ToddyCat APT Targets ESET Bug to Load Silent Malware – Dark Reading
Researchers found the threat actor attempting to use the now-patched flaw to load and execute a malicious dynamic link library on infected systems. – Read More
Dark Reading
NIST to Implement ‘Deferred’ Status to Dated Vulnerabilities – Dark Reading
The changes will go into effect over the next several days to reflect which CVEs are being prioritized in the National Vulnerability Database (NVD). – Read More
Scattered Spider’s ‘King Bob’ Pleads Guilty to Cyber Charges – Dark Reading
The 20-year-old was arrested in January 2024 alongside four other group members who carried out related cybercriminal acts, earning them similar charges. – Read More
Autonomous, GenAI-Driven Attacker Platform Enters the Chat – Dark Reading
“Xanthorox AI” provides a modular GenAI platform for offensive cyberattacks, which supplies a model-agnostic, one-stop shop for developing a range of cybercriminal operations. – Read More
Intergenerational Mentoring: Key to Cybersecurity’s AI Future – Dark Reading
As threats evolve and technology changes, our ability to work together across generations will determine our success. – Read More
Gmail Is Not a Secure Way to Send Sensitive Comms: A Friendly Reminder – Dark Reading
New end-to-end Gmail encryption alone isn’t secure enough for an enterprise’s most sensitive and prized data, experts say. – Read More
RSAC Unveils Keynote Speaker Slate for RSAC (TM) 2025 Conference – Dark Reading
Post Content – Read More
CISA Warns: Old DNS Trick ‘Fast Flux’ Is Still Thriving – Dark Reading
An old DNS switcheroo technique is still helping attackers keep their infrastructure alive. But is it really a pressing issue in 2025? – Read More
Minnesota Tribe Struggles After Ransomware Attack – Dark Reading
Hotel and casino operations for the Lower Sioux Indians have been canceled or postponed, and the local health center is redirecting those needing medical or dental care. – Read More
Medusa Rides Momentum From Ransomware-as-a-Service Pivot – Dark Reading
Shifting to a RaaS business model has accelerated the group’s growth, and targeting critical industries like healthcare, legal, and manufacturing hasn’t hurt either. – Read More
CISA Layoffs Are a Momentary Disruption, Not a Threat – Dark Reading
Layoffs may cause short-term disruptions, but they don’t represent a catastrophic loss of cybersecurity capability — because the true cyber operations never resided solely within CISA to begin with. –…
Secure Communications Evolve Beyond End-to-End Encryption – Dark Reading
Signal, Wickr, WhatsApp, and Cape all have different approaches to security and privacy, yet most are finding ways to make secure communications more private. – Read More
Rafts of Security Bugs Could Rain Out Solar Grids – Dark Reading
At least three major energy solution and renewable energy companies have nearly 50 vulnerabilities — many of them “basic” mistakes — indicating a lack of developed cybersecurity safeguards. – Read…
Microsoft Boosts Email Sender Rules for Outlook – Dark Reading
The tech giant will enforce new email authentication protocols for Outlook users who send large volumes of email beginning on May 5. – Read More
China-Linked Threat Group Exploits Ivanti Bug – Dark Reading
The vendor had originally assessed the flaw as low risk but now says it is a critical issue that enables remote code execution. – Read More