Dark Reading

Vulnerability Researchers Focus on Zoom App's Security

04/02/2020
With videoconferencing's rise as an essential tool for remote work comes a downside: more security scrutiny, which has turned up a number of security weaknesses.

Attackers Leverage Excel File Encryption to Deliver Malware

04/01/2020
Technique involves saving malicious Excel file as "read-only" and tricking users into opening it, Mimecast says.

Why All Employees Are Responsible for Company Cybersecurity

04/01/2020
It's not just the IT and security team's responsibility to keep data safe -- every member of the team needs to be involved.

Defense Evasion Dominated 2019 Attack Tactics

03/31/2020
Researchers mapped tactics and techniques to the MITRE ATT&CK framework to determine which were most popular last year.

Researchers Uncover Unsophisticated - But Creative - Watering-Hole Attack

03/31/2020
Holy Water campaign is targeting users of a specific religious and ethnic group in Asia, Kaspersky says.

Researchers Spot Sharp Increase in Zoom-Themed Domain Registrations

03/30/2020
Attackers are attempting to take advantage of the surge in teleworking prompted by COVID-19, Check Point says.

Microsoft Edge Will Tell You If Credentials Are Compromised

03/30/2020
Password Monitor, InPrivate mode, and ad-tracking prevention are three new additions to Microsoft Edge.

HackerOne Drops Mobile Voting App Vendor Voatz

03/30/2020
Bug bounty platform provider cited "Voatz's pattern of interactions with the research community" in its decision to halt the app vendor's vuln disclosure program on HackerOne.

Malicious USB Drive Hides Behind Gift Card Lure

03/27/2020
Victims are being enticed to insert an unknown USB drive into their computers.

Virgin Media Could Pay GB pound 4.5B for Leak Affecting 900,000 Customers

03/27/2020
A misconfigured database holding personal data was left available online between April 2019 and February 2020.

The Wild, Wild West(world) of Cybersecurity

03/27/2020
Though set in the future, HBO's "Westworld" works as an allegory for the present moment in cybersecurity.

10 Security Services Options for SMBs

03/26/2020
Outsourcing security remains one of the best ways for small to midsize businesses to protect themselves from cyberthreats.

Security Not a Priority for SAP Projects, Users Report

03/26/2020
Nearly 70% of SAP users surveyed believe organizations lacked focus on IT security during previous SAP implementations.

3 Mobile Security Problems That Most Security Teams Haven't Fixed Yet

03/26/2020
Mobility must be included in the security operations workflow so that company data is protected regardless of where remote workers are located.

What Should I Do If Someone Is Impersonating My Company in a Phishing Campaign?

03/25/2020
Two security awareness advocates from KnowBe4 provide some solid suggestions.

Do DevOps Teams Need a Company Attorney on Speed Dial?

03/25/2020
In today's regulatory and legislative environment, companies and individuals are exposed to lawsuits over security breaches, resulting in significant fines and ending careers.

Malware Found Hidden in Android Utility Apps, Children's Games

03/24/2020
The 'Tekya' malware, as researchers call it, is designed to imitate the user's actions to click advertisements.

New APT Targets Middle Eastern Victims

03/24/2020
The new malware, dubbed "Milum," can take control of industrial devices.

How to Secure Your Kubernetes Deployments

03/24/2020
As more companies shift their software to a microservices-based architecture and orchestrate their containerized applications in Kubernetes, distributed security controls become a must.

FBI Warns of Fake CDC Emails in COVID-19 Phishing Alert

03/23/2020
Fraudsters exploit concerns by claiming to offer virus-related information or promising stimulus checks.