informa

Quick Hits

New Open Source Tools Launched for Adversary Simulation
The new open source tools are designed to help defense, identity and access management, and security operations center teams discover vulnerable network shares.
August 11, 2022
The new open source tools are designed to help defense, identity and access management, and security operations center teams discover vulnerable network shares.
by Dark Reading Staff, Dark Reading
August 11, 2022
2 min read
Article
Halo Security Emerges From Stealth With Full Attack Surface Management Platform
The latest startup to enter the space also has a free scanning service to audit the contents of any website.
August 09, 2022
The latest startup to enter the space also has a free scanning service to audit the contents of any website.
by Dark Reading Staff, Dark Reading
August 09, 2022
2 min read
Article
Fresh RapperBot Malware Variant Brute-Forces Its Way Into SSH Servers
Over the past few weeks, a Mirai variant appears to have made a pivot from infecting new servers to maintaining remote access.
August 05, 2022
Over the past few weeks, a Mirai variant appears to have made a pivot from infecting new servers to maintaining remote access.
by Dark Reading Staff, Dark Reading
August 05, 2022
1 min read
Article
Time to Patch VMware Products Against a Critical New Vulnerability
A dangerous VMware authentication-bypass bug could give threat actors administrative access over virtual machines.
August 04, 2022
A dangerous VMware authentication-bypass bug could give threat actors administrative access over virtual machines.
by Dark Reading Staff, Dark Reading
August 04, 2022
1 min read
Article
Bug in Kaspersky VPN Client Allows Privilege Escalation
The CVE-2022-27535 local privilege-escalation security vulnerability in the security software threatens remote and work-from-home users.
August 04, 2022
The CVE-2022-27535 local privilege-escalation security vulnerability in the security software threatens remote and work-from-home users.
by Tara Seals, Managing Editor, News, Dark Reading
August 04, 2022
3 min read
Article
Ping Identity to Go Private After $2.8B Acquisition
The identity-services company is being acquired by Thoma Bravo software investment for cash, before being delisted.
August 04, 2022
The identity-services company is being acquired by Thoma Bravo software investment for cash, before being delisted.
by Dark Reading Staff, Dark Reading
August 04, 2022
1 min read
Article
Startup Footprint Tackles Identity Verification
Early-stage startup Footprint's goal is to provide tools that change how enterprises verify, authentication, authorize, and secure identity.
August 03, 2022
Early-stage startup Footprint's goal is to provide tools that change how enterprises verify, authentication, authorize, and secure identity.
by Dark Reading Staff, Dark Reading
August 03, 2022
2 min read
Article
Cyberattackers Drain Nearly $6M From Solana Crypto Wallets
So far, the ongoing attack has impacted nearly 8,000 Solana hot wallets.
August 03, 2022
So far, the ongoing attack has impacted nearly 8,000 Solana hot wallets.
by Dark Reading Staff, Dark Reading
August 03, 2022
1 min read
Article
Massive New Phishing Campaign Targets Microsoft Email Service Users
The campaign uses adversary-in-the-middle techniques to bypass multifactor authentication, evade detection.
August 02, 2022
The campaign uses adversary-in-the-middle techniques to bypass multifactor authentication, evade detection.
by Dark Reading Staff, Dark Reading
August 02, 2022
1 min read
Article
T-Mobile Store Owner Made $25M Using Stolen Employee Credentials
Now-convicted phone dealer reset locked and blocked phones on various mobile networks.
August 02, 2022
Now-convicted phone dealer reset locked and blocked phones on various mobile networks.
by Dark Reading Staff, Dark Reading
August 02, 2022
1 min read
Article
Microsoft Intros New Attack Surface Management, Threat Intel Tools
Microsoft says the new tools will give security teams an attacker's-eye view of their systems and supercharge their investigation and remediation efforts.
August 02, 2022
Microsoft says the new tools will give security teams an attacker's-eye view of their systems and supercharge their investigation and remediation efforts.
by Dark Reading Staff, Dark Reading
August 02, 2022
2 min read
Article
DoJ: Foreign Adversaries Breach US Federal Court Records
A Justice Department official testifies to a House committee that the cyberattack is a "significant concern."
August 01, 2022
A Justice Department official testifies to a House committee that the cyberattack is a "significant concern."
by Dark Reading Staff, Dark Reading
August 01, 2022
1 min read
Article
Ransomware Hit on European Pipeline & Energy Supplier Encevo Linked to BlackCat
Customers across several European countries are urged to update credentials in the wake of the attack that affected a gas-pipeline operator and power company.
August 01, 2022
Customers across several European countries are urged to update credentials in the wake of the attack that affected a gas-pipeline operator and power company.
by Dark Reading Staff, Dark Reading
August 01, 2022
2 min read
Article
Patch Now: Atlassian Confluence Bug Under Active Exploit
Attackers almost immediately leapt on a just-disclosed bug, CVE-2022-26138, affecting Atlassian Confluence, which allows remote, unauthenticated actors unfettered access to Confluence data.
July 28, 2022
Attackers almost immediately leapt on a just-disclosed bug, CVE-2022-26138, affecting Atlassian Confluence, which allows remote, unauthenticated actors unfettered access to Confluence data.
by Tara Seals, Managing Editor, News, Dark Reading
July 28, 2022
2 min read
Article
Multiple Windows, Adobe Zero-Days Anchor Knotweed Commercial Spyware
Microsoft flagged the company's Subzero tool set as on offer to unscrupulous governments and shady business interests.
July 27, 2022
Microsoft flagged the company's Subzero tool set as on offer to unscrupulous governments and shady business interests.
by Tara Seals, Managing Editor, News, Dark Reading
July 27, 2022
2 min read
Article