The Edge
DR Tech
Sections
Close
Back
Sections
Featured Sections
The Edge
Dark Reading Technology
Attacks / Breaches
Cloud
IoT
Physical Security
Perimeter
Analytics
Security Monitoring
Security Monitoring
App Sec
Database Security
Database Security
Risk
Compliance
Compliance
Threat Intelligence
Endpoint
Authentication
Mobile Security
Privacy
Authentication
Mobile Security
Privacy
Vulnerabilities / Threats
Advanced Threats
Insider Threats
Vulnerability Management
Advanced Threats
Insider Threats
Vulnerability Management
Operations
Identity & Access Management
Careers & People
Identity & Access Management
Careers & People
Remote Workforce
Black Hat news
Omdia Research
Security Now
Events
Close
Back
Events
Events
[FREE Virtual Event] The Identity Crisis
Webinars
Black Hat Spring Trainings - June 13-16 - Learn More
Dec 23, 2021
Preventing Attackers from Navigating Your Enterprise Systems
Dec 15, 2021
Resources
Close
Back
Resources
Reports >
Slideshows >
Tech Library >
Webinars >
White Papers >
Subscribe
Login
/
Register
The Edge
DR Tech
Sections
Close
Back
Sections
Featured Sections
The Edge
Dark Reading Technology
Attacks / Breaches
Cloud
IoT
Physical Security
Perimeter
Analytics
Security Monitoring
Security Monitoring
App Sec
Database Security
Database Security
Risk
Compliance
Compliance
Threat Intelligence
Endpoint
Authentication
Mobile Security
Privacy
Authentication
Mobile Security
Privacy
Vulnerabilities / Threats
Advanced Threats
Insider Threats
Vulnerability Management
Advanced Threats
Insider Threats
Vulnerability Management
Operations
Identity & Access Management
Careers & People
Identity & Access Management
Careers & People
Remote Workforce
Black Hat news
Omdia Research
Security Now
Events
Close
Back
Events
Events
[FREE Virtual Event] The Identity Crisis
Webinars
Black Hat Spring Trainings - June 13-16 - Learn More
Dec 23, 2021
Preventing Attackers from Navigating Your Enterprise Systems
Dec 15, 2021
Resources
Close
Back
Resources
Reports >
Slideshows >
Tech Library >
Webinars >
White Papers >
The Edge
DR Tech
Sections
Close
Back
Sections
Featured Sections
The Edge
Dark Reading Technology
Attacks / Breaches
Cloud
IoT
Physical Security
Perimeter
Analytics
Security Monitoring
Security Monitoring
App Sec
Database Security
Database Security
Risk
Compliance
Compliance
Threat Intelligence
Endpoint
Authentication
Mobile Security
Privacy
Authentication
Mobile Security
Privacy
Vulnerabilities / Threats
Advanced Threats
Insider Threats
Vulnerability Management
Advanced Threats
Insider Threats
Vulnerability Management
Operations
Identity & Access Management
Careers & People
Identity & Access Management
Careers & People
Remote Workforce
Black Hat news
Omdia Research
Security Now
Events
Close
Back
Events
Events
[FREE Virtual Event] The Identity Crisis
Webinars
Black Hat Spring Trainings - June 13-16 - Learn More
Dec 23, 2021
Preventing Attackers from Navigating Your Enterprise Systems
Dec 15, 2021
Resources
Close
Back
Resources
Reports >
Slideshows >
Tech Library >
Webinars >
White Papers >
Subscribe
Login
/
Register
SEARCH
A minimum of 3 characters are required to be typed in the search bar in order to perform a search.
Announcements
Report
Black Hat USA 2022 Attendee Report | Supply Chain & Cloud Security Risks Are Top of Mind | <READ IT NOW>
Event
Malicious Bots: What Enterprises Need to Know | August 30 Webinar | <REGISTER NOW>
Event
How Supply Chain Attacks Work – And What You Can Do to Stop Them | August 17 Webinar | <REGISTER NOW>
Previous
Next
Endpoint
Breaking news, news analysis, and expert commentary on endpoint security, including tools & technologies.
'Operation Sugarush' Mounts Concerning Spy Effort on Shipping, Healthcare Industries
A suspected Iranian threat actor known as UNC3890 is gathering intel that could be used for kinetic strikes against global shipping targets.
August 17, 2022
A suspected Iranian threat actor known as UNC3890 is gathering intel that could be used for kinetic strikes against global shipping targets.
by Nathan Eddy, Contributing Writer, Dark Reading
August 17, 2022
5 min read
Article
Name That Toon: Vicious Circle
Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card.
August 16, 2022
Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card.
by John Klossner, Cartoonist
August 16, 2022
1 min read
Article
Novel Ransomware Comes to the Sophisticated SOVA Android Banking Trojan
Unusually, SOVA, which targets US users, now allows lateral movement for deeper data access. Version 5 adds an encryption capability.
August 12, 2022
Unusually, SOVA, which targets US users, now allows lateral movement for deeper data access. Version 5 adds an encryption capability.
by Nathan Eddy, Contributing Writer, Dark Reading
August 12, 2022
4 min read
Article
Multiple Vulnerabilities Discovered in Device42 Asset Management Appliance
Four serious security issues on the popular appliance could be exploited by hackers with any level of access within the host network, Bitdefender researchers say.
