Mobile Cyberattacks Soar Especially Against Android Users

The number of malware samples is up as attackers aim to compromise users where they work and play: Their smartphones.

Nokod Raises $8M Seed Round From Seasoned Cybersecurity Investors to Enhance Low-Code/No-Code App Security

Nokod Security is building a platform that enables organizations to secure in-house low-code/no-code custom applications by scanning for security and compliance issues and applying remediation policies

Iran-Linked APT35 Targets Israeli Media With Upgraded Spear-Phishing Tools

The APT35 group (aka Charming Kitten), have added backdoor capabilities to their spear-phishing payloads — and targeted an Israeli reporter with it.

African Nations Face Escalating Phishing & Compromised Password Cyberattacks

Cyberattacks against organizations in some African nations increased significantly in 2022, despite a major expansion in cybersecurity hiring to support cloud and digital migration.

Make Diversity the 'How' Not the 'What' of Cybersecurity Success

Cybersecurity leaders should strive to reward high-performing teams that are powered by high levels of inclusion.

Google Cloud GenAI Is Coming to Thales' Data Security Platform

Thales will build new machine learning-powered data discovery and classification features based on Google Cloud's Vertex AI.

Thousands of Filipinos Others Rescued From Forced Cybercrime Labor

Workers were lured in by false job promises from Facebook ads, only to be tricked into committing cybercrimes with no way out.

AI-Enabled Voice Cloning Anchors Deepfaked Kidnapping

Virtual kidnapping is just one of many new artificial intelligence attack types that threat actors have begun deploying, as voice cloning emerges as a potent new imposter tool.

Cybersecurity Is the Healthcare Your Organization Needs

Organizations should consider their security practices the same way people think about their well-being. Focus on staying healthy instead of finding a new pill for every security symptom you see.

US Patent Office Hacked Trademark Apps Accessed

Misconfiguration exposed the physical addresses of 60,000 patent filers over three years.

NPM Plagued With 'Manifest Confusion' Malware-Hiding Weakness

The popular package manager for software developers has been vulnerable to this attack vector for a while, and negligent in fixing the problem, according to a former employee.

6 Ways Cybersecurity is Gut-Checking the ChatGPT Frenzy

Generative AI chatbots like ChatGPT are the buzziest of the buzzy right now, but the cyber community is starting to mature when it comes to assessing where it should fit into our lives.

LetMeSpy Phone-Tracking App Hacked Revealing User Data

With at least 13,000 compromised devices in the data leak, it is still unknown who the threat actor is or whether or not victims will be personally notified.

Cato Networks Revolutionizes Network Security With Real-Time Machine Learning-Powered Protection

The combination of data science expertise, cloud resources, and Cato's vast data lake enables real-time, ML-powered protection against evasive cyberattacks, reducing risk and improving security.

Malwarebytes ChatGPT Survey Reveals 81% are Concerned by Generative AI Security Risks

Survey also uncovers 63% of respondents distrust ChatGPT while 51% question AI's ability to improve Internet safety.

FIDO Alliance Publishes Guidance for Deploying Passkeys in the Enterprise

Half-day virtual Authenticate Summit to educate on how passkeys can fit into a variety of enterprise environments.

Jscrambler Launches JavaScript Scanner for PCI DSS 4.0 Compliance

The free tool aims to help organizations meet the requirements of the new version of the payment standard, which takes effect in March 2024.

Trans-Rights Hacktivists Steal City of Ft. Worth's Data

In a move to embarrass the city, hacking group known as SiegedSec accessed thousands of files with administrator logins, but it's making no ransom demands.

Pilot Applicant Information for American Southwest Hacked

The attack exposed personal information from pilot applicants, prompting both airlines to ditch their third-party provider and move services internally.

Most Enterprise SIEMs Blind to MITRE ATT&CK Tactics

Organizations are largely deluded about their own security postures, according to an analysis, with the average SIEM failing to detect a whopping 76% of attacker TTPs.

Why the FDA's SBOM Mandate Changes the Game for OSS Security

The new FDA software bill of materials (SBOM) guidelines for medical devices could have broad impact on the healthcare industry and the broader open source ecosystem.

Why Cyber Funding Flows for Rural Water Systems

The $7.5 million in new funds from the Cybersecurity for Rural Water Systems Act of 2023 is not just a drop in the bucket for crucially important rural water systems.

Preventing Cyberattacks on Schools Starts With K12 Cybersecurity Education

By investing in a strong future cybersecurity workforce, we can prevent future attacks on US critical infrastructure before they occur.

