Reading view
TeamViewer Credits Network Segmentation for Rebuffing APT29 Attack
Despite warnings from Health-ISAC and the NCC Group, the remote access software maker says defense-in-depth kept customers' data safe from Midnight Blizzard.
Critical GitLab Bug Threatens Software Development Pipelines
The company is urging users running vulnerable versions to patch CVE-2024-5655 immediately, to avoid CI/CD malfeasance.
CISO Corner: The NYSE & the SEC; Ransomware Negotiation Tips
Our collection of the most relevant reporting and industry perspectives for those guiding cybersecurity strategies and focused on SecOps.
CISA's Flags Memory-Unsafe Code in Major Open Source Projects
Despite more than 50% of all open source code being written in memory-unsafe languages like C++, we are unlikely to see a massive overhaul to code bases anytime soon.
Hundreds of Thousands Impacted in Children's Hospital Cyberattack
Though the Chicago-area hospital did not pay a ransom, a host of sensitive medical information is now at risk.
LockBit Attack Targets Evolve Bank, Not Federal Reserve
The ransomware group claimed it had breached the Federal Reserve, but the target now appears to have been an Arkansas-based bank, Evolve.
Unfounded Fears: AI Extinction-Level Threats & the AI Arms Race
There is an extreme lack of evidence of AI-related danger, and proposing or implementing limits on technological advancement isn't the answer.
1Touch.io Integrates AI Into Mainframe Security
Just because mainframes are old doesn't mean they're not in use. Mainframe Security Posture Management brings continuous monitoring and vigilance to the platform.
Don't Forget to Report a Breach: A Cautionary Tale
Responding to an incident quickly is important, but it shouldn't come at the expense of reporting it to the appropriate regulatory bodies.
New FCC Pilot Shores Up Security for K-12, Libraries
Data-rich and resource-poor, schools and libraries around the country make attractive targets for cybercriminals looking for an easy score, but a new federal program is looking to aid their defenses by providing much-needed financial support.
Beazley Security Launches With MXDR Offering
The combined skills from Beazley's cybersecurity services team and Lodestone will go into the company's new managed extended detection and response (MXDR) service.
Authenticator for X, TikTok Exposes Personal User Info for 18 Months
With many popular apps, users must hand over personal information to prove their identity, and the big downside is they have no control over how that information gets processed and stored.
Dark Reading Confidential: Meet the Ransomware Negotiators
Episode 2: Incident response experts-turned-ransomware negotiators Ed Dubrovsky, COO and managing partner of CYPFER, and Joe Tarraf, chief delivery officer of Surefire Cyber, explain how they interact with cyber threat actors who hold victim organizations' systems and data for ransom. Among their fascinating stories: how they negotiated with cybercriminals to restore operations in a hospital NICU where lives were at stake, and how they helped a church, where the attackers themselves "got a little religion."
MOVEit Transfer Flaws Push Security Defense Into a Race With Attackers
While Progress has released patches for the vulnerabilities, attackers are trying to exploit them before organizations have a chance to remediate.
Your Phone's 5G Connection Is Vulnerable to Bypass, DoS Attacks
Wireless service providers prioritize uptime and lag time, occasionally at the cost of security, allowing attackers to take advantage, steal data, and worse.
China-Sponsored Attackers Target 40K Corporate Users in 90 Days
The attacks infiltrate enterprise networks through browsers, and show an evolution in evasive and adaptive tactics from well-resourced state-sponsored actors.
CISA Releases Guidance on Network Access, VPNs
CISA outlines how modern cybersecurity relies on network visibility to defend against threats and scams.
Achieve Next-Level Security Awareness by Creating Secure Social Norms
By committing to build secure habits at work and in our personal lives, and to helping others do the same, our personal information will be much better protected.
Is Defense Winning? A Look at Decades of Playing Catch-up
In this Black Hat USA preview, scholar Jason Healey examines strategies for measuring and shifting the balance of cyber defense.
Dangerous AI Workaround: 'Skeleton Key' Unlocks Malicious Content
Microsoft, OpenAI, Google, and Meta GenAI models could be convinced to ditch their guardrails, opening the door to chatbots giving unfettered answers on building bombs, creating malware, and much more.
