Protect Data Differently for a Different World – Dark Reading
Adopting a military mindset toward cybersecurity means the industry moves beyond the current network protection strategies and toward a data-centric security approach. – Read More
Dark Reading
How Regional Regulations Shape Global Cybersecurity Culture – Dark Reading
Ultimately, a more cyber-secure world requires a global governing body to regulate and campaign for cybersecurity, with consistent regulatory requirements in the various regions around the world. – Read More
Russia’s ‘Fighting Ursa’ APT Uses Car Ads to Install HeadLace Malware – Dark Reading
The scheme, from the group also known as APT28, involves targeting Eastern European diplomats in need of personal transportation, tempting them with a purported good deal on a Audi Q7…
Fortune 50 Co. Pays Record-Breaking $75M Ransomware Demand – Dark Reading
The runaway success of an upstart ransomware outfit called “Dark Angels” may well influence the cyberattack landscape for years to come. – Read More
China’s APT41 Targets Taiwan Research Institute for Cyber Espionage – Dark Reading
The state-sponsored Chinese threat actor gained access to three systems and stole at least some research data around computing and related technologies. – Read More
Twilio Users Kicked Out of Desktop App, Forced to Switch to Mobile – Dark Reading
Now that the Authy Desktop app has reached EOL and is no longer accessible, users are hoping their 2FA tokens synced correctly with their mobile devices. – Read More
Is the US Federal Government Increasing Cyber-Risk Through Monoculture? – Dark Reading
In a monoculture, cybercriminals need to look for a weakness in only one product, or discover an exploitable vulnerability, to affect a significant portion of services. – Read More
Disney, Nike, IBM Signatures Anchor 3M Fake Emails a Day – Dark Reading
A simple toggle in Proofpoint’s email service allowed for brand impersonation at an industrial scale. It prompts the question: Are secure email gateways (SEGs) secure enough? – Read More
Implementing Identity Continuity With the NIST Cybersecurity Framework – Dark Reading
Having a robust identity continuity plan is not just beneficial but essential for avoiding financially costly and potentially brand-damaging outages. – Read More
Attacks on Bytecode Interpreters Conceal Malicious Injection Activity – Dark Reading
By injecting malicious bytecode into interpreters for VBScript, Python, and Lua, researchers found they can circumvent malicious code detection. – Read More
More Legal Records Stolen in 2023 Than Previous 5 Years Combined – Dark Reading
Law firms make the perfect target for extortion, so it’s no wonder that ransomware attackers target them and demand multimillion dollar ransoms. – Read More
‘Sitting Ducks’ Attacks Create Hijacking Threat for Domain Name Owners – Dark Reading
Researchers say the attacks are easy to perform, difficult to contact, nearly unrecognizable, and “entirely preventable.” – Read More
Black Basta Develops Custom Malware in Wake of Qakbot Takedown – Dark Reading
The prolific ransomware group has shifted away from phishing as the method of entry into corporate networks, and is now using initial access brokers as well as its own tools…
Attackers Hijack Facebook Pages, Promote Malicious AI Photo Editor – Dark Reading
A malvertising campaign uses phishing to steal legitimate account pages, with the endgame of delivering the Lumma stealer. – Read More
Australian Companies Will Soon Need to Report Ransom Payments – Dark Reading
Significant upcoming legislation promises to tighten the screws on cyber incident response in Australia, mirroring CIRCIA in the US. – Read More