Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Dawn Kawamoto

Latest Content
Why CISOs Need a Seat at the IoT Projects Table
Dawn Kawamoto  |  9/17/2018  | 
Only 38% of CISOs and IT security professionals are asked for their input when IoT projects are launched, despite frequent attacks against IoT devices, according to a recent Trend Micro report.
Will Charges Against WannaCry & Sony Cybercrimes Suspect Temper Future Attacks?
Dawn Kawamoto  |  9/11/2018  | 
The Justice Department has charged North Korean national Park Jin Hyok with conspiracy to commit wire fraud and computer-related fraud in several high-profile cases, including the WannaCry ransomware virus attack and Sony Pictures Entertainment hack. Will cases like this temper future cyber attacks?
IoT Malware-on-the-Fly Expected to Rise
Dawn Kawamoto  |  4/11/2018  | 
Researchers discover a new Mirai-variant IoT botnet that appears linked to IoTroop or Reaper botnet, allowing attackers to easily update malicious code on the fly.
Massive Data Breaches & Data Leak Hit Retail Industry in 1-2-3 Punch
Dawn Kawamoto  |  4/5/2018  | 
Panera Bread, Hudson Bay and Under Armour all took it on the chin within the last two weeks, falling prey to a round of cyber attacks that have hit the retail industry hard.
YouTube Shooting Ignites Debate Over Merging Physical & IT Security
Dawn Kawamoto  |  4/4/2018  | 
A woman shot and wounded three people at YouTube's headquarters on Tuesday, a tragic event that shines a light on the industry's long-running debate over whether physical and IT security departments should be merged under one roof.
Android Crypto Mining Attacks Go for Monero
Dawn Kawamoto  |  4/3/2018  | 
Attackers hijacking Android devices to mine for cryptocurrencies are likely looking to score Monero, rather than other virtual currencies such as Bitcoin.
Atlanta, Baltimore Ransomware Attacks Show Government Agencies' Vulnerabilities
Dawn Kawamoto  |  3/29/2018  | 
With ransomware attacks causing havoc in Atlanta and Baltimore, security experts said government agencies tend to fare worse in a cyber attack than Fortune 500 companies and private industry.
Facebook Privacy Policy Is Under Investigation by FTC
Dawn Kawamoto  |  3/27/2018  | 
Federal Trade Commission reveals it is conducting an open investigation into Facebook's privacy practices, as news reports surface about the social media giant collecting phone call and text message data on its users.
As Ransomware Declines, Atlanta Is Odd Man Out
Dawn Kawamoto  |  3/26/2018  | 
Atlanta took a high-profile hit last week as cyber thieves launched a ransomware attack against the city, a move that comes as the IT industry sees a 70% drop in such attacks.
How to Access the Voter Information Dirt Cambridge Analytica Has on You
Dawn Kawamoto  |  3/20/2018  | 
UK-based Cambridge Analytica and its parent company are embroiled in controversy after amassing Facebook data on 270,000 users to influence election outcomes. Here's how to find out the dirt they have on you.
AI Is Stealing These IT Security Jobs Now
Dawn Kawamoto  |  3/20/2018  | 
Besides the current crop of jobs AI is stealing, other InfoSec roles are also potentially next unless professionals safeguard their careers by repositioning their skills, say IT security and careers experts.
AI: An Emerging Insider Threat?
Dawn Kawamoto  |  3/15/2018  | 
As artificial intelligence increasingly gains a presence in the enterprise, concerns are already being raised of a new insider threat where AI will turn against its operators. How can security experts address this "frenemy"?
Fortnite Players Lob Shots at Epic Games Over Hacked Accounts
Dawn Kawamoto  |  3/14/2018  | 
A number of Fortnite players recently suffered a breach of their Epic Game accounts, costing them hundreds of dollars and leaving them frustrated when they could not immediately reach the company for a refund.
Kaspersky: 3 Mobile Malware Attacks Declined in 2017
Dawn Kawamoto  |  3/8/2018  | 
Overall the number of attempted mobile malware attacks rose in 2017, but these three categories posted declines, according to a new report from Kaspersky Labs.
How Cryptocurrency Cyberthieves Target Your Mobile Device
Dawn Kawamoto  |  3/7/2018  | 
Security researchers say it's unlikely the bad guys will mine for cryptocurrencies on your mobile device, but do expect them to try this other trick.
Majority of Healthcare Companies Suffer a Data Breach
Dawn Kawamoto  |  3/6/2018  | 
As healthcare organizations embrace new forms of digital technology, the percentage of these organizations that have reported a previous security breach is now at a record high, a new report finds.
