informa

News

Spyware Vendor Targets Egyptian Orgs With Rare iOS Exploit Chain
The Israeli company developed highly-targeted, mobile malware that would make any APT jealous.
September 29, 2023
The Israeli company developed highly-targeted, mobile malware that would make any APT jealous.
by Nate Nelson, Contributing Writer, Dark Reading
September 29, 2023
3 MIN READ
Article
Cybersecurity Gaps Plague US State Department, GAO Report Warns
The federal department that oversees the US diplomatic corps abroad suffers a serious lack of visibility into the cyber threats it faces and the security vulnerabilities it's harboring.
September 29, 2023
The federal department that oversees the US diplomatic corps abroad suffers a serious lack of visibility into the cyber threats it faces and the security vulnerabilities it's harboring.
by Nathan Eddy, Contributing Writer, Dark Reading
September 29, 2023
3 MIN READ
Article
Move Over, MOVEit: Critical Progress Bug Infests WS_FTP Software
In the wake of Cl0p's MOVEit rampage, Progress Software is sending file-transfer customers scrambling again — this time to patch a critical bug that is easily exploitable with a specially crafted HTTPS POST request.
September 29, 2023
In the wake of Cl0p's MOVEit rampage, Progress Software is sending file-transfer customers scrambling again — this time to patch a critical bug that is easily exploitable with a specially crafted HTTPS POST request.
by Jai Vijayan, Contributing Writer, Dark Reading
September 29, 2023
4 MIN READ
Article
Attacks on Azerbaijan Businesses Drop Malware via Fake Image Files
Images purporting to be of the Armenia and Azerbaijan conflict were malware downloaders in disguise.
September 29, 2023
Images purporting to be of the Armenia and Azerbaijan conflict were malware downloaders in disguise.
by Dan Raywood, Senior Editor, Dark Reading
September 29, 2023
3 MIN READ
Article
Government Shutdown Poised to Stress Nation's Cybersecurity Supply Chain
CISA announces it will furlough more than 80% of staff indefinitely if Congress can't reach an agreement to fund the federal government.
September 28, 2023
CISA announces it will furlough more than 80% of staff indefinitely if Congress can't reach an agreement to fund the federal government.
by Becky Bracken, Editor, Dark Reading
September 28, 2023
3 MIN READ
Article
Chrome Flags Third Zero-Day This Month That's Tied to Spying Exploits
So far this year, Google has disclosed six vulnerabilities that attackers were actively exploiting before the company had a patch for them.
September 28, 2023
So far this year, Google has disclosed six vulnerabilities that attackers were actively exploiting before the company had a patch for them.
by Jai Vijayan, Contributing Writer, Dark Reading
September 28, 2023
3 MIN READ
Article
New Cisco IOS Zero-Day Delivers a Double Punch
The networking giant discloses new vulnerabilities the same day as warnings get issued that Cisco gear has been targeted in a Chinese APT attack.
September 28, 2023
The networking giant discloses new vulnerabilities the same day as warnings get issued that Cisco gear has been targeted in a Chinese APT attack.
by Nate Nelson, Contributing Writer, Dark Reading
September 28, 2023
3 MIN READ
Article
Q&A: UK Ambassador on Creating New Cybersecurity Agencies Around the World
How the UK is assisting other nations in forming their own versions of a National Centre for Cybersecurity (NCSC).
September 28, 2023
How the UK is assisting other nations in forming their own versions of a National Centre for Cybersecurity (NCSC).
by Dan Raywood, Senior Editor, Dark Reading
September 28, 2023
3 MIN READ
Article
Novel ZenRAT Scurries Onto Systems via Fake Password Manager Tool
Attackers exclusively target Windows users with an impersonation website that distributes information-stealing malware.
September 28, 2023
Attackers exclusively target Windows users with an impersonation website that distributes information-stealing malware.
by Elizabeth Montalbano, Contributor, Dark Reading
September 28, 2023
3 MIN READ
Article
Supply Chain Attackers Escalate With GitHub Dependabot Impersonation
Armed with stolen developer passcodes, attackers have checked in changes to repositories under the automation feature's name in an attempt to escape notice.
September 28, 2023
Armed with stolen developer passcodes, attackers have checked in changes to repositories under the automation feature's name in an attempt to escape notice.
by Robert Lemos, Contributing Writer, Dark Reading
September 28, 2023
4 MIN READ
Article
Researchers Release Details of New RCE Exploit Chain for SharePoint
One of the already-patched flaws enables elevation of privilege, while the other enables remote code execution.
September 27, 2023
One of the already-patched flaws enables elevation of privilege, while the other enables remote code execution.
by Jai Vijayan, Contributing Writer, Dark Reading
September 27, 2023
4 MIN READ
Article
China APT Cracks Cisco Firmware in Attacks Against the US and Japan
Sophisticated hackers are rewriting router firmware in real time and hiding their footprints, leaving defenders with hardly a fighting chance.
September 27, 2023
Sophisticated hackers are rewriting router firmware in real time and hiding their footprints, leaving defenders with hardly a fighting chance.
by Nate Nelson, Contributing Writer, Dark Reading
September 27, 2023
4 MIN READ
Article
Hackers Trick Outlook Into Showing Fake AV Scans
Researchers spot attackers using an existing phishing obfuscation tactic in order to better ensure recipients fall for their scam.
September 27, 2023
Researchers spot attackers using an existing phishing obfuscation tactic in order to better ensure recipients fall for their scam.
by Elizabeth Montalbano, Contributor, Dark Reading
September 27, 2023
3 MIN READ
Article
Suspicious New Ransomware Group Claims Sony Hack
A deceitful threat actor claims its biggest haul yet. But what, if any, Sony data does it actually have?
September 26, 2023
A deceitful threat actor claims its biggest haul yet. But what, if any, Sony data does it actually have?
by Nate Nelson, Contributing Writer, Dark Reading
September 26, 2023
3 MIN READ
Article
Researchers Uncover RaaS Affiliate Distributing Multiple Ransomware Strains
Ransomware-as-a-service affiliate ShadowSyndicate is unusual for the size of its malicious infrastructure and the fact that it's distributing seven different ransomware strains.
September 26, 2023
Ransomware-as-a-service affiliate ShadowSyndicate is unusual for the size of its malicious infrastructure and the fact that it's distributing seven different ransomware strains.
by Jai Vijayan, Contributing Writer, Dark Reading
September 26, 2023
4 MIN READ
Article