Undead Operating Systems Haunt Enterprise Security Networks – Dark Reading
Windows 10 reaches end-of-life on Oct. 14, which will triple the number of vulnerable enterprise systems and create a massive attack surface for cybercriminals. – Read More
Dark Reading
China Imposes One-Hour Reporting Rule for Major Cyber Incidents – Dark Reading
The sweeping new regulations show that China’s serious about hardening its own networks after launching widespread attacks on global networks. – Read More
New China APT Strikes With Precision and Persistence – Dark Reading
Phantom Taurus demonstrates a deep understanding of Windows environments, including advanced components like IIServerCore, a fileless backdoor that executes in memory to evade detection. – Read More
‘Klopatra’ Trojan Makes Bank Transfers While You Sleep – Dark Reading
A sophisticated new banking malware is hard to detect, capable of stealing lots of money, and infecting thousands of people in Italy and Spain. – Read More
China Exploited New VMware Bug for Nearly a Year – Dark Reading
A seemingly benign privilege-escalation process in VMware and other software has likely benefited attackers and other malware strains for years, researchers noted. – Read More
Can Shadow AI Risks Be Stopped? – Dark Reading
Agentic AI has introduced abundant shadow artificial intelligence (AI) risks. Cybersecurity startup Entro Security extends its platform to help enterprises combat the growing issue. – Read More
‘Trifecta’ of Google Gemini Flaws Turn AI into Attack Vehicle – Dark Reading
Flaws in individual models of Google’s AI suite created significant security and privacy risks for users, demonstrating the need for heightened defenses. – Read More
AI-Powered Voice Cloning Raises Vishing Risks – Dark Reading
A researcher-developed framework could enable attackers to conduct real-time conversations using simulated audio to compromise organizations and extract sensitive information. – Read More
IoT Security Flounders Amid Churning Risk – Dark Reading
The Internet of Things (IoT) has made everything more interconnected than ever, but an important US government security initiative is stuck in limbo even as threat actors step up attacks…
Sneaky, Malicious MCP Server Exfiltrates Secrets via BCC – Dark Reading
The first known malicious MCP server is an AI integration tool that automatically sends email such as those related to password resets, account confirmations, security alerts, invoices, and receipts to…
Akira Hits SonicWall VPNs in Broad Ransomware Campaign – Dark Reading
Akira ransomware actors are currently targeting SonicWall firewall customers vulnerable to a bug discovered last year. – Read More
Ukrainian Cops Spoofed in Fileless Phishing Attacks on Kyiv – Dark Reading
Attackers impersonate the National Police of Ukraine to deploy Amatera Stealer and PureMiner, using malicious Scalable Vector Graphics to trick victims. – Read More
Volvo Employee SSNs Stolen in Supplier Ransomware Attack – Dark Reading
Three international vehicle manufacturers have fallen to supply chain cyberattacks in the past month alone. – Read More
Iranian State Hackers Use SSL.com Certificates to Sign Malware – Dark Reading
Security researchers say multiple threat groups, including Iran’s Charming Kitten APT offshoot Subtle Snail, are deploying malware with code-signing certificates from the Houston-based company. – Read More
Prep is Underway, But 2026 FIFA World Cup Poses Significant Cyber Challenges – Dark Reading
The world’s most-popular sports contest starts in June 2026 across 16 venues in three countries: Securing the event infrastructure from cyber threats will require massive collaboration. – Read More