79% of CISOs say continuous runtime vulnerability management is an essential capability to keep up with the expanding complexity of modern multi-cloud environments.
Gurucul automating threat detection, investigation and response (TDIR) with advanced analytics, comprehensive threat content, and a flexible enterprise risk engine for hybrid and multi-cloud environments.
By Dark Reading Staff, Dark Reading β June 2nd 2022 at 19:54
A pair of phishing campaigns against users of WhatsApp and Telegram's Telegraph expose them to extortion, credential harvesting, and even account takeover.
Microsoft Philanthropies is expanding its cybersecurity skills for jobs campaign to 23 countries and partnering with Women in CyberSecurity (WiCyS) to build a cybersecurity workforce that is not just larger but also more diverse.
By Jai Vijayan, Contributing Writer, Dark Reading β June 2nd 2022 at 19:45
The threat actor behind the notorious Dridex campaign has switched from using its exclusive credential-harvesting malware to a ransomware-as-a-service model, to make attribution harder.
Neosec threat hunters from the 'ShadowHunt' team jumpstart the API Security process quickly and help build the knowledge in today's overstretched security teams.
By Nathan Eddy, Contributing Writer, Dark Reading β June 2nd 2022 at 15:00
The malware targets Windows users via Trojanized downloads of cracked or pirated software and then starts in on cryptocurrency mining and clipboard hijacking.
By Joe Slowik, Senior Manager, Gigamon β June 2nd 2022 at 14:00
Although organizations should perform proper risk analysis and patch as soon as practical after there's a fix for this vulnerability, defenders still have options before that's released.
By Dark Reading Staff, Dark Reading β June 1st 2022 at 22:40
In this Tech Talk, Darktrace's Brianna Leddy and Dark Reading's Terry Sweeney discuss ways ransomware groups adapt their activities as enterprise security teams evolve their defenses and controls.
Organizations leverage the platform-driven, human-delivered service to measure and continuously improve the efficacy of detective controls and MSSP coverage.
New operational analytics and AI/ML platform drives contextual intelligence and prioritized actions to anticipate risky behaviors, disrupt threats and insure business resilience.
Contextual Intelligence derived with machine learning helps customers identify, assess and remediate threats from IoT devices on their networks, achieving full visibility and control.
Password management solution delivers proactive, seamless approach to protecting privacy and login credentials for consumers and businesses; Password Management market expected to reach $3 billion by 2026.
By Tara Seals, Managing Editor, News, Dark Reading β June 1st 2022 at 19:20
EnemyBot DDoS botnet is rapidly weaponizing security bugs disclosed in CMS systems like WordPress plug-ins, Android devices, commercial Web servers, and other enterprise applications.
By Paul Kurtz, Chief Cybersecurity Adviser, Splunk Public Sector β June 1st 2022 at 17:00
Edge technology widens the attack surface by bringing data analysis closer to where it's collected. Now is the time for public and private sector groups to establish guidelines and identify security best-practices frameworks.
By Jai Vijayan, Contributing Writer, Dark Reading β May 31st 2022 at 20:37
"Follina" vulnerability in Microsoft Support Diagnostic Tool (MSDT) affects all currently supported Windows versions and can be triggered via specially crafted Office documents.
By Grayson Milbourne, Security Intelligence Director, OpenText Security Solutions β May 30th 2022 at 14:00
To minimize the impact of cyber incidents, organizations must be pragmatic and develop a strategy of resilience for dealing with break-ins, advanced malware, and data theft.
By Jai Vijayan, Contributing Writer, Dark Reading β May 28th 2022 at 14:00
The most serious flaw gives attackers a way to remotely execute code on systems that many organizations use to move data in critical ICS environments, security vendor says.
By Nathan Eddy, Contributing Writer, Dark Reading β May 27th 2022 at 20:54
Organizations must ensure their kubelets and related APIs arenβt inadvertently exposed or lack proper access control, offering an easy access point for malicious actors.
By Tara Seals, Managing Editor, News, Dark Reading β May 27th 2022 at 16:07
The Chaos ransomware-builder was known for creating destructor malware that overwrote files and made them unrecoverable -- but the new Yashma version finally generates binaries that can encrypt files of all sizes.
By Nathan Eddy, Contributing Writer, Dark Reading β May 27th 2022 at 15:49
The malware's abuse of PowerShell makes it more dangerous, allowing for more advanced attacks such as ransomware, fileless malware, and malicious code memory injections.
By Dark Reading Staff, Dark Reading β May 26th 2022 at 22:54
Microsoft Dev Box will make it easier for developers and hybrid teams to get up and running with workstations already preconfigured with required applications and tools.
By Jai Vijayan, Contributing Writer, Dark Reading β May 26th 2022 at 20:20
Nearly half of the world's largest websites use externally generated JavaScript that makes them ripe targets for cyberattackers interested in stealing data, skimming credit cards, and executing other malicious actions.
Login
.jpeg)
FreshRSS