informa
/
Announcements
Event
Using Zero Trust to Protect Remote and Home Workers | Oct 6 Webinar | <REGISTER NOW>
Event
Managing Security In a Hybrid Cloud Environment | Sept 27 Webinar | <REGISTER NOW>
Event
Understanding Cyber Attackers - A Dark Reading November 17 Virtual Event | <GET YOUR PASS>
Report
Black Hat USA 2022 Attendee Report | Supply Chain & Cloud Security Risks Are Top of Mind | <READ IT NOW>
PreviousNext

Threat Intelligence

Breaking news, news analysis, and expert commentary on cybersecurity threat intelligence, including tools & technologies.

Espionage Group Wields Steganographic Backdoor Against Govs, Stock Exchange
APT group Witchetty (aka LookingFrog) has exploited the ProxyShell and ProxyLogon vulnerabilities to gain initial access and deploy new custom cyber tools against government agencies and a stock exchange.
September 29, 2022
APT group Witchetty (aka LookingFrog) has exploited the ProxyShell and ProxyLogon vulnerabilities to gain initial access and deploy new custom cyber tools against government agencies and a stock exchange.
by Elizabeth Montalbano, Contributor, Dark Reading
September 29, 2022
4 MIN READ
Article
Sophisticated Covert Cyberattack Campaign Targets Military Contractors
Malware used in the STEEP#MAVERICK campaign features rarely seen obfuscation, anti-analysis, and evasion capabilities.
September 28, 2022
Malware used in the STEEP#MAVERICK campaign features rarely seen obfuscation, anti-analysis, and evasion capabilities.
by Jai Vijayan, Contributing Writer, Dark Reading
September 28, 2022
4 MIN READ
Article
Phishing Attacks Crushed Records Last Quarter, Driven by Mobile
Shocking phishing numbers (more than 1 million in a single quarter) are being driven by vishing, smishing, and other lures that target mobile devices.
September 28, 2022
Shocking phishing numbers (more than 1 million in a single quarter) are being driven by vishing, smishing, and other lures that target mobile devices.
by Dark Reading Staff, Dark Reading
September 28, 2022
1 MIN READ
Article
Chaos Malware Resurfaces With All-New DDoS & Cryptomining Modules
The previously identified ransomware builder has veered in an entirely new direction, targeting consumers and business of all sizes by exploiting known CVEs through brute-forced and/or stolen SSH keys.
September 28, 2022
The previously identified ransomware builder has veered in an entirely new direction, targeting consumers and business of all sizes by exploiting known CVEs through brute-forced and/or stolen SSH keys.
by Elizabeth Montalbano, Contributor, Dark Reading
September 28, 2022
5 MIN READ
Article
Most Attackers Need Less Than 10 Hours to Find Weaknesses
Vulnerable configurations, software flaws, and exposed Web services allow hackers to find exploitable weaknesses in companies' perimeters in just hours, not days.
September 28, 2022
Vulnerable configurations, software flaws, and exposed Web services allow hackers to find exploitable weaknesses in companies' perimeters in just hours, not days.
by Robert Lemos, Contributing Writer, Dark Reading
September 28, 2022
4 MIN READ
Article
Lazarus Lures Aspiring Crypto Pros With Fake Exchange Job Postings
Previously observed using fake Coinbase jobs, the North Korea-sponsored APT has expanded into using Crypo.com gigs as cover to distribute malware.
September 27, 2022
Previously observed using fake Coinbase jobs, the North Korea-sponsored APT has expanded into using Crypo.com gigs as cover to distribute malware.
by Becky Bracken, Editor, Dark Reading
September 27, 2022
1 MIN READ
Article
Amid Sweeping Change, Cyber Defenders Face Escalating Visibility — and Pressure
Why cyber teams are now front and center for business enablement within organizations, and the significant challenges they face.
September 27, 2022
Why cyber teams are now front and center for business enablement within organizations, and the significant challenges they face.
by Tara Seals, Managing Editor, News, Dark Reading
September 27, 2022
4 MIN READ
Article
FBI Helping Australian Authorities Investigate Massive Optus Data Breach: Reports
Initial reports suggest a basic security error allowed the attacker to access the company's live customer database via an unauthenticated API.
September 27, 2022
Initial reports suggest a basic security error allowed the attacker to access the company's live customer database via an unauthenticated API.
by Jai Vijayan, Contributing Writer, Dark Reading
September 27, 2022
5 MIN READ
Article
Adversaries Continue Cyberattacks with Greater Precision and Innovative Attack Methods According to NETSCOUT Report
TCP-based, DNS water-torture, and carpet-bombing attacks dominate the DDoS threat landscape, while Ireland, India, Taiwan, and Finland are battered by DDoS attacks resulting from the Russia/Ukraine war.
September 27, 2022
TCP-based, DNS water-torture, and carpet-bombing attacks dominate the DDoS threat landscape, while Ireland, India, Taiwan, and Finland are battered by DDoS attacks resulting from the Russia/Ukraine war.
September 27, 2022
4 MIN READ
Article
BlackCat/ALPHV Gang Adds Wiper Functionality as Ransomware Tactic
Using its "Exmatter" tool to corrupt rather than encrypt files signals a new direction for financially motivated cybercrime activity, researchers say.
September 27, 2022
Using its "Exmatter" tool to corrupt rather than encrypt files signals a new direction for financially motivated cybercrime activity, researchers say.
by Elizabeth Montalbano, Contributor, Dark Reading
September 27, 2022
5 MIN READ
Article
Organizations Finding the Need for New Approaches on the Cybersecurity Front, CompTIA Research Reveals
Settling for "satisfactory" level of readiness may underestimate growing levels of risk.
September 27, 2022
Settling for "satisfactory" level of readiness may underestimate growing levels of risk.
September 27, 2022
3 MIN READ
Article
Despite Recession Jitters, M&A Dominates a Robust Cybersecurity Market
Funding has been somewhat lower than last year, but investment remains healthy, analysts say, amid thirst for cloud security in particular.
September 26, 2022
Funding has been somewhat lower than last year, but investment remains healthy, analysts say, amid thirst for cloud security in particular.
by Jai Vijayan, Contributing Writer, Dark Reading
September 26, 2022
5 MIN READ
Article
Russia Planning Cyberattacks on Ukraine's Energy Grid
Ukraine military intelligence says Russia is planning cyberattacks on the country's energy sector, as well as against allies including Poland and the Baltic states.
September 26, 2022
Ukraine military intelligence says Russia is planning cyberattacks on the country's energy sector, as well as against allies including Poland and the Baltic states.
by Becky Bracken, Editor, Dark Reading
September 26, 2022
1 MIN READ
Article
App Developers Increasingly Targeted via Slack, DevOps Tools
Slack, Docker, Kubernetes, and other applications that allow developers to collaborate have become the latest vector for software supply chain attacks.
September 23, 2022
Slack, Docker, Kubernetes, and other applications that allow developers to collaborate have become the latest vector for software supply chain attacks.
by Robert Lemos, Contributing Writer, Dark Reading
September 23, 2022
5 MIN READ
Article
Cyberattackers Compromise Microsoft Exchange Servers via Malicious OAuth Apps
Cybercriminals took control of enterprise Exchange Servers to spread large amounts of spam aimed at signing people up for bogus subscriptions.
September 23, 2022
Cybercriminals took control of enterprise Exchange Servers to spread large amounts of spam aimed at signing people up for bogus subscriptions.
by Nathan Eddy, Contributing Writer, Dark Reading
September 23, 2022
2 MIN READ
Article