SEO Poisoning Campaign Tied to Chinese Actor – Dark Reading
In Operation Rewrite, an unspecified actor is using legitimate compromised web servers to deliver malicious content to visitors for financial gain. – Read More
Dark Reading
Iran-Linked Hackers Target Europe With New Malware – Dark Reading
“Nimbus Manticore” is back at it, this time with improved variants of its flagship malware and targets that are outside its usual focus area. – Read More
Attackers Use Phony GitHub Pages to Deliver Mac Malware – Dark Reading
Threat actors are using a large-scale SEO poisoning campaign and fake GitHub repositories to deliver Atomic infostealers to Mac users. – Read More
Airport Chaos Shows Human Impact of 3rd-Party Attacks – Dark Reading
Major EU airports such as Heathrow were disrupted over the weekend after a cyberattack hit the provider of check-in kiosk software, which caused delays and flight cancellations. – Read More
15 Years of Zero Trust: Why It Matters More Than Ever – Dark Reading
With the emergence of AI-driven attacks and quantum computing, and the explosion of hyperconnected devices, zero trust remains a core strategy for security operations. – Read More
Patch Now: Max-Severity Fortra GoAnywhere Bug Allows Command Injection – Dark Reading
Exploitation of the flaw, tracked as CVE-2025-10035, is highly dependent on whether systems are exposed to the Internet, according to Fortra. – Read More
Capture the Flag Competition Leads to Cybersecurity Career – Dark Reading
As Splunk celebrates the 10th anniversary of Boss of the SOC competition, it continues to be a valuable platform for security professionals to test their skills, learn new techniques, and…
Zero Trust: Strengths and Limitations in the AI Attack Era – Dark Reading
Zero Trust could help organizations fight back against attackers who use artificial intelligence, but new threats will require the architecture to evolve. – Read More
‘ShadowLeak’ ChatGPT Attack Allows Hackers to Invisibly Steal Emails – Dark Reading
The loophole allows cyberattackers to exfiltrate company data via OpenAI’s infrastructure, leaving no trace at all on enterprise systems. – Read More
Plastic People, Plastic Cards: Synthetic Identities Plague Finance & Lending Sector – Dark Reading
Following a pandemic-era respite, financial fraud linked to synthetic identities is rising again, with firms potentially facing $3.3 billion in damages from new accounts. – Read More
Transforming Cyber Frameworks to Take Control of Cyber-Risk – Dark Reading
Frameworks may seem daunting to implement — especially for government IT teams that may not have an abundance of resources and expertise. But beginning implementation is better than never starting.…
Iranian State APT Blitzes Telcos & Satellite Companies – Dark Reading
A Charming Kitten subgroup is performing some of the most bespoke cyberattacks ever witnessed in the wild, to down select high-value targets. – Read More
Critical Azure Entra ID Flaw Highlights Microsoft IAM Issues – Dark Reading
While the cloud vulnerability was fixed prior to disclosure, the researcher who discovered it says it could have led to catastrophic attacks, alarming some in the security community. – Read…
7 Lessons for Securing AI Transformation from former CIA Digital Guru – Dark Reading
Jennifer Ewbank, former CIA deputy director of digital innovation, on resilience, cultural shifts, and cyber fundamentals in the AI era. – Read More
TikTok Deal Won’t End Enterprise Risks – Dark Reading
The proposed restructuring plan would address many concerns related to the social media platform, but risks remain for security teams. – Read More