August 10, 2022
Four serious security issues on the popular appliance could be exploited by hackers with any level of access within the host network, Bitdefender researchers say.
by Nathan Eddy, Contributing Writer, Dark Reading
August 10, 2022
3 min read
Article
Researchers Debut Fresh RCE Vector for Common Google API Tool
The finding exposes the danger of older, unpatched bugs, which plague at least 4.5 million devices.
August 09, 2022
The finding exposes the danger of older, unpatched bugs, which plague at least 4.5 million devices.
by Nathan Eddy, Contributing Writer, Dark Reading
August 09, 2022
6 min read
Article
Genesis IAB Market Brings Polish to the Dark Web
As the market for initial access brokers matures, services like Genesis — which offers elite access to compromised systems and slick, professional services — are raising the bar in the underground economy.
August 05, 2022
As the market for initial access brokers matures, services like Genesis — which offers elite access to compromised systems and slick, professional services — are raising the bar in the underground economy.
by Nathan Eddy, Contributing Writer, Dark Reading
August 05, 2022
4 min read
Article
Fresh RapperBot Malware Variant Brute-Forces Its Way Into SSH Servers
Over the past few weeks, a Mirai variant appears to have made a pivot from infecting new servers to maintaining remote access.
August 05, 2022
Over the past few weeks, a Mirai variant appears to have made a pivot from infecting new servers to maintaining remote access.
by Dark Reading Staff, Dark Reading
August 05, 2022
1 min read
Article
Time to Patch VMware Products Against a Critical New Vulnerability
A dangerous VMware authentication-bypass bug could give threat actors administrative access over virtual machines.
August 04, 2022
A dangerous VMware authentication-bypass bug could give threat actors administrative access over virtual machines.
by Dark Reading Staff, Dark Reading
August 04, 2022
1 min read
Article
Bug in Kaspersky VPN Client Allows Privilege Escalation
The CVE-2022-27535 local privilege-escalation security vulnerability in the security software threatens remote and work-from-home users.
August 04, 2022
The CVE-2022-27535 local privilege-escalation security vulnerability in the security software threatens remote and work-from-home users.
by Tara Seals, Managing Editor, News, Dark Reading
August 04, 2022
3 min read
Article
Ping Identity to Go Private After $2.8B Acquisition
The identity-services company is being acquired by Thoma Bravo software investment for cash, before being delisted.
August 04, 2022
The identity-services company is being acquired by Thoma Bravo software investment for cash, before being delisted.
by Dark Reading Staff, Dark Reading
August 04, 2022
1 min read
Article
How IT Teams Can Use 'Harm Reduction' for Better Cybersecurity Outcomes
Copado's Kyle Tobener will discuss a three-pronged plan at Black Hat USA for addressing human weaknesses in cybersecurity with this medical concept — from phishing to shadow IT.
August 03, 2022
Copado's Kyle Tobener will discuss a three-pronged plan at Black Hat USA for addressing human weaknesses in cybersecurity with this medical concept — from phishing to shadow IT.
by Tara Seals, Managing Editor, News, Dark Reading
August 03, 2022
6 min read
Article
Critical RCE Bug in DrayTek Routers Opens SMBs to Zero-Click Attacks
SMBs should patch CVE-2022-32548 now to avoid a host of horrors, including complete network compromise, ransomware, state-sponsored attacks, and more.
August 03, 2022
SMBs should patch CVE-2022-32548 now to avoid a host of horrors, including complete network compromise, ransomware, state-sponsored attacks, and more.
by Tara Seals, Managing Editor, News, Dark Reading
August 03, 2022
6 min read
Article
American Express, Snapchat Open-Redirect Vulnerabilities Exploited in Phishing Scheme
Phishing operators are taking advantage of security bugs in the Amex and Snapchat websites (the latter is unpatched) to steer victims to phishing pages looking to harvest Google and Microsoft logins.
August 03, 2022
Phishing operators are taking advantage of security bugs in the Amex and Snapchat websites (the latter is unpatched) to steer victims to phishing pages looking to harvest Google and Microsoft logins.
by Nathan Eddy, Contributing Writer, Dark Reading
August 03, 2022
3 min read
Article
Thousands of Mobile Apps Leaking Twitter API Keys
New finding comes amid report of overall surge in threats targeting mobile and IoT devices over the past year.
August 02, 2022
New finding comes amid report of overall surge in threats targeting mobile and IoT devices over the past year.
by Jai Vijayan, Contributing Writer, Dark Reading
August 02, 2022
5 min read
Article
VirusTotal: Threat Actors Mimic Legitimate Apps, Use Stolen Certs to Spread Malware
Attackers are turning to stolen credentials and posing as trusted applications to socially engineer victims, according to Google study of malware submitted to VirusTotal.
August 02, 2022
Attackers are turning to stolen credentials and posing as trusted applications to socially engineer victims, according to Google study of malware submitted to VirusTotal.
by Nathan Eddy, Contributing Writer, Dark Reading
August 02, 2022
4 min read
Article
