pioneer Keyless to Provide Secure, Frictionless Authentication

Biometric authentication innovator eliminates password-based account takeover and enables PSD2 Strong Customer Authentication while preserving user privacy.

Palo Alto Networks Delivers What's Next in Security at Ignite '21

Cybersecurity company introduces solutions aimed at network security, cloud security and security operations.

Can I Have XDR Without EDR?

Yes, extended detection and response is possible without endpoint detection and response, but here's why having both is helpful.

Cyber Conflict Between US and Iran Heats Up

The United States, United Kingdom, and Australia warn attacks from groups linked to Iran are on the rise, while the Iranian government blames the US and Israel for an attack on gas pumps.

Cybercriminals Contemplate 'Exploit-as-a-Service' Model

Researchers share their findings on the current zero-day market and how criminals' strategies may shift in the future.

5 Things ML Teams Should Know About Privacy and the GDPR

Machine learning delivers plenty of benefits. But as the emerging technology gets applied more broadly, be careful about how you handle all the data used in the process.

Is XDR Overhyped?

Security experts weigh in on the value and pitfalls of extended detection and response (XDR), offering consideration and advice on this growing new category.

How to Navigate the Mitigation of Deepfakes

Deepfakes are already several steps ahead of the technology that can detect and warn us about them.

Belarus Linked to Big European Disinformation Campaign

EU officials and others previously had blamed Russia's intelligence operations for the so-called Ghostwriter campaign.

Team Cymru Acquires Amplicy

The combination of Team Cymru's threat intelligence and threat hunting capabilities and Amplicy's Internet asset discovery and vulnerability management will give enterprise defenders a comprehensive view of their organization's cyber risk.

Suppliers, Cloud Providers Are Threats to Enterprise Data, Survey Says

Other threats to enterprise data include cybercriminals, authorized users, foreign governments, and application vulnerabilities, according to Dark Reading's recent Strategic Security Report.

New Global Rackspace Technology Survey Underscores Rapid Pace of Cloud Adoption

More than half of respondents have 100% of their infrastructure in the cloud; IT playing an increasingly critical role in driving corporate strategy.

Emotet Makes a Comeback

The popular Trojan has re-emerged on the scene several months after the botnet infrastructure behind it was disrupted by law enforcement.

Cybercriminals Increasingly Employ Crypto-Mixers to Launder Stolen Profits

Crypto-mixer services are set to grow as ransomware and other cybercriminal enterprises increasingly lean into cryptocurrency, new research shows.

The Old Ways Aren’t Working: Let’s Rethink OT Security

Ransomware attacks against critical infrastructure go beyond locking up data. They can entirely shut down production in a facility. Here's how AI can help you fight back.

4 Considerations for Improving Cloud Security Hygiene

Mixing cloud security and maintenance practices with legacy enterprise approaches usually ends up shortchanging cloud hygiene. Here are some ways to remedy that.

6 Tips To Keep in Mind for Ransomware Defense

Ransomware is everywhere, including the nightly news. Most people know what it is, but how do ransomware attackers get in, and how can we defend against them?

Navigating the Complexity of Today's Digital Supply Chain

An efficient way to monitor security is to model user behavior using time series data and watching for anomalies.

The Troubling Rise of Initial Access Brokers

Criminal groups are ramping up use of IABs to get access to networks without having to deal with the initial reconnaissance and intrusion phases.

Immersive Labs Acquires Snap Labs to Power Cyber Simulations With New Depth and Realism

Integrated offering to deliver hyper-realistic team exercises specific to customer environments for more relevant cyber knowledge, skills, and judgment.

Trend Micro: 90% of IT Decision Makers Believe Organizations Compromise on Cybersecurity in Favor of Other Goals

Trend Micro study reveals need for new way to discuss business risk.

MacOS Zero-Day Used in Watering-Hole Attacks

Attackers targeted Chinese pro-democracy groups using a vulnerability fixed in September along with a second vulnerability fixed early in the year, Google says.

Norton Special Report Reveals Nearly 1 in 2 Gamers Have Experienced a Cyberattack

Three in four say they were impacted financially as a result, losing more than $700 on average.

8 Tips To Keep in Mind for Ransomware Defense

Ransomware is everywhere, including the nightly news. Most people know what it is, but how do ransomware attackers get in, and how can we defend against them?

FBI Attributes Abuse of Its Email Account to Software 'Misconfiguration'

A wave of phony emails from an FBI mail server originated from an issue with the agency's Law Enforcement Enterprise Portal.

Name That Toon: Cubicle for Four

Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card.

3 Must-Know Technologies to Protect Your Hybrid Workforce

Zero-trust, SASE, and XDR have similar goals, but they differ in their approaches to protecting businesses and users.

How to Negotiate With Ransomware Attackers

Security researchers investigate the ransom negotiation process to create strategies businesses can use if they face an attack.

JupiterOne and Cisco Announce Launch of Secure Cloud Insights

The partnership is designed to provide businesses with a range of cybersecurity services.

How Visibility Became the Lifeblood of SecOps and Business Success

The best way to succeed in long-term cybersecurity is to invest in visibility because you can't protect or defend against what you can't see.

MSPAlliance Leadership Council Forms Vendor Council to Address Managed Services Supply Chain Risk

MSP supply chain threats will be mitigated through transparency, education, business continuity planning, and managed services channel certification.

BT to Deploy 'Epidemiological AI' Based on the Spread of Viruses in Humans to Combat Cyberattacks

Using the spread of viruses in human populations as a model to inform its AI, Inflame is a key component in BT’s recently-announced Eagle-i platform.

Ankura Launches Brooklyn Cyber Center

New initiative addresses shortage of professionals and lack of diversity in cybersecurity by recruiting, training and retaining diverse talent from underrepresented backgrounds.

Emerging Security Tools Tackle GraphQL Security

New security tools are proactively protecting APIs built with GraphQL, before attacks against them become more commonplace.

Open Source Project Aims to Detect Living-Off-the-Land Attacks

The machine learning classifier from Adobe can determine whether system commands are malicious and classify them using a variety of tags useful for security analysts.

Follow the Leaders: A Blueprint for Software Security Success

Organizations can study software security leaders and emulate their habits and initiatives in order to build a successful software security program of their own.

How to Hire — and Retain — Effective Threat Hunters

Key characteristics that should be evaluated include curiosity, disposition, and fit with the culture.

In Appreciation: Alan Paller

Alan Paller, founder of the famed SANS Institute, passed away on Nov. 9.

'Lyceum' Threat Group Broadens Focus to ISPs

New report suggests attacker is targeting trusted supply chain companies in order to compromise large numbers of downstream customers.

Google Open Sources ClusterFuzzLite

ClusterFuzzLite is a stripped-down version of continuous fuzzing tool ClusterFuzz that integrates CI tools.

How Do I Know It's Time to Consider a SASE Migration?

The rapid shift to a hybrid workplace and accelerated adoption of new technologies means it's time to rethink networking security approaches.

What Happens If Time Gets Hacked

Renowned hardware security expert raises alarm on the risk and dangers of cyberattackers targeting the current time-synchronization infrastructure.

Cloud Attack Analysis Unearths Lessons for Security Pros

Researchers detail their investigation of a cryptomining campaign stealing AWS credentials and how attackers have evolved their techniques.