Dark Reading

Why Cryptomining Malware Is a Harbinger of Future Attacks

09/21/2021
Crypto thieves rely on users not noticing installation of their tiny payload on thousands of machines, or the CPU cycles being siphoned off to perpetuate the schemes.

Open Source Software Projects Up Their Security Game but Face More Attacks

09/20/2021
Patches for dependencies are trickling up through the open source ecosystem faster than ever — a good thing because attackers are focusing more on open source software.

archTIS Acquires Cipherpoint Technology Assets and Customers

09/20/2021
Accretive asset purchase adds to archTIS’ rapidly growing annual recurring revenue, global distribution and industry-leading intellectual property.

10 Ways to Avoid Zero-Trust Failure

09/20/2021
Here are the prerequisites to have in order before getting past the zero-trust gate.

Google: New Privacy Feature Will Affect 'Billions' of Android Devices

09/20/2021
Starting in December, Google will expand its "permissions auto-reset feature" to devices using Android 6.0 and higher.

F5 Networks to Buy Threat Stack

09/20/2021
F5 Networks plans to combine its application and API security tools with Threat Stack's cloud protection capabilities.

White House Cybersecurity Summit: A Missed Opportunity

09/20/2021
Last month's summit with the president was missing something crucial: representation from those who deal with critical infrastructure.

Arista, Cisco, Huawei, Juniper Networks, and Nokia Launch New MANRS Equipment Vendor Program to Improve Routing Security

09/17/2021
Founding members of the MANRS Initiative will tackle the systemic vulnerabilities of global routing security through groundbreaking collaborative action.

CISA to Host Fourth Annual National Cybersecurity Summit

09/17/2021
Registration is now open for the October event.

How Should the CSO Work With the Chief Privacy Officer?

09/17/2021
The chief security officer needs to be in constant communication with the chief privacy officer about what's working or not working.

Mirai Botnet Exploiting OMIGOD Azure Vulnerability

09/17/2021
Microsoft patched four Open Management Infrastructure flaws earlier this week.

International Insider Threat: DoJ Fines US Intel Officials Who Aided UAE

09/17/2021
Three former US intelligence operatives have been fined $1,685,000 for aiding the United Arab Emirates in widespread hacking campaigns.

IoT 'Nutrition' Labels Aim to Put Security on Display

09/17/2021
NIST has laid the groundwork for an easy-to-understand way to communicate to consumers the security of software and connected devices.

New Report Examines Top Threats Discussed at Black Hat USA

09/17/2021
Supply chain security and vulnerabilities in enterprise software were among the threats most dicussed at this year's show, survey data reveals.

Infrastructure, Security, and the Need for Visibility

09/17/2021
Government authorities are increasingly trying to bolster critical infrastructure security. But investments in next-generation solutions won't go far enough without also addressing security and operational fundamentals.

Microsoft Warns of Uptick in MSHTML Attacks

09/16/2021
Attackers leveraging the flaw are using infrastructure associated with other criminal groups, including ransomware-as-a-service operators, the company says.

HPE Survey Finds 76% of Doctors and Nurses Believe Telehealth Will Dominate Patient Care in Near Future

09/16/2021
Findings are presented in HPE's "Future of Healthcare" Report, which surveyed healthcare clinicians and IT Decision Makers (ITDMs) in the United States and United Kingdom.

15% of the Nasdaq 100 Is Highly Susceptible to a Ransomware Attack, New Black Kite Research Finds

09/16/2021
Black Kite’s Ransomware Susceptibility Index (RSI) determined that 1-in-7 Nasdaq-100 companies ranked as highly susceptible to a ransomware attack.

TransUnion to Buy Neustar for $3.1B

09/16/2021
TransUnion, primarily known for credit ratings, hopes to expand into digital marketing and fraud mitigation capabilities with the deal.

FBI, CISA, CGCYBER Warn of APTs Targeting CVE-2021-40539

09/16/2021
The critical authentication bypass vulnerability exists in Zoho ManageEngine ADSelfService Plus, officials report.