informa

Quick Hits

MITRE Releases Tool to Design Cyber-Resilient Systems
Engineers can use the Cyber Resiliency Engineering Framework Navigator to visuzalize their cyber-resiliency capabilities.
February 03, 2023
Engineers can use the Cyber Resiliency Engineering Framework Navigator to visuzalize their cyber-resiliency capabilities.
by Dark Reading Staff, Dark Reading
February 03, 2023
2 MIN READ
Article
Patch Critical Bug Now: QNAP NAS Devices Ripe for the Slaughter
QNAP NAS devices are vulnerable to CVE-2022-27596, which allows unauthenticated, remote SQL code injection.
February 02, 2023
QNAP NAS devices are vulnerable to CVE-2022-27596, which allows unauthenticated, remote SQL code injection.
by Dark Reading Staff, Dark Reading
February 02, 2023
1 MIN READ
Article
CISA to Open Supply Chain Risk Management Office
A new supply chain risk management office aims to help public and private sectors implement recent CISA policies and guidance.
February 01, 2023
A new supply chain risk management office aims to help public and private sectors implement recent CISA policies and guidance.
by Dark Reading Staff, Dark Reading
February 01, 2023
1 MIN READ
Article
Google Fi Users Caught Up in T-Mobile Breach
Google Fi mobile customers have been alerted that their SIM card serial numbers, phone numbers, and other data were exposed in T-Mobile hack.
February 01, 2023
Google Fi mobile customers have been alerted that their SIM card serial numbers, phone numbers, and other data were exposed in T-Mobile hack.
by Dark Reading Staff, Dark Reading
February 01, 2023
1 MIN READ
Article
Poser Hackers Impersonate LockBit in SMB Cyberattacks
Recent cyberattacks against SMBs across Europe have been traced back to copycat groups using leaked LockBit locker malware.
January 31, 2023
Recent cyberattacks against SMBs across Europe have been traced back to copycat groups using leaked LockBit locker malware.
by Dark Reading Staff, Dark Reading
January 31, 2023
1 MIN READ
Article
Checkmarx Launches Threat Intelligence for Open Source Packages
The new API incorporates threat intelligence research and employs machine learning to identify threats in the supply chain.
January 31, 2023
The new API incorporates threat intelligence research and employs machine learning to identify threats in the supply chain.
by Dark Reading Staff, Dark Reading
January 31, 2023
1 MIN READ
Article
10M JD Sports Customers' Info Exposed in Data Breach
UK sportswear retailer asks exposed customers to stay "vigilant" against phishing attempts following cyberattack.
January 30, 2023
UK sportswear retailer asks exposed customers to stay "vigilant" against phishing attempts following cyberattack.
by Becky Bracken, Editor, Dark Reading
January 30, 2023
2 MIN READ
Article
Facebook Bug Allows 2FA Bypass Via Instagram
The Instagram rate-limiting bug, found by a rookie hunter, could be exploited to bypass Facebook 2FA in vulnerable apps, researcher reports.
January 30, 2023
The Instagram rate-limiting bug, found by a rookie hunter, could be exploited to bypass Facebook 2FA in vulnerable apps, researcher reports.
by Dark Reading Staff, Dark Reading
January 30, 2023
1 MIN READ
Article
Dutchman Detained for Dealing Details of Tens of Millions of People
The accused sold an enormous data set stolen from the Austrian radio and television licensing authority — to an undercover cop.
January 26, 2023
The accused sold an enormous data set stolen from the Austrian radio and television licensing authority — to an undercover cop.
by Dark Reading Staff, Dark Reading
January 26, 2023
1 MIN READ
Article
German Government, Airports, Banks Hit With Killnet DDoS Attacks
After Berlin pledged tanks for Ukraine, some German websites were knocked offline temporarily by Killnet DDoS attacks.
January 26, 2023
After Berlin pledged tanks for Ukraine, some German websites were knocked offline temporarily by Killnet DDoS attacks.
by Dark Reading Staff, Dark Reading
January 26, 2023
1 MIN READ
Article
Zacks Investment Research Hack Exposes Data for 820K Customers
Zacks Elite sign-ups for the period 1999–2005 were accessed, including name, address, email address, phone number, and the password associated with Zacks.com.
January 25, 2023
Zacks Elite sign-ups for the period 1999–2005 were accessed, including name, address, email address, phone number, and the password associated with Zacks.com.
by Dark Reading Staff, Dark Reading
January 25, 2023
1 MIN READ
Article
GoTo Encrypted Backups Stolen in LastPass Breach
Encrypted backups for several GoTo remote work tools were exfiltrated from LastPass, along with encryption keys.
January 25, 2023
Encrypted backups for several GoTo remote work tools were exfiltrated from LastPass, along with encryption keys.
by Dark Reading Staff, Dark Reading
January 25, 2023
1 MIN READ
Article
Wallarm Aims to Reduce the Harm From Compromised APIs
API Leak Management software discovers exposed API keys and other secrets, blocks their use, and monitors for abuse, the company says.
January 23, 2023
API Leak Management software discovers exposed API keys and other secrets, blocks their use, and monitors for abuse, the company says.
by Dark Reading Staff, Dark Reading
January 23, 2023
1 MIN READ
Article
Pair of Galaxy App Store Bugs Offer Cyberattackers Mobile Device Access
Devices running Android 12 and below are at risk of attackers downloading apps that direct users to a malicious domain.
January 23, 2023
Devices running Android 12 and below are at risk of attackers downloading apps that direct users to a malicious domain.
by Dark Reading Staff, Dark Reading
January 23, 2023
1 MIN READ
Article
FanDuel Sportsbook Bettors Exposed in Mailchimp Breach
Amid all the NFL playoff action, FanDuel has sent an email warning to gamblers that their data was exposed in its third-party breach, putting them at risk for phishing attacks.
January 23, 2023
Amid all the NFL playoff action, FanDuel has sent an email warning to gamblers that their data was exposed in its third-party breach, putting them at risk for phishing attacks.
by Dark Reading Staff, Dark Reading
January 23, 2023
1 MIN READ
Article