News

Statue of Prometheus, viewed from the back
Сloud Security
336K Prometheus Instances Exposed to DoS, 'Repojacking'336K Prometheus Instances Exposed to DoS, 'Repojacking'

Open source Prometheus servers and exporters are leaking plaintext passwords and tokens, along with API addresses of internal locations.

byNate Nelson, Contributing Writer
Dec 12, 2024
|
4 Min Read
Close up of an eagle
Cyberattacks & Data Breaches
Chinese Cops Caught Using Android Spyware to Track Mobile DevicesChinese Cops Caught Using Android Spyware to Track Mobile Devices
byBecky Bracken, Senior Editor, Dark Reading
Dec 12, 2024
1 Min Read
A Wi-Fi hotspot in a airport
ICS/OT Security
IoT Cloud Cracked by 'Open Sesame' Over-the-Air AttackIoT Cloud Cracked by 'Open Sesame' Over-the-Air Attack
byBecky Bracken, Senior Editor, Dark Reading
Dec 12, 2024
3 Min Read
Europol logo on a blue background with several silhouetted figures
Cyberattacks & Data Breaches
Europol Cracks Down on Holiday DDoS AttacksEuropol Cracks Down on Holiday DDoS Attacks
byKristina Beek, Associate Editor, Dark Reading
Dec 12, 2024
1 Min Read
Salt shakers with a blue and while background
Vulnerabilities & Threats
Efforts to Secure US Telcos Beset by Salt Typhoon Might Fall FlatEfforts to Secure US Telcos Beset by Salt Typhoon Might Fall Flat
byNate Nelson, Contributing Writer
Dec 12, 2024
4 Min Read
Department of State sign in front of a building
Cyberattacks & Data Breaches
Chinese Hacker Pwns 81K Sophos Devices With Zero-Day BugChinese Hacker Pwns 81K Sophos Devices With Zero-Day
byKristina Beek, Associate Editor, Dark Reading
Dec 11, 2024
1 Min Read
Krispy Kreme doughnut assortment on plate
Cyberattacks & Data Breaches
Krispy Kreme Doughnut Delivery Gets Cooked in Cyberattack
Krispy Kreme Doughnut Delivery Gets Cooked in Cyberattack
Dec 11, 2024
|
2 Min Read
byBecky Bracken, Senior Editor, Dark Reading
A glowing purple and pink key, with dots and numbers in the background
Cyber Risk
Symmetrical Cryptography Pioneer Targets the Post-Quantum Era
Symmetrical Cryptography Pioneer Targets the Post-Quantum Era
Dec 11, 2024
|
3 Min Read
byKristina Beek, Associate Editor, Dark Reading
A woman sitting at a laptop and holding a mobile device, the screens of both displaying a green check mark in a circle
Cyberattacks & Data Breaches
Researchers Crack Microsoft Azure MFA in an Hour
Researchers Crack Microsoft Azure MFA in an Hour
Dec 11, 2024
|
4 Min Read
byElizabeth Montalbano, Contributing Writer
A globe overlaid with code
Cyberattacks & Data Breaches
Governments, Telcos Ward Off China's Hacking Typhoons
Governments, Telcos Ward Off China's Hacking Typhoons
Dec 11, 2024
|
5 Min Read
byRobert Lemos, Contributing Writer
Identity & Access Management Security
Snowflake Rolls Out Mandatory MFA Plan
Snowflake Rolls Out Mandatory MFA Plan
Dec 10, 2024
|
1 Min Read
byDark Reading Staff, Dark Reading
Cables plugged into a network switch
Cyberattacks & Data Breaches
FCC Proposes New Cybersecurity Rules for Telecoms
FCC Proposes New Cybersecurity Rules for Telecoms
Dec 10, 2024
|
3 Min Read
byJennifer Lawinski, Contributing Writer
A patchwork quilt
Application Security
Actively Exploited Zero-Day, Critical RCEs Lead Microsoft Patch Tuesday
Microsoft Fixes Active Zero-Day, Critical RCEs on Patch Tuesday
Dec 10, 2024
|
5 Min Read
byTara Seals, Managing Editor, News, Dark Reading
