Dark Reading

A Culture of Unity Is Key to Solving the Cyber Challenge

10/06/2021
Lack of unity in vendor solutions and in security teams' culture are detrimental to a successful and productive security strategy.

Mandiant Tackles Ransomware and Breaches With New Tools

10/05/2021
Mandiant's new software-as-a-service offerings tap into the company's extensive threat intelligence capabilities to help cybersecurity teams detect and respond to ransomware attacks and data breaches.

Misconfigured Apache Airflow Platforms Threaten Organizations

10/05/2021
Security researchers found thousands of credentials for popular cloud-hosted services exposed on insecure instances of the popular workflow management technology.

Mandia Alerted NSA on FireEye's SolarWinds Breach

10/05/2021
"National security" concerns led former CEO Kevin Mandia to call the NSA when FireEye discovered its breach in late 2020.

Google to Enable Two-Factor Authentication for 150M More Users

10/05/2021
The company also provided guidance on how to protect information stored in inactive accounts.

Loss of Intellectual Property, Customer Data Pose Greatest Business Risks

10/05/2021
The slightly "good" news? Security professionals are a little less concerned about certain threats than last year, according to Dark Reading's "State of Incident Response 2021" report.

Why Access Control Has Become an Important Front in the War Against Cybercrime

10/05/2021
A Hiscox report has found that spending on cybersecurity from businesses has doubled since 2019. Tomáš Vystavěl, Chief Product Officer at 2N TELEKOMUNIKACE, investigates why access control has become such an important asset in the fight against cybercrime.

CVE Data Is Often Misinterpreted: Here's What to Look For

10/05/2021
Common vulnerabilities and exposures (CVEs) contain actionable details that can help address your security concerns. Here's how to get more from CVE data.

Windows 11 Available: What Security Pros Should Know

10/04/2021
Microsoft discusses the security requirements and changes coming to the newest version of its Windows operating system.

One Identity Acquires OneLogin to Boost Identity Security Portfolio

10/04/2021
The combination of One Identity and OneLogin will provide customers with a unified identity security platform to manage identities and networks.

New Atom Silo Ransomware Group Targets Confluence Servers

10/04/2021
An attack that took place over two days used a recently disclosed vulnerability in Atlassian's Confluence collaboration software.

Law Enforcement Agencies Seize $375K in Ukraine Ransomware Bust

10/04/2021
A coordinated effort by law enforcement agencies is viewed as a good sign, but security analysts fear this is just the tip of the iceberg.

CISA Kicks Off Cybersecurity Awareness Month

10/04/2021
CISA will dedicate October to encourage everyone to be cyber smart.

Mandiant Confirms Name Change from FireEye, Inc. to Mandiant, Inc.

10/04/2021
The decision to change the corporate name and stock ticker symbol reflects the company’s strategy to focus on Mandiant’s security controls-agnostic solutions delivered through the Mandiant Advantage cloud-based platform.

Name That Edge Toon: Mobile Monoliths

10/04/2021
Feeling creative? Come up with a clever caption, and our panel of experts will reward the winner with a $25 Amazon gift card.

Top 5 Skills Modern SOC Teams Need to Succeed

10/04/2021
From basic coding to threat hunting, here are five skills modern SOC teams need to successfully navigate the future of high-scale detection and response.

Companies Face Issues as Let's Encrypt Root Certificate Expires

10/01/2021
Experts warn devices will be affected after major HTTPS certificate provider Let's Encrypt saw its root certificate expire this week.

Why Windows Print Spooler Remains a Big Attack Target

10/01/2021
Despite countless vulnerabilities and exploits, the legacy Windows printing process service continues to be an attack surface in constant need of repair and maintenance, security experts say.

4.6M Neiman Marcus Online Customers Alerted to Data Breach

10/01/2021
The breach occurred in May 2020.

CISA and Girls Who Code Partner to Create Career Pathways for Young Women

10/01/2021
Through this partnership, CISA and Girls Who Code will establish collaborative opportunities to provide awareness, training, and pathways into cybersecurity careers for girls, women, and those who identify as nonbinary.