Twitter Celeb Account Hacker Heads to Jail for 5 Years

Extradited from Spain, PlugWalkJoe has been sentenced in US court and is now headed to federal prison on a raft of charges related to account hijacking and cyber stalking.

It's Open Season on Law Firms for Ransomware & Cyberattacks

Law firms have an ethical responsibility to protect their clients' sensitive information, but a recent swell of cyberattacks does not seem to be enough to convince law firms to shore up cybersecurity.

Cl0p in Your Network? Here's How to Find Out

Companies targeted by hacking groups with Cl0p ransomware typically have several chances to catch the attack prior to the payload being deployed, experts say.

Remediation Ballet Is a Pas de Deux of Patch and Performance

AI-generated code promises quicker fixes for vulnerabilities, but ultimately developers and security teams must balance competing interests.

How Infrastructure as Code Can Help Minimize Human Error

Infrastructure as code lets organizations manage cloud infrastructure with the same versioning, testing, and automation processes they use for application code.

Trojanized Super Mario Installer Goes After Gamer Data

A legitimate installer for the popular Nintendo game infects Windows machines with various malware, including a cryptominer and an infostealer, again showcasing the importance of remote worker security hygiene.

3 Steps to Successfully & Ethically Navigate a Data Breach

In this day of "not if, but when" for breaches, transparency and full disclosure are important to salvage a company's reputation and keep public trust.

How Active Directory Bridging Extends Security Automation to Hybrid IT Environments

AD bridging extends the reach of your AD domain to non-Windows systems, providing centralized security, single sign-on, and compliance.

Silobreaker Unveils Geopolitical Threat Intelligence Capabilities With RANE at Infosecurity Europe 2023

Integration provides threat intel teams with an early warning system for geopolitical events that could trigger cyberattacks.

Suspicious Smartwatches Mailed to US Army Personnel

Unknown senders have been shipping smartwatches to service members, leading to questions regarding what kind of ulterior motive is at play, malware or otherwise.

Microsoft Teams Attack Skips the Phish to Deliver Malware Directly

Exploiting a flaw in how the app handles communication with external tenants gives threat actors an easy way to send malicious files from a trusted source to an organization's employees, but no patch is imminent.

Black Hat Asia 2023: Cybersecurity Maturity and Concern in Asia

Black Hat Asia 2023 showed that cybersecurity is nascent among organizations in Asia with opportunities for improvement.

Growing SaaS Usage Means Larger Attack Surface

Software-as-a-service expands an organization's attack surface, and security teams need to understand how to address those risks.

CISA FBI Offer $10M for Cl0p Ransomware Gang Information

The announcement was posted on Twitter via the Rewards for Justice Twitter account, alongside encrypted messaging system options for anyone to get into contact should they have viable information.

Even With No Recession Smaller Firms Aim to Consolidate Security Tools

Small and midsized companies work to jettison some security tools to simplify operations and reduce cost, even as any economic downturn continues to remain at bay.

Ironscales Adds AI Assistant to Suss Out Phishing Attempts

The company says its Themis Co-pilot for Outlook helps recipients discern business email compromise attacks, reducing false positives for security staff.

Avast Norton Parent Latest Victim of MOVEit Ransomware Attacks

Gen Digital, the parent company of the security companies, is the latest victim in a rash of Cl0p attacks on the bug in the MOVEit transfer software, leading to employee data being revealed.

Ransomware Misconceptions Abound To the Benefit of Attackers

INFOSEC23 — London — It's time to update what we think we understand about ransomware, including new defensive measures and how fast the attack response should be.

Keep Job Scams From Hurting Your Organization

From fake job listings that ding your reputation to fake job applicants who hack your network, job scams are a major threat.

SMB Edge Devices Walloped With Asus Zyxel Patch Warnings

A slew of critical advisories this week showcase an exploding edge device attack surface for SMBs, which have limited cybersecurity protection, visibility, and maintenance available.

Emerging Ransomware Group 8Base Doxxes SMBs Globally

A threat you've never heard of is using double extortion attacks on mom-and-pop shops around the globe.

100K Infected Devices Leak ChatGPT Accounts to the Dark Web

Infostealers are as alive as ever, wantonly sweeping up whatever business data might be of use to cybercriminals, including OpenAI credentials.

Jordanian Cyber Leaders Kick Off Cybersecurity Framework Development

The nation of Jordan begins work on a national cybersecurity framework to align with international practices and better mitigate threats.