The words "Zero-day exploit" on a computer keyboard.
Cyberattacks & Data Breaches
'Termite' Ransomware Likely Behind Cleo Zero-Day Attacks
'Termite' Ransomware Likely Behind Cleo Zero-Day Attacks
Dec 10, 2024
|
4 Min Read
byJai Vijayan, Contributing Writer
The Debating Chamber of the Scottish Parliament in Holyrood, Edinburgh, Scotland
Cyberattacks & Data Breaches
Scottish Parliament TV at Risk From Deepfakes
Scottish Parliament TV at Risk From Deepfakes
Dec 10, 2024
|
1 Min Read
byKristina Beek, Associate Editor, Dark Reading
Letters AWS in white with a yellow arrow pointing to the right underneath against a black backdrop
Endpoint Security
Cybercrime Gangs Abscond With Thousands of Orgs' AWS Credentials
Cybercrime Gangs Abscond With 1000s of AWS Credentials
Dec 10, 2024
|
5 Min Read
byElizabeth Montalbano, Contributing Writer
The Visual Studio Code logo
Cyberattacks & Data Breaches
Sprawling 'Operation Digital Eye' Attack Targets European IT Orgs
'Operation Digital Eye' Attack Targets European IT Orgs
Dec 10, 2024
|
4 Min Read
byNate Nelson, Contributing Writer
The words "zero-day" written in a line of code on a computer screen
Application Security
Microsoft NTLM Zero-Day to Remain Unpatched Until April
Microsoft NTLM Zero-Day to Remain Unpatched Until April
Dec 9, 2024
|
3 Min Read
byJai Vijayan, Contributing Writer
Gloved hand stealing money out of man's shirt pocket
Cyberattacks & Data Breaches
Millionaire Airbnb Phishing Ring Busted Up by Police
Millionaire Airbnb Phishing Ring Busted Up by Police
Dec 9, 2024
|
2 Min Read
byBecky Bracken, Senior Editor, Dark Reading
QR code displayed on a mobile device next to lines of code with the outline of a shield with a padlock in the middle on top
Endpoint Security
Attackers Can Use QR Codes to Bypass Browser Isolation
Attackers Can Use QR Codes to Bypass Browser Isolation
Dec 9, 2024
|
4 Min Read
byElizabeth Montalbano, Contributing Writer
a patchwork quilt
Vulnerabilities & Threats
Google Launches Open Source Patch Validation Tool
Google Launches Open Source Patch Validation Tool
Dec 9, 2024
|
2 Min Read
byJennifer Lawinski, Contributing Writer
Person with hands cuffed behind back
Cyberattacks & Data Breaches
Texas Teen Arrested for Scattered Spider Telecom Hacks
Texas Teen Arrested for Scattered Spider Telecom Hacks
Dec 6, 2024
|
3 Min Read
byBecky Bracken, Senior Editor, Dark Reading
Still of Arnold Schwarzenegger's face from the 1990 movie Total Recall
Application Security
Microsoft Expands Access to Windows Recall AI Feature
Microsoft Expands Access to Windows Recall AI Feature
Dec 6, 2024
|
1 Min Read
byTara Seals, Managing Editor, News, Dark Reading
DMCA logo and gavel sitting on a computer keyboard
Cyber Risk
Library of Congress Offers AI Legal Guidance to Researchers
Library of Congress Offers AI Legal Guidance to Researchers
Dec 5, 2024
|
5 Min Read
byRobert Lemos, Contributing Writer
Great Siege Tunnels, Gibraltar, featuring a tableau of seven cannons overlooking Spanish positions
Сloud Security
Russia's 'BlueAlpha' APT Hides in Cloudflare Tunnels
Russia's 'BlueAlpha' APT Hides in Cloudflare Tunnels
Dec 5, 2024
|
2 Min Read
byTara Seals, Managing Editor, News, Dark Reading
Mitel's corporate logo on an office building
Vulnerabilities & Threats
Bypass Bug Revives Critical N-Day in Mitel MiCollab
Bypass Bug Revives Critical N-Day in Mitel MiCollab
Dec 5, 2024
|
4 Min Read
byNate Nelson, Contributing Writer
