informa
/
Announcements
Report
Black Hat USA 2022 Attendee Report | Supply Chain & Cloud Security Risks Are Top of Mind | <READ IT NOW>
Event
Malicious Bots: What Enterprises Need to Know | August 30 Webinar | <REGISTER NOW>
Event
How Supply Chain Attacks Work – And What You Can Do to Stop Them | August 17 Webinar | <REGISTER NOW>
PreviousNext

Threat Intelligence

Breaking news, news analysis, and expert commentary on cybersecurity threat intelligence, including tools & technologies.

Which Security Bugs Will Be Exploited? Researchers Create an ML Model to Find Out
How critical is that vulnerability? University researchers are improving predictions of which software flaws will end up with an exploit, a boon for prioritizing patches and estimating risk.
August 18, 2022
How critical is that vulnerability? University researchers are improving predictions of which software flaws will end up with an exploit, a boon for prioritizing patches and estimating risk.
by Robert Lemos, Contributing Writer, Dark Reading
August 18, 2022
5 min read
Article
Summertime Blues: TA558 Ramps Up Attacks on Hospitality, Travel Sectors
The cybercriminal crew has used 15 malware families to target travel and hospitality companies globally, constantly changing tactics over the course of its four-year history.
August 18, 2022
The cybercriminal crew has used 15 malware families to target travel and hospitality companies globally, constantly changing tactics over the course of its four-year history.
by Nathan Eddy, Contributing Writer, Dark Reading
August 18, 2022
3 min read
Article
Google Chrome Zero-Day Found Exploited in the Wild
The high-severity security vulnerability (CVE-2022-2856) is due to improper user-input validation.
August 17, 2022
The high-severity security vulnerability (CVE-2022-2856) is due to improper user-input validation.
by Dark Reading Staff, Dark Reading
August 17, 2022
2 min read
Article
'DarkTortilla' Malware Wraps in Sophistication for High-Volume RAT Infections
The stealthy crypter, active since 2015, has been used to deliver a wide range of information stealers and RATs at a rapid, widespread clip.
August 17, 2022
The stealthy crypter, active since 2015, has been used to deliver a wide range of information stealers and RATs at a rapid, widespread clip.
by Jai Vijayan, Contributing Writer, Dark Reading
August 17, 2022
5 min read
Article
When Countries Are Attacked: Making the Case for More Private-Public Cooperation
The increased sophistication of cyberattacks makes them more widely damaging and difficult to prevent.
August 17, 2022
The increased sophistication of cyberattacks makes them more widely damaging and difficult to prevent.
by Derek Manky, Chief Security Strategist & VP Global Threat Intelligence, FortiGuard Labs
August 17, 2022
5 min read
Article
'Operation Sugarush' Mounts Concerning Spy Effort on Shipping, Healthcare Industries
A suspected Iranian threat actor known as UNC3890 is gathering intel that could be used for kinetic strikes against global shipping targets.
August 17, 2022
A suspected Iranian threat actor known as UNC3890 is gathering intel that could be used for kinetic strikes against global shipping targets.
by Nathan Eddy, Contributing Writer, Dark Reading
August 17, 2022
5 min read
Article
China-Backed RedAlpha APT Builds Sprawling Cyber-Espionage Infrastructure
The state-sponsored group particularly targets organizations working on behalf of the Uyghurs, Tibet, and Taiwan, looking to gather intel that could lead to human-rights abuses, researchers say.
August 17, 2022
The state-sponsored group particularly targets organizations working on behalf of the Uyghurs, Tibet, and Taiwan, looking to gather intel that could lead to human-rights abuses, researchers say.
by Tara Seals, Managing Editor, News, Dark Reading
August 17, 2022
6 min read
Article
Microsoft Disrupts Russian Group's Multiyear Cyber-Espionage Campaign
"Seaborgium" is a highly persistent threat actor that has been targeting organizations and individuals of likely interest to the Russian government since at least 2017, company says.
August 16, 2022
"Seaborgium" is a highly persistent threat actor that has been targeting organizations and individuals of likely interest to the Russian government since at least 2017, company says.
by Jai Vijayan, Contributing Writer, Dark Reading
August 16, 2022
5 min read
Article
Clop Ransomware Gang Breaches Water Utility, Just Not the Right One
South Staffordshire in the UK has acknowledged it was targeted in a cyberattack, but Clop ransomware appears to be shaking down the wrong water company.
August 16, 2022
South Staffordshire in the UK has acknowledged it was targeted in a cyberattack, but Clop ransomware appears to be shaking down the wrong water company.
by Becky Bracken, Editor, Dark Reading
August 16, 2022
2 min read
Article
Whack-a-Mole: More Malicious PyPI Packages Spring Up Targeting Discord, Roblox
Just as one crop of malware-laced software packages is taken down from the popular Python code repository, a new host arrives, looking to steal a raft of data.
August 16, 2022
Just as one crop of malware-laced software packages is taken down from the popular Python code repository, a new host arrives, looking to steal a raft of data.
by Dark Reading Staff, Dark Reading
August 16, 2022
2 min read
Article
Name That Toon: Vicious Circle
Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card.
August 16, 2022
Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card.
by John Klossner, Cartoonist
August 16, 2022
1 min read
Article
With Plunge in Value, Cryptocurrency Crimes Decline in 2022
Cybercrime has been funded with cryptocurrency, but the valuation of various digital currencies has dropped by more than two-thirds and cybercriminals are feeling the pinch.
August 16, 2022
Cybercrime has been funded with cryptocurrency, but the valuation of various digital currencies has dropped by more than two-thirds and cybercriminals are feeling the pinch.
by Robert Lemos, Contributing Writer, Dark Reading
August 16, 2022
4 min read
Article
Windows Vulnerability Could Crack DC Server Credentials Open
The security flaw tracked as CVE-2022-30216 could allow attackers to perform server spoofing or trigger authentication coercion on the victim.
August 16, 2022
The security flaw tracked as CVE-2022-30216 could allow attackers to perform server spoofing or trigger authentication coercion on the victim.
by Nathan Eddy, Contributing Writer, Dark Reading
August 16, 2022
5 min read
Article
Lessons From the Cybersecurity Trenches
Threat hunting not only serves the greater good by helping keep users safe, it rewards practitioners with the thrill of the hunt and solving of complex problems. Tap into your background and learn to follow your instincts.
August 16, 2022
Threat hunting not only serves the greater good by helping keep users safe, it rewards practitioners with the thrill of the hunt and solving of complex problems. Tap into your background and learn to follow your instincts.
by Danika Nilson, Cyber Threat Hunter, Forescout Frontline, Forescout
August 16, 2022
4 min read
Article
DEF CON 30: Hackers Come Home to Vibrant Community
After 30 years and a brief pandemic hiatus, DEF CON returns with "Hacker Homecoming," an event that put the humans behind cybersecurity first.
August 15, 2022
After 30 years and a brief pandemic hiatus, DEF CON returns with "Hacker Homecoming," an event that put the humans behind cybersecurity first.
by Becky Bracken, Editor, Dark Reading
August 15, 2022
5 min read
Article