Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
3 Mobile Security Problems That Most Security Teams Haven't Fixed Yet
Mobility must be included in the security operations workflow so that company data is protected regardless of where remote workers are located.
Technology Empowers Pandemic Response, But Privacy Worries Remain
As technology companies and the medical community work to find ways to track and test for the virus, privacy might fall by the wayside.
Malware Found Hidden in Android Utility Apps, Children's Games
The 'Tekya' malware, as researchers call it, is designed to imitate the user's actions to click advertisements.
How to Secure Your Kubernetes Deployments
As more companies shift their software to a microservices-based architecture and orchestrate their containerized applications in Kubernetes, distributed security controls become a must.
8 Infosec Page-Turners for Days Spent Indoors
Stuck inside and looking for a new read? Check out these titles written by security practitioners and reporters across the industry.
VPN Usage Surges as More Nations Shut Down Offices
As social distancing becomes the norm, interest in virtual private networks has rocketed, with some providers already seeing a doubling in users and traffic since the beginning of the year.
This Tax Season, Save the Scorn and Protect Customers from Phishing Scams
As security professionals, it's easy to get cynical about the continued proliferation of tax ID theft and blame the consumers themselves. But that doesn't help anyone.
Working from Home? These Tips Can Help You Adapt
COVID-19 means many people are doing their jobs from outside the confines of the office. That may not be as easy as it sounds.
Cyberspace Solarium Commission Slams US Cybersecurity Readiness
The federal commission outlined more than 60 recommendations to remedy major security problems.
COVID-19 Drives Rush to Remote Work. Is Your Security Team Ready?
A rapid transition to remote work puts pressure on security teams to understand and address a wave of potential security risks.
Malware Campaign Feeds on Coronavirus Fears
A new malware campaign that offers a "coronavirus map" delivers a well-known data-stealer.
Securing Our Elections Requires Change in Technology, People & Attitudes
Increasing security around our election process and systems will take a big effort from many different parties. Here's how.
Walgreens' Mobile App Exposes Customers' Info
An error in the app allowed some secure chat users to see medical information that wasn't theirs.
Exploitation, Phishing Top Worries for Mobile Users
Reports find that mobile malware appears on the decline, but the exploitation of vulnerabilities along with phishing has led to a rise in compromises, experts say.
Verizon: Attacks on Mobile Devices Rise
Companies of all sizes are being hit by mobile attacks and feeling the effects for extended periods of time, according to the 2020 Verizon Mobile Security Index.
Security, Networking Collaboration Cuts Breach Cost
CISOs report increases in alert fatigue and the number of records breached, as well as the struggle to secure mobile devices in a new Cisco study.
7 Tips to Improve Your Employees' Mobile Security
Security experts discuss the threats putting mobile devices at risk and how businesses can better defend against them.
Security Now Merges With Dark Reading
Readers of Security Now will join the Dark Reading community, gaining access to a wide range of cybersecurity content.
Popular Mobile Document-Management Apps Put Data at Risk
Most iOS and Android apps that Cometdocs has published on Google and Apple app stores transmit entire documents - unencrypted.
Microsoft Announces General Availability of Threat Protection, Insider Risk Management
Microsoft made several security announcements ahead of RSA Conference, including its decision to bring Microsoft Defender to iOS and Android.
Ransomware Damage Hit $11.5B in 2019
A new report shows the scale of ransomware's harm and the growth of that damage year-over-year -- an average of $141,000 per incident.
Users Have Risky Security Habits, but Security Pros Aren't Much Better
Researchers spot gaps in users' and IT practitioners' security habits, and between security tools and user preferences.
Don't Let Iowa Bring Our Elections Back to the Stone Age
The voting experience should be the same whether the vote is in person, by mail, or over the Internet. Let's not allow one bad incident stop us from finding new ways to achieve this.
Phishing Campaign Targets Mobile Banking Users
Consumers in dozens of countries were targeted, Lookout says.
Babel of IoT Authentication Poses Security Challenges
With more than 80 different schemes for authenticating devices either proposed or implemented, best practices and reference architectures are sorely needed, experts say.
Huawei Charged with RICO Violations in Federal Court
A new set of indictments adds conspiracy to violate RICO statutes to a list of existing charges against the Chinese telecommunications giant.
