Dark Reading: Attacks/Breaches
Best Practices to Manage Third-Party Cyber-Risk Today
Thu, 02 Apr 2020 10:00:00 EDT
Bold new thinking is needed to solve the rapidly evolving challenge of third-party risk management.
New Magecart Skimmer Infects 19 Victim Websites
Thu, 02 Apr 2020 10:00:00 EDT
MakeFrame, named for its ability to make iframes for skimming payment data, is attributed to Magecart Group 7.
Attackers Leverage Excel File Encryption to Deliver Malware
Wed, 01 Apr 2020 18:00:00 EDT
Technique involves saving malicious Excel file as "read-only" and tricking users into opening it, Mimecast says.
Why All Employees Are Responsible for Company Cybersecurity
Wed, 01 Apr 2020 16:00:00 EDT
It's not just the IT and security team's responsibility to keep data safe -- every member of the team needs to be involved.
Microsoft Alerts Healthcare to Human-Operated Ransomware
Wed, 01 Apr 2020 12:30:00 EDT
Microsoft has notified dozens of hospitals with vulnerable gateway and VPN appliances in their infrastructure, which could put them at risk.
The SOC Emergency Room Faces Malware Pandemic
Wed, 01 Apr 2020 10:00:00 EDT
To keep users and networks healthy and secure, security teams need to mimic countries that have taken on COVID-19 with a rapid, disciplined approach.
Defense Evasion Dominated 2019 Attack Tactics
Tue, 31 Mar 2020 17:45:00 EDT
Researchers mapped tactics and techniques to the MITRE ATT&CK framework to determine which were most popular last year.
Researchers Uncover Unsophisticated - But Creative - Watering-Hole Attack
Tue, 31 Mar 2020 15:10:00 EDT
Holy Water campaign is targeting users of a specific religious and ethnic group in Asia, Kaspersky says.
Data from 5.2M Marriott Loyalty Program Members Hit by Breach
Tue, 31 Mar 2020 14:00:00 EDT
The data was breached through the credentials of two franchisee employees.
Why Third-Party Risk Management Has Never Been More Important
Tue, 31 Mar 2020 14:00:00 EDT
Given today's coronavirus pandemic, the need for companies to collect cybersecurity data about their business partners is more critical than ever. Here's how to start.
How Much Downtime Can Your Company Handle?
Tue, 31 Mar 2020 10:00:00 EDT
Why every business needs cyber resilience and quick recovery times.
Researchers Spot Sharp Increase in Zoom-Themed Domain Registrations
Mon, 30 Mar 2020 17:15:00 EDT
Attackers are attempting to take advantage of the surge in teleworking prompted by COVID-19, Check Point says.
Untangling Third-Party Risk (and Fourth, and Fifth...)
Mon, 30 Mar 2020 15:00:00 EDT
Third parties bring critical products and services to your organization. They also bring risk that must be understood and managed.
Securing Your Remote Workforce: A Coronavirus Guide for Businesses
Mon, 30 Mar 2020 10:00:00 EDT
Often the hardest part in creating an effective awareness program is deciding what NOT to teach.
Malicious USB Drive Hides Behind Gift Card Lure
Fri, 27 Mar 2020 16:00:00 EDT
Victims are being enticed to insert an unknown USB drive into their computers.
Purported Brute-Force Attack Aims at Linksys Routers as More People Work Remotely
Fri, 27 Mar 2020 12:10:00 EDT
The attack takes control of poorly secured network devices, redirecting Web addresses to a COVID-themed landing page that attempts to fool victims into downloading malware.
Cyber Version of 'Justice League' Launches to Fight COVID-19 Related Hacks
Thu, 26 Mar 2020 19:15:00 EDT
Goal is to help organizations - especially healthcare entities - protect against cybercriminals trying to take advantage of the pandemic.
Insurance Giant Chubb Might Be Ransomware Victim
Thu, 26 Mar 2020 18:45:00 EDT
A ransomware operator claims to have successfully attacked Chubb Insurance databases.
China-Based Threat Group Launches Widespread Malicious Campaign
Thu, 26 Mar 2020 08:40:00 EDT
The motives behind the attacks remain unclear, but likely triggers include the ongoing trade war between the US and China and the unfolding COVID-19 pandemic.
Tupperware Hit by Card Skimmer Attack
Wed, 25 Mar 2020 17:00:00 EDT
Malicious code was found hidden inside graphics files on the storage container maker's e-commerce website.