Why 46% of Companies Keep Security Strategies Status Quo After an Attack
Dawn Kawamoto  |  3/2/2018  | 
Nearly half of organizations surveyed say their security strategy remains unchanged following a cyberattack.
4 Steps to Make Your Website GDPR Compliant
Dawn Kawamoto  |  2/27/2018  | 
Three months remain to whip your website into shape before the May 25 GDPR compliance deadline. Here are several steps to help you get there.
Attackers Sell Growing Number of Legitimate SSL Certificates
Dawn Kawamoto  |  2/27/2018  | 
Network security applications performing deep packet inspections are increasingly getting duped by these rogue legitimate certificates, according to a new report.
GDPR Non-Compliance: Will Your Enterprise Get Busted?
Dawn Kawamoto  |  2/26/2018  | 
GDPR enforcement begins May 25 and regulators are likely to focus on particular industries and types of companies, according to attorneys and analysts.
GDPR Blackmail Looms as a Double-Dip Cyber Attack Plan
Dawn Kawamoto  |  2/22/2018  | 
Cybercriminals' targeted attacks may also include extortion fees to keep their breaches quiet and out of the view of GDPR enforcers, researchers find.
UK Accuses Russia of Launching NotPetya Attacks
Dawn Kawamoto  |  2/16/2018  | 
The Kremlin and the Russian military used the NotPetya ransomware attack to target Ukrainian financial, energy and government centers, according to allegations the UK government made this week.
Kaspersky: Phishing Attack Attempts Soared 59% in 2017
Dawn Kawamoto  |  2/15/2018  | 
There has been dramatic, year-over-year growth in phishing attacks, following only a slight increase in 2016 and a two-digit decline in 2015, according to a report released by Kaspersky Lab.
Equifax Taps Former Home Depot Security Chief as New CISO
Dawn Kawamoto  |  2/14/2018  | 
Equifax, the embattled credit monitoring company is hoping the former Home Depot CISO can turn the beleaguered company's security around. After all, he's previously played cleanup man.


When It Comes To Security Tools, More Isn't More
Lamont Orange, Chief Information Security Officer at Netskope,  1/11/2021
US Capitol Attack a Wake-up Call for the Integration of Physical & IT Security
Seth Rosenblatt, Contributing Writer,  1/11/2021
IoT Vendor Ubiquiti Suffers Data Breach
Dark Reading Staff 1/11/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
2020: The Year in Security
Download this Tech Digest for a look at the biggest security stories that - so far - have shaped a very strange and stressful year.
Flash Poll
Assessing Cybersecurity Risk in Today's Enterprises
Assessing Cybersecurity Risk in Today's Enterprises
COVID-19 has created a new IT paradigm in the enterprise -- and a new level of cybersecurity risk. This report offers a look at how enterprises are assessing and managing cyber-risk under the new normal.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-25173
PUBLISHED: 2021-01-18
An issue was discovered in Open Design Alliance Drawings SDK before 2021.12. A memory allocation with excessive size vulnerability exists when reading malformed DGN files, which allows attackers to cause a crash, potentially enabling denial of service (crash, exit, or restart).
CVE-2021-25174
PUBLISHED: 2021-01-18
An issue was discovered in Open Design Alliance Drawings SDK before 2021.12. A memory corruption vulnerability exists when reading malformed DGN files. It can allow attackers to cause a crash, potentially enabling denial of service (Crash, Exit, or Restart).
CVE-2021-25175
PUBLISHED: 2021-01-18
An issue was discovered in Open Design Alliance Drawings SDK before 2021.11. A NULL pointer dereference exists when rendering malformed .DXF and .DWG files. This can allow attackers to cause a crash, potentially enabling a denial of service attack (Crash, Exit, or Restart). This is issue 1 of 3.
CVE-2021-25176
PUBLISHED: 2021-01-18
An issue was discovered in Open Design Alliance Drawings SDK before 2021.11. A NULL pointer dereference exists when rendering malformed .DXF and .DWG files. This can allow attackers to cause a crash, potentially enabling a denial of service attack (Crash, Exit, or Restart). This is issue 2 of 3.
CVE-2021-25177
PUBLISHED: 2021-01-18
An issue was discovered in Open Design Alliance Drawings SDK before 2021.11. A NULL pointer dereference exists when rendering malformed .DXF and .DWG files. This can allow attackers to cause a crash, potentially enabling a denial of service attack (Crash, Exit, or Restart). This is issue 3 of 3.