Apps Remain Favorite Mobile Attack Vector
Mobile apps are used in nearly 80% of attacks targeting mobile devices, followed by network and operating system attacks.
Israel's Entire Voter Registry Exposed in Massive Incident
Personal details of nearly 6.5 million Israelis were out in the open after the entire registry was uploaded to an notably insecure app.
Facebook Tops Imitated Brands as Attackers Target Tech
Brand impersonators favor Facebook, Yahoo, Network, and PayPal in phishing attempts to steal credentials from victims.
Twitter Suspends Fake Accounts Abusing Feature that Matches Phone Numbers and Users
The company believes state-sponsored actors may also be involved.
Researchers Find 24 'Dangerous' Android Apps with 382M Installs
Shenzhen Hawk Internet Co. is identified as the parent company behind five app developers seeking excessive permissions in Android apps.
Android Malware for Mobile Ad Fraud Spiked Sharply in 2019
Some 93% of all mobile transactions across 20 countries were blocked as fraudulent, Upstream says.
How to Secure Your IoT Ecosystem in the Age of 5G
For businesses planning to adopt 5G, the sheer number of IoT devices creates a much larger attack surface.
Inside the Check Point Research Team's Investigation Process
The team sheds light on how their organization works and what they're watching in the threat landscape.
Startup Privafy Raises $22M with New Approach to Network Security
The company today disclosed an approach to data security designed to protect against modern threats at a lower cost than complex network tools.
Mobile Banking Malware Up 50% in First Half of 2019
A new report from Check Point recaps the cybercrime trends, statistics, and vulnerabilities that defined the security landscape in 2019.
Active Directory Needs an Update: Here's Why
AD is still the single point of authentication for most companies that use Windows. But it has some shortcomings that should be addressed.
Google Lets iPhone Users Turn Device into Security Key
The iPhone can now be used in lieu of a physical security key as a means of protecting Google accounts.
Chinese Malware Found Preinstalled on US Government-Funded Phones
Researchers found unremovable malware preinstalled in the Unimax U686CL, a budget Android device sold by Assurance Wireless.
TikTok Bugs Put Users' Videos, Personal Data At Risk
Researchers found it was possible to spoof SMS messages from TikTok and exploit an API flaw that could grant access to users' personal data.
As Hackers Target Mobile Payment Apps, Here's How to Keep Them at Bay
A little vigilance helps retailers reduce and prevent three of the most common kinds of mobile app fraud
IoT Security: How Far We've Come, How Far We Have to Go
As organizations fear the proliferations of connected devices on enterprise networks, the private and public sector come together to address IoT vulnerabilities.
Android App Analysis Uncovers Seasonal Shopping Risk
Researchers scanned 4,200 Android apps and found many exhibit malicious behavior or have a dangerous level of permissions.
Younger Generations Drive Bulk of 2FA Adoption
Use of two-factor authentication has nearly doubled in the past two years , pointing to a new wave of acceptance.
What's in a Botnet? Researchers Spy on Geost Operators
The investigation of a major Android banking botnet yields insights about how cybercriminals structure and run an illicit business.
StrandHogg Vulnerability Affects All Versions of Android
The bug enables malware to pose as any legitimate Android app, letting attackers track messages, photos, credentials, and phone conversations.
New Free Emulator Challenges Apple's Control of iOS
An open-source tool gives researchers and jailbreakers a free option for researching vulnerabilities in the operating system — and gives Apple a new headache.
7 Ways to Hang Up on Voice Fraud
Criminals are coming at us from all direction, including our phones. Don't answer that next call without reading this tips first.
Tushu, Take Twoshu: Malicious SDK Reappears in Google Play
Months after the Tushu SDK was found infecting Android apps on Google Play, its operators are back with new evasive techniques.
They See You When You're Shopping: Holiday Cybercrime Starts Early
Researchers notice year-end phishing attacks starting in July and ramping up in September.
|
Latest Comment: This comment is waiting for review by our moderators.
6 Emerging Cyber Threats That Enterprises Face in 2020This Tech Digest gives an in-depth look at six emerging cyber threats that enterprises could face in 2020. Download your copy today!
State of Cybersecurity Incident Response
Data breaches and regulations have forced organizations to pay closer attention to the security incident response function. However, security leaders may be overestimating their ability to detect and respond to security incidents. Read this report to find out more.
Tweet This
7 Comments
