By Robert Lemos, Contributing Writer, Dark Reading β October 3rd 2022 at 20:51
Responding to cyberattacks is extraordinarily stressful, but better planning, frequent practice, and the availability of mental health services can help IR professionals, a survey finds.
By Dark Reading Staff, Dark Reading β September 30th 2022 at 22:14
While organizations wait for an official patch for the two zero-day flaws in Microsoft Exchange, they should scan their networks for signs of exploitation and apply these mitigations.
By Becky Bracken, Editor, Dark Reading β September 30th 2022 at 20:31
Weeks after it breached the Los Angeles Unified School District, the Vice Society ransomware group is threatening to leak the stolen data, unless they get paid.
By Chris Kirk, Principal Cybersecurity Consultant, Microsoft β September 30th 2022 at 20:00
Overlooking even just a single security threat can severely erode a companyβs community and consumer confidence, tarnish reputation and brand, negatively impact corporate valuations, provide competitors with an advantage, and create unwanted scrutiny.
By Jai Vijayan, Contributing Writer, Dark Reading β September 30th 2022 at 19:10
It's time to dispel notions of deepfakes as an emergent threat. All the pieces for widespread attacks are in place and readily available to cybercriminals, even unsophisticated ones.
By Robert Lemos, Contributing Writer, Dark Reading β September 30th 2022 at 18:44
While ransomware seems stalled, business email compromise (BEC) attacks continue to make profits from the ProxyShell and Log4j vulnerabilities, nearly doubling in the latest quarter.
By Dark Reading Staff, Dark Reading β September 30th 2022 at 17:38
Malicious Comm100 files have been found scattered throughout North America, and across sectors including tech, healthcare, manufacturing, telecom, insurance, and others.
By Nathan Eddy, Contributing Writer, Dark Reading β September 30th 2022 at 14:47
The SolarMarker group is exploiting a vulnerable WordPress-run website to encourage victims to download fake Chrome browser updates, part of a new tactic in its watering-hole attacks.
By Tomislav Pericin, Chief Software Architect & Co-Founder, ReversingLabs β September 30th 2022 at 14:00
Reports to the National Vulnerability Database jumped in 2022, but we should pay just as much attention to the flaws that are not being reported to NVD, including those affecting the software supply chain.
Onyxia, an AI-powered cybersecurity strategy and performance platform providing a centralized way for security teams to monitor and manage cybersecurity efforts in real time, has raised $5 million in seed fundraising led by World Trade Ventures with participation by Silvertech Ventures and angel investors.
By Agam Shah, Contributing Writer β September 29th 2022 at 23:31
The chip giant has developed new features and services to make it tougher for malicious hackers and insiders to access sensitive data from applications in the cloud.
By Daron Hartvigsen, Managing Director, StoneTurn β September 29th 2022 at 21:44
Call it cross-border enlightened self-interest: As one of the US's premier trade partners and closest neighbors, what's bad for Mexico is bad for the US.
By Tara Seals, Managing Editor, News, Dark Reading β September 29th 2022 at 20:32
Literacy, levels of personal freedom, and other macro-social factors help determine how strong average passwords are in a given locale, researchers have found.
2,700 cybersecurity career pursuers have already passed the (ISC)2 Certified in Cybersecurityβ exam, with more than 53,000 more people registered for a free course and exam.
By Elizabeth Montalbano, Contributor, Dark Reading β September 29th 2022 at 14:33
APT group Witchetty (aka LookingFrog) has exploited the ProxyShell and ProxyLogon vulnerabilities to gain initial access and deploy new custom cyber tools against government agencies and a stock exchange.
By Fernando Montenegro, Senior Principal Analyst, Omdia β September 29th 2022 at 13:00
Organizations looking to get ahead in cloud security have gone down the path of deploying CSPM tooling with good results. Still, thereβs a clear picture that data security and security operations are next key areas of interest.
The average cost of a data-exposing cybersecurity incident is $4.35 million. If your business canβt avoid to pay, make sure youβve got a strong data loss prevention practice in place.
By Dark Reading Staff, Dark Reading β September 28th 2022 at 21:24
External researchers contributed 16 of the 20 security updates included in the new Chrome 106 Stable Channel rollout, including five high-severity bugs.
By Robert Lemos, Contributing Writer, Dark Reading β September 28th 2022 at 19:47
The team's annual survey finds that the right development culture is better than technical measures when it comes to shoring up software supply chain security practices. An additional benefit: Less burnout.
By Ilias Chantzos, Global Privacy Officer and Head of EMEA Government Affairs, Broadcom β September 28th 2022 at 17:00
With provisional agreement reached on the Digital Operational Resilience Act, the clock is now ticking for banks and information and communications technology (ICT) services companies with European operations. Here's what you need to know.
By Elizabeth Montalbano, Contributor, Dark Reading β September 28th 2022 at 16:12
The previously identified ransomware builder has veered in an entirely new direction, targeting consumers and business of all sizes by exploiting known CVEs through brute-forced and/or stolen SSH keys.
By Arun Vishwanath, Technologist β September 28th 2022 at 14:00
Defend against phishing attacks with more than user training. Measure users' suspicion levels along with cognitive and behavioral factors, then build a risk index and use the information to better protect those who are most vulnerable.
Malwarebytes achieves 250% year-over-year MSP partner growth, introduces new modules to enhance protection, detection, and resolution of threats for SMBs.
By Robert Lemos, Contributing Writer, Dark Reading β September 28th 2022 at 10:00
Vulnerable configurations, software flaws, and exposed Web services allow hackers to find exploitable weaknesses in companies' perimeters in just hours, not days.
Login
FreshRSS