Dark Reading

Facebook Rolls Out 'Data Abuse Bounty' Program

04/11/2018
The social media giant also got hit with a lawsuit the day before unveiling its new reward program.

Attacker Dwell Time Still Too Long, Research Shows

04/11/2018
New DBIR and M-Trends reports show the window between compromise and discovery are still way too long.

'SirenJack' Vulnerability Lets Hackers Hijack Emergency Warning System

04/10/2018
Unencrypted radio protocol that controls sirens left alert system at risk.

On-Premise Security Tools Struggle to Survive in the Cloud

04/10/2018
Businesses say their current security tools aren't effective in the cloud but hesitate to adopt cloud-based security systems.

Microsoft Issues Rare Patch for Wireless Keyboard Flaw

04/10/2018
Patch Tuesday includes 67 fixes - the most critical of which are browser-related.

Attackers Exploit Cisco Switch Issue as Vendor Warns of Yet Another Critical Flaw

04/09/2018
Cisco says companies fixing previously known protocol issue should also patch against critical remote-code execution issue.

Ransomware Up for Businesses, Down for Consumers in Q1

04/09/2018
Ransomware, spyware, and cryptomining were the biggest enterprise threats during an otherwise quiet quarter for malware, researchers report.

Deep Instinct Adds MacOS Support

04/09/2018
Deep Instinct adds support for MacOS, Citrix, and multi-tenancy in its version 2.2 release.

6 Myths About IoT Security

04/09/2018
Here are common misconceptions about these securing these devices - and tips for locking them down.

Businesses Fear 'Catastrophic Consequences' of Unsecured IoT

04/06/2018
Only 29% of respondents in a new IoT security survey say they actively monitor the risk of connected devices used by third parties.

Mirai Variant Botnet Takes Aim at Financials

04/05/2018
In January, a botnet based on Mirai was used to attack at least three European financial institutions.

Sears & Delta Airlines Are Latest Victims of Third-Party Security Breach

04/05/2018
An insecure ecosystem of third parties connected to an enterprise network poses a growing risk, security analysts say.

Supply Chain Attacks Could Pose Biggest Threat to Healthcare

04/05/2018
Healthcare organizations often overlook the supply chain, which researchers say is their most vulnerable facet.

How to Build a Cybersecurity Incident Response Plan

04/05/2018
Being hit by a cyberattack is going to be painful. But it can be less painful if you're prepared, and these best practices can help.

Unpatched Vulnerabilities the Source of Most Data Breaches

04/05/2018
New studies show how patching continues to dog most organizations - with real consequences.

Misconfigured Clouds Compromise 424% More Records in 2017

04/04/2018
Cybercriminals are increasingly aware of misconfigured systems and they're taking advantage, report IBM X-Force researchers.

How Gamers Could Save the Cybersecurity Skills Gap

04/04/2018
McAfee shares its firsthand experience on training in-house cybersecurity pros and publishes new data on how other organizations deal with filling security jobs.

Report: White House Email Domains Poorly Protected from Fraud

04/04/2018
Only one Executive Office of the President email domain has fully implemented DMARC, according to a new report.

Criminals Targeting Magento Sites with Brute-Force Password Attacks

04/03/2018
Forcepoint says it is aware of at least 1,000 sites using Magento's e-commerce platform that have been recently compromised.

7 Deadly Security Sins of Web Applications

04/03/2018
The top ways organizations open themselves up to damaging Web app attacks.