Request Service

Dark Reading

RSS Feed

Zero Trust in the Era of Edge

12/16/2022
Accelerating security challenges and the increasing footprint of edge and IoT devices call for zero-trust principles to drive cyber resiliency.

Live From London: Next-Gen Cybersecurity Takes Stage at Black Hat Europe

12/16/2022
Check out our slideshow detailing the emerging cybersecurity trends in cloud, creating a defensible Internet, malware evolution, and more that lit up audiences in London.

NIST Finally Retires SHA-1, Kind Of

12/15/2022
SHA-1 was deprecated in 2011. NIST has set the hashing algorithm's final retirement date to Dec. 31, 2030.

Zero Trust Shouldn’t Be The New Normal

12/15/2022
Zero trust is useful in some situations, but organizations should not be trying to fit zero trust everywhere. In some cases, identity-based networking is an appropriate alternative.

Axonius Bolsters SaaS Management Offering With New Behavioral Analytics and SaaS User-Device Association Capabilities to

12/15/2022
New features bring greater visibility and context into SaaS applications access and activity.

Stolen Data on 80K+ Members of FBI-Run InfraGard Reportedly for Sale on Dark Web Forum

12/15/2022
InfraGard's members include key security decision-makers and stakeholders from all 16 US civilian critical-infrastructure sectors.

Meta Ponies Up $300K Bounty for Zero-Click Mobile RCE Bugs in Facebook

12/15/2022
Facebook's parent company has also expanded bug-bounty payouts to include Oculus and other "metaverse" gadgets for AR/VR.

WatchGuard Threat Lab Report Finds Top Threat Arriving Exclusively Over Encrypted Connections

12/15/2022
New research also analyzes the commoditization of adversary-in-the-middle attacks, JavaScript obfuscation in exploit kits, and a malware family with Gothic Panda ties.

DDoS Attack Platforms Shut Down in Global Law Enforcement Operation

12/15/2022
Sweeping operation took down around 50 popular DDoS platforms, just one of which was used in 30M attacks, Europol says.

Blackmailing MoneyMonger Malware Hides in Flutter Mobile Apps

12/15/2022
Money-lending apps built using the Flutter software development kit hide a predatory spyware threat and highlight a growing trend of using personal data for blackmail.

Data Destruction Policies in the Age of Cloud Computing

12/15/2022
It's time for on-the-record answers to questions about data destruction in cloud environments. Without access, how do you verify data has been destroyed? Do processes meet DoD standards, or do we need to adjust standards to meet reality?

API Flaws in Lego Marketplace Put User Accounts, Data at Risk

12/15/2022
Attackers also could breach internal production data to compromise a corporate network using vulnerabilities found in the BrickLink online platform.

NSA Slices Up 5G Mobile Security Risks

12/14/2022
The feds' mobile service provider guidance details cybersecurity threat vectors associated with 5G network slicing.

Cybereason Warns Global Organizations Against Destructive Ransomware Attacks From Black Basta Gang

12/14/2022
The Royal Ransomware Group has emerged as a threat to companies in 2022 and they have carried out dozens of successful attacks on global companies. Cybereason suggests that companies raise their awareness of this potential pending threat.

Microsoft-Signed Malicious Drivers Usher In EDR-Killers, Ransomware

12/14/2022
Malicious Windows drivers signed as legit by Microsoft have been spotted as part of a toolkit used to kill off security processes in post-exploitation cyber activity.

CSAF Is the Future of Vulnerability Management

12/14/2022
Version 2.0 of the Common Security Advisory Framework will enable organizations to automate vulnerability remediation.

Apple Zero-Day Actively Exploited on iPhone 15

12/14/2022
Without many details, Apple patches a vulnerability that has been exploited in the wild to execute code.

Proofpoint Nabs Illusive, Signaling a Sunset for Deception Tech

12/14/2022
Former pure-play deception startup Illusive attracts Proofpoint with its repositioned platform focusing on identity threat detection and response (ITDR).

Automated Cybercampaign Creates Masses of Bogus Software Building Blocks

12/14/2022
The proliferation of automated cyberattacks against npm, NuGet, and PyPI underscores the growing sophistication of threat actors and the threats to open source software supply chains.

How Our Behavioral Bad Habits Are a Community Trait and Security Problem

12/14/2022
Learn to think three moves ahead of hackers so you're playing chess, not checkers. Instead of reacting to opponents' moves, be strategic, and disrupt expected patterns of vulnerability.

<< Prev   1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 206 207 208 209 210 211 212 213 214 215 216 217 218 219 220 221 222 223 224 225 226 227 228 229 230 231 232 233 234 235 236  Next >>