4 Critical Steps in Advance of 47-Day SSL/TLS Certificates – Dark Reading
With certificate lifespans set to shrink by 2029, IT teams need to spend the next 100 days planning in order to avoid operational disruptions. – Read More
Dark Reading
Checking for Fraud: Texas Community Bank Nips Check Fraud in the Bud – Dark Reading
Within months of implementing anti-fraud measures and automation, Texas National Bank prevented more than $300,000 in check fraud. – Read More
TAG-140 Targets Indian Government Via ‘ClickFix-Style’ Lure – Dark Reading
The threat actors trick victims into opening a malicious script, leading to the execution of the BroaderAspect .NET loader. – Read More
Bert Blitzes Linux & Windows Systems – Dark Reading
The new ransomware strain’s aggressive multithreading and cross-platform capabilities make it a potent threat to enterprise environments. – Read More
DPRK macOS ‘NimDoor’ Malware Targets Web3, Crypto Platforms – Dark Reading
Researchers observed North Korean threat actors targeting cryptocurrency and Web3 platforms on Telegram using malicious Zoom meeting requests. – Read More
Ransomware Attack Triggers Widespread Outage at Ingram Micro – Dark Reading
The outage began shortly before the July 4 holiday weekend and caused disruptions for customer ordering and other services provided by the IT distributor. – Read More
‘Hunters International’ RaaS Group Closes Its Doors – Dark Reading
The announcement comes just months after security researchers observed that the group was making the transition to rebrand to World Leaks, a data theft outfit. – Read More
Chrome Store Features Extension Poisoned With Sophisticated Spyware – Dark Reading
A color picker for Google’s browser with more than 100,000 downloads hijacks sessions every time a user navigates to a new webpage and also redirects them to malicious sites. –…
New Cyber Blueprint Aims to Guide Organizations on AI Journey – Dark Reading
Deloitte’s new blueprint looks to bridge the gap between the massive push for AI adoption and a lack of preparedness among leaders and employees. – Read More
Dark Web Vendors Shift to Third Parties, Supply Chains – Dark Reading
As attacks on software supply chains and third parties increase, more data on critical software and infrastructure services is being advertised and sold on the Dark Web. – Read More
Criminals Sending QR Codes in Phishing, Malware Campaigns – Dark Reading
The Anti-Phishing Working Group observed how attackers are increasingly abusing QR codes to conduct phishing attacks or to trick users into downloading malware. – Read More
IDE Extensions Pose Hidden Risks to Software Supply Chain – Dark Reading
Malicious extensions can be engineered to bypass verification checks for popular integrated development environments, according to research from OX Security. – Read More
Attackers Impersonate Top Brands in Callback Phishing – Dark Reading
Microsoft, PayPal, Docusign, and others are among the trusted brands threat actors use in socially engineered scams that try to get victims to call adversary-controlled phone numbers. – Read More
Qantas Airlines Breached, Impacting 6M Customers – Dark Reading
Passengers’ personal information was likely accessed via a third-party platform used at a call center, but didn’t include passport or credit card info. – Read More
Browser Extensions Pose Heightened, but Manageable, Security Risks – Dark Reading
Attackers can abuse malicious extensions to access critical data, including credentials, but organizations can reduce the risks by raising awareness and enforcing strict policy controls. – Read More