Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
NDSU Offers Nation's First Ph.D. in Cybersecurity Education
The new program focuses on training university-level educators in cybersecurity.
Toyota Customer Information Exposed in Data Breach
The attackers hit dealer sales systems in Japan, according to the automaker.
7 Malware Families Ready to Ruin Your IoT's Day
This latest list of Internet of Things miscreants doesn't limit itself to botnets, like Mirai.
Android Banking Trojan 'Gustuff' Becomes More Dangerous
New report puts Gustuff into the same threat tier as Anubis, Red Alert, Exobot, LokiBot and BankBot.
20 Years of STRIDE: Looking Back, Looking Forward
The invention of STRIDE was the key inflection point in the development of threat modeling from art to engineering practice.
UK Watchdog Criticizes Huawei for Lax Software Security, Development
Calling the company's software development practices chaotic and unsustainable, a UK government oversight group calls on the company to make measurable progress toward more secure and sustainable code.
Microsoft Takes Down 99 Hacker-Controlled Websites
A judge granted Microsoft the injunction allowing them to disrupt a network of sites operated by an Iranian-linked group of hackers.
Artificial Intelligence in Modern Cybersecurity Operations
As a rapidly evolving field of science, AI has become flexible to new approaches and tools allowing even cutting-edge technology such as quantum computing under its umbrella of methods.
New Android Trojan Targets 100+ Banking Apps
'Gustuff' also designed to steal from cryptocurrency wallets, payment services, e-commerce apps.
40% of Organizations Not Doing Enough to Protect Office 365 Data
Companies could be leaving themselves vulnerable by not using third-party data backup tools, a new report finds.
Man Pleads Guilty to Hacking Apple Accounts of NFL & NBA Players, Rappers
Dozens of pro athletes and musicians fell for a phishing scam that pilfered their Apple accounts and credit cards.
Quantum Computing and Code-Breaking
Prepare today for the quantum threats of tomorrow.
Enterprise Data Encryption Hits All-time High
A new report by the Ponemon Institute shows 45% of organizations have a comprehensive encryption policy in place.
Microsoft Tackles IoT Security with New Azure Updates
The Azure Security Center for IoT provides teams with an overview of IoT devices and helps monitor their security properties.
Everything I Needed to Know About Third-Party Risk Management, I Learned from Meet the Parents
How much do you trust your vendors? You don't have to hook them up to a polygraph machine because there are better ways to establish trust.
Tidying Expert Marie Kondo: Cybersecurity Guru?
The "KonMari" method of decluttering can be a huge step toward greater security, according to a growing number of executives.
Inside Cyber Battlefields, the Newest Domain of War
In his Black Hat Asia keynote, Mikko Hypponen explored implications of "the next arms race" and why cyber will present challenges never before seen in warfare.
Worldwide Study Finds Limited Advances Against Evolving Threats
Security vendor SonicWall has issued its SonicWall Cyber Threat Report based on its experiences in 2018.
6 Things To Know About the Ransomware That Hit Norsk Hydro
In just one week, 'LockerGoga' has cost the Norwegian aluminum maker $40 million as it struggles to recover operations across Europe and North America.
New Shodan Tool Warns Organizations of Their Internet-Exposed Devices
Shodan Monitor is free to members of the popular Internet search engine.
Threat Hunting 101: Not Mission Impossible for the Resource-Challenged
How small and medium-sized businesses can leverage native features of the operating system and freely available, high-quality hunting resources to overcome financial limitations.
GAO Finds Deficiencies in Systems for Handling National Debt
IT systems at the Bureau of the Fiscal Service and the Federal Reserve Bank show vulnerabilities that could lead them open to exploitation and breach.
Investigation Into LockerGoga Ransomware Finds Flaws in the Code
Preliminary analysis of LockerGoga shows it has, in its current forms, limited ability to spread in a network.
The 'Twitterverse' Is Not the Security Community
The drama on social media belies the incredible role models, job, training, and networking opportunities found in the real world of traditional cybersecurity.
Russia Regularly Spoofs Regional GPS
The nation is a pioneer in spoofing and blocking satellite navigation signals, causing more than 9,800 incidents in the past three years, according to an analysis of navigational data.
ASUS 'ShadowHammer' Attack Underscores Trusted Third-Party Risks
Taiwanese computer maker says it has fixed issue that allowed attackers to distribute malware via company's automatic software update mechanism.
