LummaC2 Fractures as Acreed Malware Becomes Top Dog – Dark Reading
LummaC2 formerly accounted for almost 92% of Russian Market’s credential theft log alerts. Now, the Acreed infostealer has replaced its market share. – Read More
Dark Reading
Trickbot, Conti Ransomware Operator Unmasked Amid Huge Ops Leak – Dark Reading
An anonymous whistleblower has leaked large amounts of data tied to the alleged operator behind Trickbot and Conti ransomware. – Read More
Australia Begins New Ransomware Payment Disclosure Rules – Dark Reading
The country will require certain organizations to report ransomware payments and communications within 72 hours after they’re made or face potential civil penalties. – Read More
Critical Bugs Could Spark Takeover of Widely Used Fire Safety OT/ICS Platform – Dark Reading
The unpatched security vulnerabilities in Consilium Safety’s CS5000 Fire Panel could create “serious safety issues” in environments where fire suppression and safety are paramount, according to a CISA advisory. –…
Beyond the Broken Wall: Why the Security Perimeter Is Not Enough – Dark Reading
Organizations need to abandon perimeter-based security for data-centric protection strategies in today’s distributed IT environments. – Read More
In the AI Race With China, Don’t Forget About Security – Dark Reading
The US needs to establish a clear framework to provide reasonable guardrails to protect its interests — the quicker, the better. – Read More
‘Earth Lamia’ Exploits Known SQL, RCE Bugs Across Asia – Dark Reading
A “highly active” Chinese threat group is taking proverbial candy from babies, exploiting known bugs in exposed servers to steal data from organizations in sensitive sectors. – Read More
FBI Warns of Filipino Tech Company Running Sprawling Crypto Scams – Dark Reading
The US Treasury said cryptocurrency investment schemes like the ones facilitated by Funnull Technology Inc. have cost Americans billions of dollars annually. – Read More
Vibe Coding Changed the Development Process – Dark Reading
AI tools shook up development. Now, product security must change too. – Read More
Tenable to Acquire AI Security Startup Apex – Dark Reading
Apex will enhance Tenable’s AI Aware tool by mitigating the threats of AI applications and tools not governed by organizations, while enforcing existing security policies. – Read More
CISO Stature Rises, but Security Budgets Remain Tight – Dark Reading
The rate of compensation gains has slowed from the COVID years, and budgets remain largely static due to economic fears, but CISOs are increasingly gaining executive status and responsibilities. –…
ConnectWise Breached, ScreenConnect Customers Targeted – Dark Reading
The software company, which specializes in remote IT management, said a “sophisticated nation state actor” was behind the attack but provided few details. – Read More
‘Everest Group’ Extorts Global Orgs via SAP’s HR Tool – Dark Reading
In addition to Coca-Cola, entities in Abu Dhabi, Jordan, Namibia, South Africa, and Switzerland are experiencing extortion attacks, all involving stolen SAP SuccessFactor data. – Read More
From Code Red to Rust: Microsoft’s Security Journey – Dark Reading
At this year’s Build developer conference, Microsoft reflects on what the company learned about securing features and writing secure code in the early 2000s. – Read More
NSA, CISA Urge Organizations to Secure Data Used in AI Models – Dark Reading
New guidance includes a list of 10 best practices to protect sensitive data throughout the AI lifecycle as well as addressing supply chain and data poisoning risks. – Read More