Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
Microsoft Tops Phishers' Favorite Brands as Facebook Spikes
Microsoft remains the favorite brand to spoof in phishing campaigns, but more attackers are impersonating Facebook.
Aviation Faces Increasing Cybersecurity Scrutiny
Some aviation experts and security researchers are trying to foster closer alliances for securing airplane networks.
Threat Intelligence Gateways: A Useful Adjunct to Overworked Perimeter Security
Comparative research shows the relative strengths and weaknesses of five TIG vendors and which kinds of security organization will reap the most benefit.
LinkedIn Details Features of Fight Against Fakes
A recent blog post explains how the social network is fighting to protect its users from interactions with fake accounts.
Texas Towns Recover, but Local Governments Have Little Hope for Respite from Ransomware
Their struggles underscore the difficulties for small towns in dealing with cyberattacks.
SafeGuard Cyber Adds Security, Compliance Capabilities for WeChat
A lack of visibility into the app could expose business users to compliance risks and security threats, the company says.
5 Identity Challenges Facing Today’s IT Teams
To take control over your company's security, identify and understand the biggest identity and access management challenges facing IT teams today and start addressing them.
New FISMA Report Shows Progress, Gaps in Federal Cybersecurity
No major incidents mixed with continuing gaps in implementation paint an improving, but still muddy, picture of cybersecurity in the federal government.
Silence APT Group Broadens Attacks on Banks, Gets More Dangerous
Over the past year, the financial damage linked to the Russian-speaking threat group has spiked fivefold, Group-IB says.
Splunk Buys SignalFx for $1.05 Billion
Deal will yield 'one platform that can monitor the entire enterprise application lifecycle,' Splunk CEO says.
MoviePass Leaves Credit Card Numbers, Personal Data Exposed Online
Thousands of customers' credit card numbers, MoviePass card numbers, and sensitive data were left in an unprotected database.
'Box Shield' Brings New Security Controls
New controls and threat detection capabilities built into Box aim to prevent accidental data leakage and misuse.
Ransomware Hits Fortnite Players
Ransomware masquerading as game "cheats" is hitting Fortnite players. Fortunately, there are ways to recover without paying a ransom.
State-Sponsored Cyberattacks Target Medical Research
Cancer research is a particular target among Chinese espionage groups, says security firm FireEye.
New Confidential Computing Consortium Includes Google, Intel, Microsoft
The Linux Foundation plans to form a community to "define and accelerate" the adoption of confidential computing.
'Phoning Home': Your Latest Data Exfiltration Headache
Companies phone enterprise customer data home securely and for a variety of perfectly legitimate and useful reasons. The problems stem from insufficient disclosure.
7 Big Factors Putting Small Businesses At Risk
Small organizations still face a long list of security threats. These threats and vulnerabilities should be top of mind.
CISOs Struggle with Diminishing Tools to Protect Assets from Growing Threats
Most CISOs see the risk of cyberattacks growing and feel they're falling behind in their ability to fight back, a new survey finds.
Apple Misstep Leaves iPhones Open to Jailbreak
Newest version of iOS contains a critical bug that the company had previously already patched.
Fintech Startups Get Sloppy With Application Security
Some startups need to shape up or ship out.
Cyberthreats Against Financial Services Up 56%
Financial institutions interacting with customers online must prepare for a broader, more sophisticated variety of threats.
New Industry Drives Renewed Interest in Embedded Security
Hardware for security may just get hot.
Who Gets Privileged Access & How to Enforce It
Let's begin by re-evaluating IT infrastructures to determine who has access to what, why, and when.
Visa Adds New Fraud Disruption Measures
Payment card giant creates a 'cyber fraud system' to thwart transaction abuse.
5 Ways to Improve the Patching Process
So many software vulnerabilities, so little time. But failure to patch them can have serious consequences. Here's help for overwhelmed security teams.
What Americans Think About Ransomware
New Harris Poll survey says most will weigh candidates' cybersecurity positions.
Instagram Added to Facebook Data-Abuse Bounty Program
Social media giant also launches invitation-only bug bounty program for 'Checkout on Instagram'.
Towns Across Texas Hit in Coordinated Ransomware Attack
The state government and cybersecurity groups have mobilized to respond to a mass ransomware attack that simultaneously hit 22 different towns statewide.
VxWorks TCP/IP Stack Vulnerability Poses Major Manufacturing Risk
A new analysis shows the scale of risk posed by networking vulnerabilities in a popular embedded real-time operating system.
US Chamber of Commerce, FICO Report National Risk Score of 688
While the score was up for large businesses and down for small firms, the report urges all to prioritize third-party risk management.
Tough Love: Debunking Myths about DevOps & Security
It's time to move past trivial 'shift left' conceptions of DevSecOps and take a hard look at how security work actually gets accomplished.
Google Analyzes Pilfered Password Reuse
Password Checkup data shows some users still reuse their exposed passwords.
CTF Protocol Serves as a Low-Level Way to Take Over Windows Machines
There is a protocol in Windows that has been around since the days of Windows XP, which has been found to be insecure.
Project Zero Turns 5: How Google's Zero-Day Hunt Has Grown
At Black Hat USA, Project Zero's team lead shared details of projects it has accomplished and its influence on the security community.
European Central Bank Website Hit by Malware Attack
The website was infected with malware that stole information on subscribers to a bank newsletter.
Beat the Heat: Dark Reading Caption Contest Winners
Phishing, token codes, training, MFA, polluted data entry, and whales. And the winners are ...
Behind the Scenes at ICS Village
ICS Village co-founder Bryson Bort reveals plans for research-dedicated events that team independent researchers, critical infrastructure owners, and government specialists.
More Than 20 Data Breaches Reported Per Day in First Half of 2019
But incidents involving SSNs, addresses, birth dates were smaller than in previous years.
NSA Researchers Talk Development, Release of Ghidra SRE Tool
NSA researchers took the Black Hat stage to share details of how they developed and released the software reverse-engineering framework.
Adware, Trojans Hit Education Sector Hard
Students continue to be weak links for schools and universities, according to data from security firm Malwarebytes.
New Research Finds More Struts Vulnerabilities
Despite aggressive updating and patching, many organizations are still using versions of Apache Struts with known -- and new -- vulnerabilities.
The Flaw in Vulnerability Management: It's Time to Get Real
Companies will never be 100% immune to cyberattacks. But by having a realistic view of the basics, starting with endpoint vulnerabilities, we can build for a safer future.
68% of Companies Say Red Teaming Beats Blue Teaming
The majority of organizations surveyed find red team exercises more effective than blue team testing, research shows.
|
2021 Top Enterprise IT TrendsWe've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Tweet This
0 Comments