Fresh Ransomware Gangs Emerge As Market Leaders Decline

The ransomware landscape is energized with the emergence of smaller groups and new tactics, while established gangs like LockBit see fewer victims.

Mysterious Mystic Stealer Spreads Like Wildfire in Mere Months

A criminal crowd-sourcing campaign has led to swift adoption of the stealer, which can pilfer key computer data, credentials from browsers and chat apps, and cryptocurrency from multiple wallets.

Hackers Will Be Quick to Bypass Gmail's Blue Check Verification System

It's still important to use other security measures, such as strong passwords and two-factor authentication, to protect your data.

Rorschach Ransomware: What You Need to Know

Learn how the latest ransomware variant has heightened attack execution speed and what that means for cybersecurity operations.

Consumer Data: The Risk and Reward for Manufacturing Companies

To adequately address privacy, manufacturers need to think differently about data.

Name That Toon: Time to Spare?

Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card.

US Investors Sniffing Around Blacklisted NSO Group Assets

Pressure mounts on the NSO Group's business viability as Khashoggi widow joins group of plaintiffs suing the Israeli firm for Pegasus spyware abuse.

Decoding Identity and Access Management For Organizations and Consumers

Workforce IAM and consumer IAM are not interchangeable — they serve different purposes and constituencies.

The Infrastructure Security Engineer Is a Unicorn Among Thoroughbreds

This new role safeguarding cloud deployments requires an exceedingly rare set of technical and soft skills.

Killnet Threatens Imminent SWIFT World Banking Attacks

The DDoS collective claims to be teaming up with ReVIL and Anonymous Sudan for destructive financial attacks in retaliation for US aid in Ukraine, but the partnerships (and danger) are far from verified.

Third MOVEit Transfer Vulnerability Disclosed by Progress Software

MOVEit has created a patch to fix the issue and urges customers to take action to protect their environments, as Cl0p attacks on the service continue to mount.

How Do I Protect My API Keys From Appearing in GitHub Search Results?

A few lines of code can help you prevent accidental exposure, manage sensitive information, and maintain different configurations for various environments.

Keytos Uncovers 15000 Vulnerable Subdomains per Month in Azure Using Cryptographic Certificates

Critical Barracuda ESG Zero-Day Linked to Novel Chinese APT

A PRC-aligned actor used a trio of custom malware to take advantage of inherent weaknesses in edge appliances.

Angola Marks Technology Advancements With Cybersecurity Academy Plans

The academy is meant to ensure a safe and strong telecommunication service and information technologies for Angola's citizens, the president said.

Borderless Data vs. Data Sovereignty: Can They Co-Exist?

Organizations that remain compliant with data-sovereignty regulations while enabling cross-border data sharing gain significant competitive advantage because they can make quick, agile, and informed decisions.

Network-Security Testing Standard Nears Prime Time

NetSecOpen recently released a new draft of its testing and benchmarking guide, which could be adopted later this year.

Cryptocurrency Attacks Quadrupled as Cybercriminals Cash In

Attackers continue to attempt to steal Bitcoin and other virtual coins, with a 40% increase in phishing attacks and fourfold increase in incidents.

Russian APT 'Cadet Blizzard' Behind Ukraine Wiper Attacks

Microsoft says Cadet Blizzard wielded a custom wiper malware in the weeks leading up to Russia's invasion of Ukraine, and it remains capable of wanton destruction.

Illinois Hospital Closure Showcases Ransomware's Existential Threat

St. Margaret's Health is shutting down due to a 2021 ransomware attack and other factors. It's an object lesson for how small and rural healthcare facilities face grave cyber-risk when extortionists come calling.

XSS Vulnerabilities Found in Microsoft Azure Cloud Services

Microsoft quickly issued patches for the two security issues, which could allow unauthorized access to cloud sessions.

Moving the Cyber Industry Forward Requires a Novel Approach

CISOs need to be better equipped with strategic metrics and proof points to better align their organization for defense against the ever-changing threat landscape.

Microsoft Fixes 69 Bugs but None Are Zero-Days

The June 2023 Patch Tuesday security update included fixes for a bypass for two previously addressed issues in Microsoft Exchange and a critical elevation of privilege flaw in SharePoint Server.

Chinese Threat Actor Abused ESXi Zero-Day to Pilfer Files From Guest VMs

Mandiant's ongoing investigation of UNC3886 has uncovered new details of threat actors' TTPs.

Popular Apparel Clothing Brands Being Used in Massive Phishing Scam

Threat actors have created over 3,000 domains, some as old as two years, to lure in customers to false, name brand websites for personal financial gain.

