Counterfeit Phones Carrying Hidden Revamped Triada Malware – Dark Reading
The malware, first discovered in 2016, has been updated over the years, and the latest version is now hiding in the firmware of counterfeit mobile phones. – Read More
Dark Reading
Runtime Ventures Launches New Fund for Seed, Pre-Seed Startups – Dark Reading
Co-founders Michael Sutton and David Endler raised $32 million to invest in early stage cybersecurity startups as well as to provide mentoring support. – Read More
Social Engineering Just Got Smarter – Dark Reading
Polices that forbid employees from divulging company details are worthless if the same information can be obtained from sources employees have no control over. – Read More
Emerging Risks Require IT/OT Collaboration to Secure Physical Systems – Dark Reading
With an increase in cyber-physical attacks that can cause significant disruptions, financial fallout and safety concerns for victim organizations, Renee Guttmann and Marc Sachs discuss why IT and OT security…
Google Quick Share Bug Bypasses Allow Zero-Click File Transfer – Dark Reading
Google addresses patch bypasses for CVE-2024-38272 and CVE-2024-38271, part of the previously announced “QuickShell” silent RCE attack chain against Windows users. – Read More
Israel Enters ‘Stage 3’ of Cyber Wars With Iran Proxies – Dark Reading
While Israel and Iranian proxies fight it out IRL, their conflict in cyberspace has developed in parallel. These days attacks have decelerated, but advanced in sophistication. – Read More
DPRK ‘IT Workers’ Pivot to Europe for Employment Scams – Dark Reading
By using fake references and building connections with recruiters, some North Korean nationals are landing six-figure jobs that replenish DPRK coffers. – Read More
SolarWinds Adds Incident Management Tool From Squadcast – Dark Reading
The IT service management and observability tools company acquired Squadcast last month and is adding the automated incident response platform to the SolarWinds portfolio. – Read More
In Salt Typhoon’s Wake, Congress Mulls Potential Options – Dark Reading
While the House Committee on Government Reform was looking for retaliatory options, cybersecurity experts pointed them toward building better defenses. – Read More
New PCI DSS Rules Say Merchants on Hook for Compliance, Not Providers – Dark Reading
Merchants and retailers will now face penalties for not being compliant with PCI DSS 4.0.1, and the increased security standards make it clear they cannot transfer compliance responsibility to third-party…
How an Interdiction Mindset Can Help Win War on Cyberattacks – Dark Reading
The US military and law enforcement learned to outthink insurgents. It’s time for cybersecurity to learn to outsmart and outmaneuver threat actors with the same framework. – Read More
Gootloader Malware Resurfaces in Google Ads for Legal Docs – Dark Reading
Attackers target a familiar industry, law professionals, by hiding the infostealer in ads delivered via Google-based malvertising. – Read More
Malaysian Airport’s Cyber Disruption a Warning for Asia – Dark Reading
Transportation facilities and networks slowly adapt to changes and threats, leaving them vulnerable to agile cyberattackers, as demonstrated by the $10 million ransomware attack. – Read More
Google Brings End-to-End Encryption to Gmail – Dark Reading
The new Google Workspace features will make it easier for enterprise customers to implement end-to-end encryption within Gmail. – Read More
Visibility, Monitoring Key to Enterprise Endpoint Strategy – Dark Reading
A successful enterprise security defense requires a successful endpoint security effort. With options ranging from EDR, SIEM, SOAR, and more, how do security teams cut through the clutter and focus…