Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
New 'Fantom' Ransomware Poses As Windows Update
Fantom malware comes disguised as a legitimate Microsoft Windows update to trick consumers and business users into downloading it.
Malware Markets: Exposing The Hype & Filtering The Noise
There’s a lot of useful infosec information out there, but cutting through clutter is harder than it should be.
Malware Found In Iran Petro Plants
Virus not linked to recent fires in oil and gas facilities across the country, says official.
US Think Tanks Involved In Russia Research Allegedly Hacked
Russia-backed DNC hacker COZY BEAR behind these spearphish attacks on individuals and organizations, says CrowdStrike.
Report: Hackers Breach Two State Election Databases, FBI Warns
FBI's need-to-know-only advisory doesn't specify, but Yahoo News' sources say it refers to 'suspected foreign hackers' targeting voter registration databases in Arizona and Illinois.
Multiple Apple iOS Zero-Days Enabled Firm To Spy On Targeted iPhone Users For Years
Victims of ‘lawful intercepts’ include human rights activists and journalist, researchers from Citizen Lab and Lookout say.
Apple Releases Patch For 'Trident,' A Trio Of iOS 0-Days
Already rolled into the Pegasus spyware product and used to target social activists, the vulnerabilities are fixed in iOS 9.3.5.
French Submarine Firm Claims Economic Warfare After Massive Data Leak
The Australian publishes over 22,000 documents on six DCNS Scorpene subs that are being built in India
Hit-And-Run Tactics Fuel Growth In DDoS Attacks
A majority of organizations in Imperva DDoS study suffer multiple consecutive attacks.
Eddie Bauer Reports Intrusion Into Point Of Sale Network
Data belonging to customers who used payment cards at all 370 Eddie Bauer locations in the US, Canada compromised.
3 Takeaways From The HEI Hotels And Oracle MICROS Breaches
Attacks another reminder of the fragility of the US payment system.
‘Operation Ghoul’ Targets Industrial, Engineering Companies In 30 Countries
Attack campaign appears to be more about financial gain than industrial theft or sabotage, however.
Cerber Ransomware Could Net $2 Million Its First Year
A study of the Cerber operation's ransomware-as-a-service model highlights just how lucrative this cybercrime can be.
Iran Probes Cyber Role In Fires Across Gas Facilities
Country rocked by a string of explosions in petroleum facilities causing millions of dollars in damage.
30 More Victims Pinned On Highly Selective Cyberespionage Group
Kaspersky Lab says newly discovered threat actor ProjectSauron -- called Strider by Symantec -- has hit organizations in Russia, Rwanda, Iran, and Italian-speaking nations.
Symantec Discovers Strider, A New CyberEspionage Group
In action five years, highly selective threat actor has only been known to compromise seven organizations.
Apple Finally Launches Bug Bounty Program
Security researchers will be eligible for bounties of up to $200,000. But for the moment the program is invite-only
Dark Reading News Desk Coming Back To Black Hat, Live
Live from Las Vegas: over 40 video interviews with Black Hat USA conference speakers and sponsors. Wednesday Aug. 3, Thursday Aug, 4, starting at 2 p.m. ET.
Best Of Black Hat Innovation Awards: And The Winners Are…
Three companies and leaders who think differently about security: Deep Instinct, most innovative startup; Vectra, most innovative emerging company; Paul Vixie, most innovative thought leader.
Researchers Show How To Steal Payment Card Data From PIN Pads
Attack works even against chip-enabled EMV smartcards.
Dark Reading Radio at Black Hat 2016: 2 Shows, 4 #BHUSA Presenters
Even if you can't physically be at Black Hat USA 2016, Dark Reading offers a virtual alternative to engage with presenters about hot show topics and trends.
3 Steps Towards Building Cyber Resilience Into Critical Infrastructure
The integration of asset management, incident response processes and education is critical to improving the industrial control system cybersecurity landscape.
|
Everything You Need to Know About DNS AttacksIt's important to understand DNS, potential attacks against it, and the tools and techniques required to defend DNS infrastructure. This report answers all the questions you were afraid to ask.
Domain Name Service (DNS) is a critical part of any organization's digital infrastructure, but it's also one of the least understood. DNS is designed to be invisible to business professionals, IT stakeholders, and many security professionals, but DNS's threat surface is large and widely targeted.
Attackers are causing a great deal of damage with an array of attacks such as denial of service, DNS cache poisoning, DNS hijackin, DNS tunneling, and DNS dangling. They are using DNS infrastructure to take control of inbound and outbound communications and preventing users from accessing the applications they are looking for. To stop attacks on DNS, security teams need to shore up the organization's security hygiene around DNS infrastructure, implement controls such as DNSSEC, and monitor DNS traffic
Incident Readiness and Building Response Playbook
In this special report, learn the Xs and Os of any good security incident readiness and response playbook.
Tweet This
1 Comments