Harness the Power of PKI to Battle Data Breaches

The average cost of a data breach is $4.35 million. Understand the power of public key infrastructure (PKI) and its role in encrypting data and battling breaches.

How Security Leaders Should Approach Cybersecurity Startups

Vendors and buyers both have the power to make the industry a better place. What's needed is more collaboration, mutual support, and respect.

Researchers Report First Instance of Automated SaaS Ransomware Extortion

The attack highlights growing interest among threat actors to target data from software-as-a-service providers.

New Loader Delivering Spyware via Image Steals Cryptocurrency Info

Sophisticated attackers are lacing malware into PNG image files in order to steal cryptocurrency and business information.

Use of Multifactor Authentication (MFA) Nearly Doubles Since 2020, Okta Secure Sign-in Trends Reports Finds

Okta platform data-based study finds FastPass and WebAuthn offer far stronger security and faster, more reliable user experiences.

10 Important Security Tasks You Shouldn't Skip

Time and money are valuable and finite, but some actions are well worth spending those resources on.

'Stealth Soldier' Attacks Target Libyan Government Entities With Surveillance Malware

Surveillance malware targets Libyan government entities, with possible links to a 2019 Egypt attack campaign.

Supply Chain Attack Defense Demands Mature Threat Hunting

Active threat hunting is the best protection against supply chain attacks like MOVEit and 3CX, experts say.

Doing Less With Less: Focusing on Value

Always reach for defense in depth with proposed security changes. Measure and test results, focus on items of greatest impact, and get C-suite members involved to drive better outcomes.

Passkeys See Fresh Momentum With New Pilot Programs

Apple adds API that will enable sharing of passkeys across platforms, and Google offers passkey authentication in beta for Google Workspace and Google Cloud.

DOS Attacks Dominate, but System Intrusions Cause Most Pain

In the latest Verizon "Data Breach Investigations Report," denial-of-service attacks are the most common type of security incident, but when it comes to breaches, nearly four-in-ten attackers compromise systems.

Brand-New Security Bugs Affect All MOVEit Transfer Versions

Progress has issued a second patch for additional SQL flaws that are distinct from the zero-day that Cl0p ransomware gang is exploiting.

'Asylum Ambuscade' Cyberattackers Blend Financial Heists & Cyber Espionage

In a rare mix of motivations, the cyberattack group has been linked to both financial cybercrime and political spying efforts on governments.

South African Female Students Offered Cyber Scholarship

Women of color are being offered a scholarship opportunity in South Africa — the offer will cover costs for pursuing a cyber career and encourage greater diversity of those studying cybersecurity courses.

5 Tips for Modernizing Your Security Operations Center Strategy

A solid, dependable SOC strategy that is scalable in the face of various security threats is essential to reduce cybersecurity risks to your business.

How Continuous Monitoring and Threat Intel Can Help Prevent Ransomware

Security teams should be empowered with the right amount of intelligence to track new and emerging threats and connect that intel to historical data.

Cybercrooks Scrape OpenAI API Keys to Pirate GPT-4

With more than 50,000 publicly leaked OpenAI keys on GitHub alone, OpenAI developer accounts are the third-most exposed in the world.

City of Dallas Still Clawing Back Weeks After Cyber Incident

The Texas city's networks have returned to 90% functionality following the May 3 Royal ransomware attack.

Cybersecurity Institute to Open in Saudi Arabia

The Global Cybersecurity Forum branch, which will be in Riyadh, is meant to enable the exchange of ideas and facilitate international projects and partnerships.

Barracuda Warns All ESG Appliances Need Urgent Rip & Replace

Patching, wiping ESG devices not enough to deny threat actor access following compromise, Barracuda says.

The Growing Cyber Threats of Generative AI: Who's Accountable?

In the wrong hands, malicious actors can use chatbots to unleash sophisticated cyberattacks that could have devastating consequences.

BeyondID Launches Initiative to Accelerate Zero Trust With Okta Identity Engine

OIE upgrade roadmap helps organizations become more secure; saves time, resources.

Radiflow's CIARA 4.0 Delivers Actionable Insights to Simplify the Management of OT Cyber-Risk at Industrial Facilities

CIARA V4.0 boosts compliance with security regulations and best practices while providing effective mitigation guidance. "CISOs are doing more with less, making it challenging to understand their current standing across the OT Cybersecurity landscape," said Ilan Barda, Radiflow CEO and co-founder.

Cl0p Cybercrime Gang Delivers Ultimatum After Payroll Breach

Experts and researchers warn individuals and organizations that the cybercrime group is not to be trusted in their demands.