Small Businesses Turn to Managed Service Providers for Security
The average cost of a cyberattack at an SMB is $54,650, a new study shows.
Insurers Collaborate on Cybersecurity Ratings
A group of insurers will base rates and terms on whether customers purchase technology that has earned a stamp of approval.
Data Privacy Manifestos: Competitive Advantage or the Start of Something Bigger?
Facebook is the latest company to weigh in with a corporate manifesto focused on privacy. Though it's a welcome trend, only time will tell how many follow through.
10 Movies All Security Pros Should Watch
Don't expect to read about any of the classics, like 'War Games' or 'Sneakers,' which have appeared on so many lists before. Rather, we've broadened our horizons with this great mix of documentaries, hacker movies, and flicks based on short stories.
Under Attack: Over Half of SMBs Breached Last Year
Many small and midsize businesses work faster and harder than large enterprises, but they're just as vulnerable to cybercrime.
87% of Cloud Pros Say Lack of Visibility Masks Security
The majority of cloud IT professionals find a direct link between network visibility and business value, new data shows.
Ex-NSA Director Rogers: Insider Threat Prevention a 'Contract'
Ret. Admiral Michael Rogers – who served as head of the NSA and the US Cyber Command from 2014 to 2018 – on how to handle the risk of insiders exposing an organization's sensitive data.
WordPress Zero-Day Vulnerability Found in 'Social Warfare' Plugin
'Social Warfare' was open to attacks through use of a stored Cross-Site Scripting (XSS) vulnerability that was introduced with the latest change made to the plugin (3.5.2).
5 Years of the NIST Cybersecurity Framework
With NIST celebrating the five-year anniversary of its widely adopted and recommended Cybersecurity Framework just last month, a look back over the years illustrates how far the Framework has come.
Pwn2Own: Tesla Hack, Broken VMs, and Skewed Economics
In the latest Pwn2Own vulnerability throwdown at the CanSecWest conference, two researchers walk away with the lion's share of rewards—just like the real marketplace.
Attackers Compromise ASUS Software Update Servers to Distribute Malware
ShadowHammer campaign latest to highlight dangers of supply chain attacks.
IT Leaders, Employees Divided on Data Security
Execs and employees have dramatically different ideas of how much information is being lost and why – a gap that puts enterprise data in grave danger.
Dark Reading’s Kelly Jackson Higgins Honored as Top Cybersecurity Journalist
In voting conducted by the SANS Institute, Jackson Higgins is named by peers as one of the top 10 journalists in the industry.
Norsk Hydro: This Is How You React to a Ransomware Breach
The company's response to a massive ransomware attack is an object lesson in how to do it right.
A Glass Ceiling? Not in Privacy
According to a new study, female professionals in the US privacy profession outnumber males 53% to 47%.
Inside Incident Response: 6 Key Tips to Keep in Mind
Experts share the prime window for detecting intruders, when to contact law enforcement, and what they wish they did differently after a breach.
Two Found Guilty in Online Dating, BEC Scheme
Cybercriminals involved in the operation created fake online dating profiles and tricked victims into sending money to phony bank accounts.
Facebook Exposes Millions of Unencrypted User Passwords
It's an internal matter – but it could affect millions of the social network's users.
Security Lessons from My Game Closet
In an era of popular video games like Fortnite and Minecraft, there is a lot to be learned about risk, luck, and strategy from some old-fashioned board games.
FIN7 Resurfaces With New Malware Techniques
The FIN7 group of cyber criminals is still going strong.
FIN7 Cybercrime Gang Rises Again
The group now employs a new administrative interface for managing its campaigns, as well as documents that link to SQL databases for downloading its code.
Businesses Manage 9.7PB of Data but Struggle to Protect It
What's more, their attempts to secure it may be putting information at risk, a new report finds.
Facebook Employees for Years Could See Millions of User Passwords in Plain Text
2,000 Facebook engineers or developers reportedly made some nine million internal queries for data elements with plain text passwords.
Hacker AI vs. Enterprise AI: A New Threat
Artificial intelligence and machine learning are being weaponized using the same logic and functionality that legitimate organizations use.
|
Latest Comment: This comment is waiting for review by our moderators.
2021 Top Enterprise IT TrendsWe've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Tweet This
0 Comments
