Criminal Hackers Add GenAI Credentials to Underground Markets – Dark Reading
According to the study, around 400 stolen GenAI credentials are being sold by threat actors per day. – Read More
Dark Reading
Ransomware Gangs Exploit ESXi Bug for Instant, Mass Encryption of VMs – Dark Reading
With sufficient privileges in Active Directory, attackers only have to create an “ESX Admins” group in the targeted domain and add a user to it. – Read More
The CrowdStrike Meltdown: A Wake-up Call for Cybersecurity – Dark Reading
The incident serves as a stark reminder of the fragility of our digital infrastructure. By adopting a diversified, resilient approach to cybersecurity, we can mitigate the risks and build a…
Cyberattackers Accessed HealthEquity Customer Info via Third Party – Dark Reading
Data thieves heisted the HSA provider’s data repository for 4.5 million people’s HR information, including employer and dependents intel. – Read More
NVD Backlog Continues to Grow – Dark Reading
Post Content – Read More
Cowbell Secures $60 million Series C Funding From Zurich Insurance Group – Dark Reading
Post Content – Read More
Lakera Raises $20M Series A to Secure Generative AI Applications – Dark Reading
Post Content – Read More
Heimdal Security Presents its Latest Report on Brute-Force Cyberattacks – Dark Reading
Post Content – Read More
PatchNow: ServiceNow Critical RCE Bugs Under Active Exploit – Dark Reading
One threat actor claims to have already gathered email addresses and associated hashes from more than 110 remote IT management databases. – Read More
Microsoft Lowballs CrowdStrike Outage Impact – Dark Reading
Microsoft says that its initial estimate of 8.5 million PCs affected was only a subset of the affected number of machines in the crash. – Read More
‘Zeus’ Hacker Group Strikes Israeli Olympic Athletes in Data Leak – Dark Reading
Security presence has been heightened in Paris to ensure that the Games are safe, and Israeli athletes have been provided with even more protection. – Read More
OAuth+XSS Attack Threatens Millions of Web Users With Account Takeover – Dark Reading
An attack flow that combines API flaws within “log in with” implementations and Web injection bugs could affect millions of websites. – Read More
7 Sessions Not to Miss at Black Hat USA 2024 – Dark Reading
This year’s conference will be a treasure trove of insights for cybersecurity professionals. – Read More
China-Backed Phishing Attack Targets India Postal System Users – Dark Reading
A large text-message phishing attack campaign attributed to the China-based Smishing Triad employs malicious iMessages. – Read More
Millions of Devices Vulnerable to ‘PKFail’ Secure Boot Bypass Issue – Dark Reading
Several vendors for consumer and enterprise PCs share a compromised crypto key that should never have been on the devices in the first place. – Read More