Apple AirPods Bug Allows Eavesdropping
The vulnerability affects not only AirPods, but also AirPods Max, Powerbeats Pro, Beats Fit Pro, and all models of AirPods Pro.
Polyfill.io Supply Chain Attack Smacks Down 100K+ Websites
The site is supplying malicious code that delivers dynamically generated payloads and can lead to other attacks, after a Chinese organization bought it earlier this year.
Neiman Marcus Customers Impacted by Snowflake Data Breach
The high-end retailer is the latest company to confirm it was affected by the wide-ranging Snowflake data breach, which impacted more than 165 organizations.
Diverse Cybersecurity Workforce Act Offers More Than Diversity Benefits
Our adversaries certainly have diversity — so cybersecurity teams need it, too.
'Snowblind' Tampering Technique May Drive Android Users Adrift
As cybersecurity's cat-and-mouse game starts to look more like Tom and Jerry, attackers develop a method for undermining Android app security with no obvious fix.
'ChamelGang' APT Disguises Espionage Activities With Ransomware
The China-nexus cyber-threat actor has been operating since at least 2019 and has notched victims in multiple countries.
Fresh MOVEit Bug Under Attack Mere Hours After Disclosure
The high-severity CVE-2024-5806 allows cyberattackers to authenticate to the file-transfer platform as any valid user, with accompanying privileges.
Indonesia Refuses to Pay $8M Ransom After Cyberattack
More than 200 regional and national government agencies have been impacted by the ransomware attack, and few of them are once again operational.
Threat Actor May Have Accessed Sensitive Info on CISA Chemical App
An unknown adversary compromised a CISA app containing the data via a vulnerability in the Ivanti Connect Secure appliance this January.
WordPress Supply Chain Attack Spreads Across Multiple Plug-ins
Injected malicious JavaScript code gives attackers administrator rights on websites, and fills sites with SEO spam.
Key Takeaways From the British Library Cyberattack
Knowledge institutions with legacy infrastructure, limited resources, and digitized intellectual property must protect themselves from sophisticated and destructive cyberattacks.
'P2PInfect' Worm Grows Teeth With Miner, Ransomware & Rootkit
For a while, the botnet spread but did essentially nothing. All the malicious payloads came well after.
China-Linked Cyber-Espionage Teams Target Asian Telecoms
In the latest breaches, threat groups compromised telecommunications firms in at least two Asian nations, installing backdoors and possibly eavesdropping or pre-positioning for a future attack.
CDK Attack: Why Contingency Planning Is Critical for SaaS Customers
Daily operations at some 15,000 automotive dealers remain impacted as CDK works to restore its dealer management system, following what appears to be a ransomware attack last week.
What Building Application Security Into Shadow IT Looks Like
AppSec is hard for traditional software development, let alone citizen developers. So how did two people resolve 70,000 vulnerabilities in three months?
30M Potentially Affected in Tickettek Australia Cloud Breach
In an incident with direct parallels to the recent Ticketmaster compromise, an Aussie live events giant says it was breached via a third-party cloud provider, as ShinyHunters takes credit.
The NYSE's $10M Wake-up Call
The settlement between the SEC and the owner of the New York Stock Exchange is a critical reminder of the vulnerabilities within financial institutions' cybersecurity frameworks as well as the importance of regulatory oversight.
Kaspersky's US Customers Face Tight Deadline Following Govt. Ban
After Sept. 29, 2024, organizations and individuals that continue using the vendor's products will no longer receive any updates or support.
'SneakyChef' APT Slices Up Foreign Affairs With SugarGh0st
Government ministries keep falling victim to relatively standard-fare cyber-espionage attacks, like this latest campaign with hazy Chinese links.
CISO Corner: Critical Infrastructure Misinformation; France's Atos Bid
Our collection of the most relevant reporting and industry perspectives for those guiding cybersecurity strategies and focused on SecOps. Also included: Inside China's civilian hacker army; outer space threats; and NIST 2.0 Framework secrets for success.