Dark Reading

Attackers Exploit Cisco Switch Issue as Vendor Warns of Yet Another Critical Flaw

04/09/2018
Cisco says companies fixing previously known protocol issue should also patch against critical remote-code execution issue.

Ransomware Up for Businesses, Down for Consumers in Q1

04/09/2018
Ransomware, spyware, and cryptomining were the biggest enterprise threats during an otherwise quiet quarter for malware, researchers report.

Deep Instinct Adds MacOS Support

04/09/2018
Deep Instinct adds support for MacOS, Citrix, and multi-tenancy in its version 2.2 release.

6 Myths About IoT Security

04/09/2018
Here are common misconceptions about these securing these devices - and tips for locking them down.

Businesses Fear 'Catastrophic Consequences' of Unsecured IoT

04/06/2018
Only 29% of respondents in a new IoT security survey say they actively monitor the risk of connected devices used by third parties.

Mirai Variant Botnet Takes Aim at Financials

04/05/2018
In January, a botnet based on Mirai was used to attack at least three European financial institutions.

Sears & Delta Airlines Are Latest Victims of Third-Party Security Breach

04/05/2018
An insecure ecosystem of third parties connected to an enterprise network poses a growing risk, security analysts say.

Supply Chain Attacks Could Pose Biggest Threat to Healthcare

04/05/2018
Healthcare organizations often overlook the supply chain, which researchers say is their most vulnerable facet.

How to Build a Cybersecurity Incident Response Plan

04/05/2018
Being hit by a cyberattack is going to be painful. But it can be less painful if you're prepared, and these best practices can help.

Unpatched Vulnerabilities the Source of Most Data Breaches

04/05/2018
New studies show how patching continues to dog most organizations - with real consequences.

Misconfigured Clouds Compromise 424% More Records in 2017

04/04/2018
Cybercriminals are increasingly aware of misconfigured systems and they're taking advantage, report IBM X-Force researchers.

How Gamers Could Save the Cybersecurity Skills Gap

04/04/2018
McAfee shares its firsthand experience on training in-house cybersecurity pros and publishes new data on how other organizations deal with filling security jobs.

Report: White House Email Domains Poorly Protected from Fraud

04/04/2018
Only one Executive Office of the President email domain has fully implemented DMARC, according to a new report.

Criminals Targeting Magento Sites with Brute-Force Password Attacks

04/03/2018
Forcepoint says it is aware of at least 1,000 sites using Magento's e-commerce platform that have been recently compromised.

7 Deadly Security Sins of Web Applications

04/03/2018
The top ways organizations open themselves up to damaging Web app attacks.

New Attack Vector Shows Dangers of S3 Sleep Mode

04/03/2018
Researchers at Black Hat Asia demonstrated how they can compromise the security of a machine as it powers down and wakes up.

Medical Device Security Startup Launches

04/03/2018
Cynerio lands multi-million dollar funding round.

Francisco Partners Buys Bomgar

04/03/2018
Private equity firm Francisco Partners plans to acquire Bomgar, a privileged access and identity management company.

Hudson's Bay Brands Hacked, 5 Million Credit Card Accounts Stolen

04/02/2018
The infamous Carbanak/FIN7 cybercrime syndicate breached Saks and Lord & Taylor and is now selling some of the stolen credit card accounts on the Dark Web.

'Hack the Defense Travel System': DoD Extends its Bug Bounty Program

04/02/2018
The fifth US Department of Defense bug bounty program, launched with HackerOne, will target a DoD enterprise system used by millions.