Dark Reading: Attacks/Breaches
Researchers Find New Approach to Attacking Cloud Infrastructure
Mon, 11 Nov 2019 17:35:00 EST
Cloud APIs' accessibility over the Internet opens a new window for adversaries to gain highly privileged access to cloud assets.
5 Security Processes You Shouldn't Overlook During M&A
Mon, 11 Nov 2019 10:00:00 EST
Security needs to be a central element of due diligence if a merger or acquisition is to succeed
Hospital Cyberattacks Linked to Increase in Heart Attack Mortality
Fri, 08 Nov 2019 12:30:00 EST
Breach remediation processes adversely impact timeliness in patient care and outcomes, a new study finds.
9 Principles to Simplify Security
Fri, 08 Nov 2019 10:00:00 EST
This isn't a one-size-fits-all situation. Simplify as much as you can, as the saying goes, but no more than that.
Twitter & Trend Micro Fall Victim to Malicious Insiders
Thu, 07 Nov 2019 18:15:00 EST
The companies are the latest on a long and growing list of organizations that have fallen victim to users with legitimate access to enterprise systems and data.
TA542 Brings Back Emotet with Late September Spike
Thu, 07 Nov 2019 17:50:00 EST
Overall volumes of banking Trojans and RATs increased during the third quarter, when Emotet was suspiciously absent until mid-September.
PayPal Upsets Microsoft as Phishers' Favorite Brand
Thu, 07 Nov 2019 12:00:00 EST
Several factors edged the world's most popular payment service into the top spot.
The Cold Truth about Cyber Insurance
Thu, 07 Nov 2019 10:00:00 EST
There is no premium that will recover the millions of dollars your company spends on R&D if your intellectual property is hacked and stolen.
Kaspersky Analysis Shines Light on DarkUniverse APT Group
Thu, 07 Nov 2019 07:40:00 EST
Threat actor was active between 2009 and 2017, targeting military, government, and private organizations.
Black Hat Q&A: Hacking a '90s Sports Car
Thu, 07 Nov 2019 07:30:00 EST
Security researcher Stanislas Lejay offers a preview of his upcoming Black Hat Europe talk on automotive engine computer management and hardware reverse engineering.
Accounting Scams Continue to Bilk Businesses
Wed, 06 Nov 2019 17:00:00 EST
Yes, ransomware is plaguing businesses and government organizations, but impersonators inserting themselves into financial workflows - most often via e-mail - continue to enable big paydays.
Social Media: Corporate Cyber Espionage's Channel of Choice
Wed, 06 Nov 2019 14:00:00 EST
Proactive defense and automation can help your company deal with scale and prioritize risks in order to more efficiently fight cyber espionage.
The Uphill Battle of Triaging Alerts
Wed, 06 Nov 2019 10:00:00 EST
Prioritizing alerts is foundational to security, but almost every organization struggles to manage this process efficiently. Here's what you can do about it.
Disclosure Does Little to Dissuade Cyber Spies
Tue, 05 Nov 2019 14:10:00 EST
In the past, outing nation-state cyber espionage groups caused a few to close up shop, but nowadays actors are more likely to switch to new infrastructure and continue operations.
The State of Email Security and Protection
Tue, 05 Nov 2019 14:00:00 EST
Phishing and ransomware top the list of security risks that organizations are not fully prepared to deal with.
First Bluekeep Exploit Found in the Wild
Mon, 04 Nov 2019 14:00:00 EST
Crashing honeypots alerted the researcher who found the Bluekeep vulnerability.
Details of Attack on Electric Utility Emerge
Fri, 01 Nov 2019 13:25:00 EDT
The March 5 DDoS attack interrupted communications between generating facilities and the electrical grid in three western states.
Google Patches Chrome Zero-Day Under Active Attack
Fri, 01 Nov 2019 12:15:00 EDT
The fix addresses CVE-2019-13720, a high-severity, use-after-free vulnerability discovered by Kaspersky Lab researchers.
32,000+ WiFi Routers Potentially Exposed to New Gafgyt Variant
Thu, 31 Oct 2019 17:05:00 EDT
Researchers detect an updated Gafgyt variant that targets flaws in small office and home wireless routers from Zyxel, Huawei, and Realtek.
Chinese Cyber Espionage Group Steals SMS Messages via Telco Networks
Thu, 31 Oct 2019 16:20:00 EDT
APT41's new campaign is latest to highlight trend by Chinese threat groups to attack upstream service providers as a way to reach its intended targets, FireEye says.