Dark Reading

Google Offers $1.5M Bug Bounty for Android 13 Beta

05/02/2022
The security vulnerability payout set bug hunters rejoicing, but claiming the reward is much, much easier said than done.

New Regulations in India Require Orgs to Report Cyber Incidents Within 6 Hours

05/02/2022
CERT-In updates cybersecurity rules to include mandatory reporting, record-keeping, and more.

DoD Scammed Out of $23M in Phishing Attack on Jet-Fuel Vendors

05/02/2022
A California man faces prison time and steep fines stemming from cybertheft of US military funds intended to pay jet-fuel suppliers.

6 Best Practices to Ensure Kubernetes Security Meets Compliance Regulations

05/02/2022
Security must be precise enough to meet compliance requirements without impeding DevOps and developer productivity. Here's how to strike that balance.

Name That Edge Toon: Flower Power

05/02/2022
Come up with a clever caption, and our panel of experts will reward the winner with a $25 Amazon gift card.

Security Stuff Happens: What Do You Do When It Hits the Fan?

05/02/2022
Breaches can happen to anyone, but a well-oiled machine can internally manage and externally remediate in a way that won't lead to extensive damage to a company's bottom line. (Part 1 of a series.)

2022 Security Priorities: Staffing and Remote Work

04/29/2022
A comprehensive security strategy balances technology, processes, and people — and hiring and retaining security personnel and securing the remote workforce are firmly people priorities.

Good News! IAM Is Near-Universal With SaaS

04/29/2022
The less-good news: IAM only works for applications your IT department knows about, so watch for "shadow IT" programs installed or written by users that leave a security gap.

Critical Vulnerabilities Leave Some Network-Attached Storage Devices Open to Attack

04/29/2022
QNAP and Synology say flaws in the Netatalk fileserver allow remote code execution and information disclosure.

Cloudflare Flags Largest HTTPS DDoS Attack It's Ever Recorded

04/29/2022
This scale of this month's encrypted DDoS attack over HTTPS suggests a well-resourced operation, analysts say.

Take a Diversified Approach to Encryption

04/29/2022
Encryption will break, so it's important to mix and layer different encryption methods.

Ambient.ai Expands Computer Vision Capabilities for Better Building Security

04/28/2022
The AI startup releases new threat signatures to expand the computer vision platform’s ability to identify potential physical security incidents from camera feeds.

Microsoft Patches Pair of Dangerous Vulnerabilities in Azure PostgreSQL

04/28/2022
Flaws gave attackers a way to access other cloud accounts and databases, security vendor says.

IT Teams Worry Staff Lack Cloud-Specific Skills

04/28/2022
Security, cost, and reliability top the list of concerns IT teams have about their cloud operations, according to a recent report.

Capital One Ventures, Snowflake Ventures, Verizon Ventures, and Wipro Ventures Join Securonix $1B+ Growth Investment as

04/28/2022
Blue-chip companies deepen commitment based on success of long-standing customer and partner relationships and conviction of Securonix’s vision and hypergrowth potential.

The Ransomware Crisis Deepens, While Data Recovery Stalls

04/28/2022
Higher probabilities of attack, soaring ransoms, and less chance of getting data back — the ransomware plague gets worse, and cyber insurance fails to be a panacea.

Bumblebee Malware Buzzes Into Cyberattack Fray

04/28/2022
The sophisticated Bumblebee downloader is being used in ongoing email-borne attacks that could lead to ransomware infections.

Microsoft: Russia Using Cyberattacks in Coordination With Military Invasion of Ukraine

04/28/2022
Six Russian state-backed threat actors have lunched 237 cyberattacks on Ukraine's infrastructure, new research from MIcrosoft shows.

A Peek into Visa's AI Tools Against Fraud

04/27/2022
Visa has invested heavily in data analytics and artificial intelligence over the past five years to secure the movement of money and keep fraud rates low.

Doppler Takes on Secrets Management

04/27/2022
The startup is the latest company to try to solve the problem of organizing and sharing secrets.