MSFT-CrowdStrike ‘Rosetta Stone’ for Naming APTs: Meh? – Dark Reading
Microsoft and CrowdStrike announced an effort to deconflict the overlapping names of threat groups and reduce confusion for companies, but we’ve been here before. – Read More
Dark Reading
Prep for Layoffs Before They Compromise Security – Dark Reading
Mass layoffs create cybersecurity vulnerabilities through dormant accounts and disgruntled employees. – Read More
SecOps Need to Tackle AI Hallucinations to Improve Accuracy – Dark Reading
AI is increasingly embedded into threat detection and response tools, but hallucinations can lead to false positive and inaccurate guidance. The AI-associated risk can’t be completely eradicated, but SecOps teams…
Digital Forensics Firm Cellebrite to Acquire Corellium – Dark Reading
Cellebrite, a controversial digital forensics firm, is set to acquire virtualization vendor Corellium in a $170 million deal. – Read More
‘PathWiper’ Attack Hits Critical Infrastructure In Ukraine – Dark Reading
Cisco Talos researchers observed the new wiper malware in a destructive attack against an unnamed critical infrastructure organization. – Read More
Cisco Warns of Credential Vuln on AWS, Azure, Oracle Cloud – Dark Reading
The vulnerability, with a 9.9 CVSS score on a 10-point scale, results in different Cisco ISE deployments all sharing the same credentials as long as the software release and cloud…
Backdoored Malware Reels in Newbie Cybercriminals – Dark Reading
Sophos researchers found this operation has similarities or connections to many other campaigns targeting GitHub repositories dating back to August 2022. – Read More
Questions Swirl Around ConnectWise Flaw Used in Attacks – Dark Reading
ConnectWise issued a patch to stave off attacks on ScreenConnect customers, but the company’s disclosures don’t explain what the vulnerability is and when it was first exploited. – Read More
Finding Balance in US AI Regulation – Dark Reading
The US can’t afford to wait for political consensus to catch up to technological change. – Read More
Iranian APT ‘BladedFeline’ Hides in Network for 8 Years – Dark Reading
ESET published research on the Iranian APT “BladedFeline,” which researchers believe is a subgroup of the cyber-espionage entity APT34. – Read More
Cybersecurity Training in Africa Aims to Bolster Professionals’ Ranks – Dark Reading
The United Nations, Carnegie Mellon University, and private organizations are all aiming to train the next generation of cybersecurity experts, boost economies, and disrupt pipelines to armed groups. – Read…
35K Solar Devices Vulnerable to Potential Hijacking – Dark Reading
A little more than three-quarters of these exposed devices are located in Europe, followed by Asia, with 17%. – Read More
Vishing Crew Targets Salesforce Data – Dark Reading
A group Google is tracking as UNC6040 has been tricking users into installing a malicious version of a Salesforce app to gain access to and steal data from the platform.…
Vishing Crew Targets Salesforce Data – Dark Reading
A group that Google is tracking as UNC6040 has been tricking users at many organizations into installing a malicious version of a Salesforce app to gain access and steal data…
How Neuroscience Can Help Us Battle ‘Alert Fatigue’ – Dark Reading
By understanding the neurological realities of human attention, organizations can build more sustainable security operations that protect not only their digital assets but also the well-being of those who defend…