Cyber Essentialism & 'Doing Less With Less'

Cybersecurity benefits from a focus on the vital few chores rather than the trivial many. Find the "right things" to encourage strategic thinking, then move the culture needle to promote that policy.

The Key to Zero Trust Identity Is Automation

In a zero-trust world, a trusted identity is the key that unlocks access for people and devices to enter your enterprise’s key networks, systems, and resources.

Cisco Touts New AI-Based Security, SSE Features

Cisco laid out its AI plans and a vision for unified cloud security during Cisco Live 2023.

Verizon DBIR: Social Engineering Breaches Double, Leading to Spiraling Ransomware Costs

Ransomware continues its runaway growth with median payments reaching $50,000 per incident.

Researchers Spot a Different Kind of Magecart Card-Skimming Campaign

In addition to injecting a card skimmer into target Magento, WooCommerce, Shopify, and WordPress sites, the the threat actor is also hijacking targeted domains to deliver the malware to other sites.

With SEC Rule Changes on the Horizon, Research Reveals Only 14% of CISOs Have Traits Desired for Cyber Expert Board Positions

ILTA and Conversant Group Release Cybersecurity Benchmarking Survey of the Legal Industry

Joint research highlights disconnect between legal IT and recommended cybersecurity practices.

Netskope Intelligent SSE Selected by Transdev to Secure and Connect its Hybrid Workforce

Implementation is part of Transdev's Cloud-First approach to better manage technological obsolescence.

US Aerospace Contractor Hacked With 'PowerDrop' Backdoor

Hackers used a little to do a lot, cracking a high-value target with hardly more than the living-off-the-land tools (PowerShell especially) found on any standard Windows computer.

Moonlighter Satellite Offers In-Orbit Target for Space Hackers

Moonlighter, which offers red teams a chance at operational disruption, will be up for pwning at in August, timed with DEF CON.

Name That Edge Toon: Spring Chickens

Come up with a clever caption, and our panel of experts will reward the winner with a $25 Amazon gift card.

Don't Overlook Twitter's Trove of Threat Intel for Enterprise Cybersecurity

Social media data can provide critical clues to help get ahead of the next cyberattack, experts say.

Varonis: Reducing Insider Threats Through Improved Data Security

In this Fast Chat segment, Dark Reading's Terry Sweeney and Varonis co-founder and CEO Yaki Faitelson discuss why we’re still seeing internal data breaches.

Mass Exploitation of Zero-Day Bug in MOVEit File Transfer Underway

With shades of the GoAnywhere attacks, a cyber threat actor linked to FIN11 is leveraging a bug in the widely used managed file transfer product to steal data from organizations in multiple countries.

After 'Inception' Attack, New Due Diligence Requirements Are Needed

To stem supply chain attacks, forging a new dynamic of shared cybersecurity hygiene accountability is the right thing to do.

PyPI's 2FA Requirements Don't Go Far Enough, Researchers Say

The Python Package Index will require developers to better secure their accounts as cyberattacks ramp up, but protecting the software supply chain will take more than that.

'PostalFurious' SMS Attacks Target UAE Citizens for Data Theft

SMS campaigns targeting members of the public in the United Arab Emirates have been detected.

DNB Strengthens its Network Security Posture and Productivity With Ericsson Security Manager Solution

Cyversity and United Airlines to Provide Cybersecurity Training Scholarships to Cyversity Members

Program designed to equip women and underrepresented individuals with the necessary skills and knowledge to succeed in cybersecurity.

Tel Aviv Stock Exchange Selects CardinalOps to Reduce Risk of Breaches Due to Undetected Attacks

Enables financial services firm to operationalize MITRE ATT&CK with Splunk and eliminate detection coverage gaps based on organizational risk and priorities.

Amazon Pays $30.8M to Settle Ring Spying & Alexa Privacy Lawsuits

The global e-commerce company will pay millions of dollars in two separate lawsuits because of privacy and security violations, the FTC says.

Jetpack WordPress Plug-in API Bug Triggers Mass Updates

An audit uncovers an API-related security vulnerability dating back to Jetpack version 2.0 released in 2012 — and it affects millions of websites.

How Do I Reduce Security Tool Sprawl in My Environment?

When it comes to tool consolidation, focus on platforms over products.

Where SBOMs Stand Today

It's been two years since Executive Order 14028. By using SBOMs as a standard, organizations can manage software risks, protect their reputation, and improve their cybersecurity posture.