Abstract image of red human figure surrounded by black human figures
Threat Intelligence
Trojan-as-a-Service Hits Euro Banks, Crypto Exchanges
Trojan-as-a-Service Hits Euro Banks, Crypto Exchanges
Dec 5, 2024
|
2 Min Read
byBecky Bracken, Senior Editor, Dark Reading
Red hooded figures with blacked-out faces with three yellow stars in the upper left of the frame
Cyberattacks & Data Breaches
'Earth Minotaur' Exploits WeChat Bugs, Sends Spyware to Uyghurs
'Earth Minotaur' Exploits WeChat Bugs, Sends Spyware to Uyghurs
Dec 5, 2024
|
3 Min Read
byElizabeth Montalbano, Contributing Writer
A digital map of Africa, overlaid with padlocks
Cyberattacks & Data Breaches
African Law Enforcement Nabs 1,000+ Cybercrime Suspects
African Law Enforcement Nabs 1,000+ Cybercrime Suspects
Dec 5, 2024
|
4 Min Read
byRobert Lemos, Contributing Writer
American and Chinese flags on computer keyboard keys
Cyberattacks & Data Breaches
CISA Issues Guidance to Telecom Sector on Salt Typhoon Threat
CISA Issues Guidance to Telecom Sector on Salt Typhoon Threat
Dec 4, 2024
|
4 Min Read
byJai Vijayan, Contributing Writer
The title screen for 1988's "Spy vs. Spy" arcade game
Threat Intelligence
Russian FSB Hackers Breach Pakistani APT Storm-0156
Russian FSB Hackers Breach Pakistani APT Storm-0156
Dec 4, 2024
|
4 Min Read
byNate Nelson, Contributing Writer
A magnifying glass hovering over the Veeam logo on its webpage
Vulnerabilities & Threats
Veeam Urges Updates After Discovering Critical Vulnerability
Veeam Urges Updates After Discovering Critical Vulnerability
Dec 4, 2024
|
1 Min Read
byKristina Beek, Associate Editor, Dark Reading
Digital illustration of a winged horse with two horns on its head
Endpoint Security
Pegasus Spyware Infections Proliferate Across iOS, Android Devices
Pegasus Spyware Infections Proliferate Across iOS, Android Devices
Dec 4, 2024
|
3 Min Read
byElizabeth Montalbano, Contributing Writer
Concept art of the interior network in a phone, with cybersecurity
Mobile Security
SecureG, CTIA Project Secures Business Phone Calls
SecureG, CTIA Project Secures Business Phone Calls
Dec 3, 2024
|
2 Min Read
byJennifer Lawinski, Contributing Writer
Concept illustration of a content delivery network on a world map
Application Security
Misconfigured WAFs Heighten DoS, Breach Risks
Misconfigured WAFs Heighten DoS, Breach Risks
Dec 3, 2024
|
4 Min Read
byJai Vijayan, Contributing Writer

Editor's Choice

A woman sitting at a laptop and holding a mobile device, the screens of both displaying a green check mark in a circle
Cyberattacks & Data Breaches
Researchers Crack Microsoft Azure MFA in an HourResearchers Crack Microsoft Azure MFA in an Hour
byElizabeth Montalbano, Contributing Writer
Dec 11, 2024
4 Min Read
The words "zero-day" written in a line of code on a computer screen
Application Security
Microsoft NTLM Zero-Day to Remain Unpatched Until AprilMicrosoft NTLM Zero-Day to Remain Unpatched Until April
byJai Vijayan, Contributing Writer
Dec 9, 2024
3 Min Read
A patchwork quilt
Application Security
Actively Exploited Zero-Day, Critical RCEs Lead Microsoft Patch TuesdayMicrosoft Fixes Active Zero-Day, Critical RCEs on Patch Tuesday
byTara Seals, Managing Editor, News, Dark Reading
Dec 10, 2024
5 Min Read
Reports
More Reports
Webinars
More Webinars
White Papers
More Whitepapers
Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.
Subscribe