Dark Reading

Facebook Upgrades Link Security with HSTS Preloading

03/05/2018
Facebook and Instagram links will automatically update from HTTP to HTTPS for eligible websites, increasing both speed and security, the social media giant said.

Hacking Back & the Digital Wild West

03/05/2018
Far from helping organizations defend themselves, hacking back will escalate an already chaotic situation.

Millions of Office 365 Accounts Hit with Password Stealers

03/02/2018
Phishing emails disguised as tax-related alerts aim to trick users into handing attackers their usernames and passwords.

Mueller May Indict Russians Who Hacked DNC

03/02/2018
Special counsel is compiling a case against the hackers who breached the DNC and John Podesta's email account, NBC News reports.

A Secure Development Approach Pays Off

03/02/2018
Software security shouldn't be an afterthought. That's why the secure software development life cycle deserves a fresh look.

A Sneak Peek at the New NIST Cybersecurity Framework

03/02/2018
Key focus areas include supply chain risks, identity management, and cybersecurity risk assessment and measurement.

Number of Sites Hosting Cryptocurrency Miners Surges 725% in 4 Months

03/01/2018
The dramatic increase in cryptocurrency prices, especially for Monero, is behind the sudden explosive growth, says Cyren.

'Chafer' Uses Open Source Tools to Target Iran's Enemies

03/01/2018
Symantec details operations of Iranian hacking group mainly attacking air transportation targets in the Middle East.

Securing the Web of Wearables, Smartphones & Cloud

03/01/2018
Why security for the Internet of Things demands that businesses revamp their software development lifecycle.

GitHub Among Victims of Massive DDoS Attack Wave

03/01/2018
GitHub reports its site was unavailable this week when attackers leveraged Memcached servers to generate large, widespread UDP attacks.

How & Why the Cybersecurity Landscape Is Changing

03/01/2018
A comprehensive new report from Cisco should "scare the pants off" enterprise security leaders.

Phishers Target Social Media

03/01/2018
Financial institutions still the number one target, according to a new report by RiskIQ.

ICS Under Fire in 2017

03/01/2018
New Dragos report finds rising number of public vulnerability advisories around ICS with not enough reasonable guidance around how to deal with these flaws.

Equifax Finds 2.4 Million Additional US Victims of its Data Breach

03/01/2018
Total of victims now at 147.9 million customers.

What Enterprises Can Learn from Medical Device Security

03/01/2018
In today's cloud-native world, organizations need a highly distributed approach that ties security to the workload itself in order to prevent targeted attacks.

Journey to the Cloud: Overcoming Security Risks

03/01/2018
Lessons learned from a global consultancy's 10-year transition from on-premises to 99% cloud-based infrastructure.

The State of Application Penetration Testing

02/28/2018
Data from real-world pen tests shows configuration errors and cross-site scripting are the most commonly found vulnerabilities.

Zero-Day Attacks Major Concern in Hybrid Cloud

02/28/2018
Hybrid cloud environments are particularly vulnerable to zero-day exploits, according to a new study.

New Android Malware Family Highlights Evolving Mobile Threat Capabilities

02/28/2018
RedDrop can steal data, record audio, and rack up SMS charges for victims, says Wandera.

FTC Settles with Venmo on Security Allegations

02/28/2018
Proposed settlement addresses complaints that Venmo misrepresented its security and privacy features.